From fe096cc2a939ce2945fa578361890ef78afc3c39 Mon Sep 17 00:00:00 2001 From: DashlordBetaGouvBot Date: Sun, 24 Dec 2023 22:45:37 +0000 Subject: [PATCH] chore: report update --- report.json | 147828 +++++++++++++++++++++++++------------------------ 1 file changed, 74470 insertions(+), 73358 deletions(-) diff --git a/report.json b/report.json index 8323fafb2d9..21e9bfcac51 100644 --- a/report.json +++ b/report.json @@ -10,7 +10,7 @@ "http": { "url": "https://api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:22:11 GMT", + "end_time": "Sun, 24 Dec 2023 01:20:01 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -19,17 +19,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:22:09 GMT", - "ETag": "\"14q5insy9sa14dn\"", + "Date": "Sun, 24 Dec 2023 01:20:00 GMT", + "ETag": "\"184fhxe98pj13s7\"", "Server": "nginx/1.18.0 (Ubuntu)", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", "x-nextjs-cache": "HIT" }, - "scan_id": 45536651, + "scan_id": 45752042, "score": 20, - "start_time": "Sun, 17 Dec 2023 01:22:06 GMT", + "start_time": "Sun, 24 Dec 2023 01:19:57 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -214,15 +214,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T01:32:51Z", - "next_check_at": "2023-12-17T01:37:51Z", + "last_check_at": "2023-12-24T01:25:02Z", + "next_check_at": "2023-12-24T01:30:01Z", "mute_until": null, "favicon_url": "https://api.gouv.fr/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T00:48:04Z", + "tested_at": "2023-12-24T01:15:03Z", "expires_at": "2024-01-29T09:17:55Z", "valid": true, "error": null @@ -231,11 +231,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 174, - "connection": 140, - "handshake": 290, - "response": 145, - "total": 749 + "namelookup": 132, + "connection": 143, + "handshake": 282, + "response": 141, + "total": 698 } }, "uptimeGrade": "A", @@ -251,43 +251,43 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", + "version": "8.2p1 Ubuntu 4ubuntu0.10", "vulnerabilities": [ { - "id": "CVE-2020-15778", "is_exploit": "false", - "cvss": "6.8", - "type": "cve" + "type": "cve", + "id": "CVE-2020-15778", + "cvss": "6.8" }, { - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "is_exploit": "true", - "cvss": "6.8", - "type": "githubexploit" + "type": "githubexploit", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "cvss": "6.8" }, { - "id": "10213DBE-F683-58BB-B6D3-353173626207", "is_exploit": "true", - "cvss": "6.8", - "type": "githubexploit" + "type": "githubexploit", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "cvss": "6.8" }, { - "id": "PRION:CVE-2020-12062", "is_exploit": "false", - "cvss": "5.0", - "type": "prion" + "type": "prion", + "id": "PRION:CVE-2020-12062", + "cvss": "5.0" }, { - "id": "PRION:CVE-2016-20012", "is_exploit": "false", - "cvss": "5.0", - "type": "prion" + "type": "prion", + "id": "PRION:CVE-2016-20012", + "cvss": "5.0" }, { - "id": "CVE-2020-12062", "is_exploit": "false", - "cvss": "5.0", - "type": "cve" + "type": "cve", + "id": "CVE-2020-12062", + "cvss": "5.0" } ] } @@ -663,7 +663,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", - "finding": "43 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -873,7 +873,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "1702776234" + "finding": "1703380881" }, { "id": "HSTS", @@ -1429,7 +1429,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "124" + "finding": "69" } ], "thirdparties": { @@ -1440,7 +1440,7 @@ "value": "1", "domain": "api.gouv.fr", "path": "/", - "expires": 1702777961, + "expires": 1703382633, "size": 16, "httpOnly": false, "secure": false, @@ -1452,10 +1452,10 @@ }, { "name": "_pk_id.22.382f", - "value": "04b40dde96411e44.1702776162.", + "value": "8caeab34a230e38b.1703380834.", "domain": "api.gouv.fr", "path": "/", - "expires": 1736731362, + "expires": 1737336034, "size": 42, "httpOnly": false, "secure": false, @@ -1470,8 +1470,8 @@ "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 01:22:40 GMT", - "etag": "\"14q5insy9sa14dn\"", + "date": "Sun, 24 Dec 2023 01:20:33 GMT", + "etag": "\"184fhxe98pj13s7\"", "server": "nginx/1.18.0 (Ubuntu)", "vary": "Accept-Encoding", "x-nextjs-cache": "HIT", @@ -1791,7 +1791,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:21:39", + "@generated": "Sun, 24 Dec 2023 01:19:32", "site": [ { "@name": "https://api.gouv.fr", @@ -1945,23 +1945,23 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -1971,37 +1971,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "api.gouv.fr.", - "matched-at": "api.gouv.fr", + "matched-at": "_dmarc.api.gouv.fr", "extracted-results": [ - "5 mx2.ovh.net.", - "1 mx1.ovh.net.", - "100 mxb.ovh.net." + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T01:25:58.480367942Z", + "timestamp": "2023-12-24T01:22:48.556168025Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -2018,14 +2018,11 @@ "host": "api.gouv.fr.", "matched-at": "api.gouv.fr", "extracted-results": [ - "\"v=spf1 mx include:spf.sendinblue.com include:spf.mailjet.com include:mx.ovh.com ~all\"", - "\"google-site-verification=mtU0zHGIV-mwFoyp1bM0f67XKGJEQOxlfM5t1BTTeHA\"", - "\"Sendinblue-code:2338554a9d09e27cb9014c7b56690dca\"", - "\"google-site-verification=6LnXgjWSo1BZA0bGwIpPwxkv6wJXlav37nt5OuBlu4c\"", - "\"google-site-verification=ld_Y4E2WCMYwp-QQ5qDQLWzxQO7YKsEeHtTe8aScRcE\"", - "\"1|www.api.gouv.fr\"" + "1 mx1.ovh.net.", + "100 mxb.ovh.net.", + "5 mx2.ovh.net." ], - "timestamp": "2023-12-17T01:25:58.485501908Z", + "timestamp": "2023-12-24T01:22:48.629634295Z", "matcher-status": true }, { @@ -2060,27 +2057,26 @@ "type": "dns", "host": "api.gouv.fr.", "matched-at": "api.gouv.fr", - "timestamp": "2023-12-17T01:25:58.607611126Z", + "timestamp": "2023-12-24T01:22:48.632252907Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -2090,17 +2086,21 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "api.gouv.fr.", - "matched-at": "_dmarc.api.gouv.fr", + "matched-at": "api.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "\"google-site-verification=ld_Y4E2WCMYwp-QQ5qDQLWzxQO7YKsEeHtTe8aScRcE\"", + "\"1|www.api.gouv.fr\"", + "\"v=spf1 mx include:spf.sendinblue.com include:spf.mailjet.com include:mx.ovh.com ~all\"", + "\"Sendinblue-code:2338554a9d09e27cb9014c7b56690dca\"", + "\"google-site-verification=6LnXgjWSo1BZA0bGwIpPwxkv6wJXlav37nt5OuBlu4c\"", + "\"google-site-verification=mtU0zHGIV-mwFoyp1bM0f67XKGJEQOxlfM5t1BTTeHA\"" ], - "timestamp": "2023-12-17T01:25:58.756913255Z", + "timestamp": "2023-12-24T01:22:48.639729707Z", "matcher-status": true }, { @@ -2136,7 +2136,7 @@ "ns18.ovh.net.", "dns18.ovh.net." ], - "timestamp": "2023-12-17T01:25:59.449377685Z", + "timestamp": "2023-12-24T01:22:49.713193942Z", "matcher-status": true }, { @@ -2162,11 +2162,11 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "extracted-results": [ - "GET", - "HEAD" + "HEAD", + "GET" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:26:13.968536853Z", + "timestamp": "2023-12-24T01:22:58.027304817Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2198,7 +2198,7 @@ "nginx/1.18.0" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:26:25.443312947Z", + "timestamp": "2023-12-24T01:23:04.802887797Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2225,7 +2225,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:18.092026083Z", + "timestamp": "2023-12-24T01:23:38.140059816Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2252,7 +2252,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:18.092069534Z", + "timestamp": "2023-12-24T01:23:38.140112304Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2284,12 +2284,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604374147Z", + "timestamp": "2023-12-24T01:23:48.837700117Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2326,7 +2326,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604425784Z", + "timestamp": "2023-12-24T01:23:48.837739442Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2363,155 +2363,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604445871Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://api.gouv.fr", - "matched-at": "https://api.gouv.fr", - "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604462913Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://api.gouv.fr", - "matched-at": "https://api.gouv.fr", - "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604481758Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://api.gouv.fr", - "matched-at": "https://api.gouv.fr", - "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604499992Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://api.gouv.fr", - "matched-at": "https://api.gouv.fr", - "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604515581Z", + "timestamp": "2023-12-24T01:23:48.837749961Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2548,7 +2400,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604533103Z", + "timestamp": "2023-12-24T01:23:48.837764448Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2580,12 +2432,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604549645Z", + "timestamp": "2023-12-24T01:23:48.837779356Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2622,7 +2474,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604572036Z", + "timestamp": "2023-12-24T01:23:48.837793022Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2654,180 +2506,189 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:27:40.604589399Z", + "timestamp": "2023-12-24T01:23:48.837806367Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/robots-txt-endpoint.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", - "template-id": "robots-txt-endpoint", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "robots.txt endpoint prober", + "name": "HTTP Missing Security Headers", "author": [ - "caspergn", - "pdteam" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "misc", + "misconfig", + "headers", "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 2 + "max-request": 1 } }, + "matcher-name": "x-frame-options", "type": "http", "host": "https://api.gouv.fr", - "matched-at": "https://api.gouv.fr/robots.txt", + "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:28:03.275272468Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/robots.txt'", + "timestamp": "2023-12-24T01:23:48.837817839Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "RDAP WHOIS", + "name": "HTTP Missing Security Headers", "author": [ - "ricardomaia", - "sttlr" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "max-request": 1 } }, - "extractor-name": "registrantPhone", + "matcher-name": "referrer-policy", "type": "http", "host": "https://api.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", - "extracted-results": [ - "+33.681349243" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042525938Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matched-at": "https://api.gouv.fr", + "ip": "149.202.190.28", + "timestamp": "2023-12-24T01:23:48.837829811Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "RDAP WHOIS", + "name": "HTTP Missing Security Headers", "author": [ - "ricardomaia", - "sttlr" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "max-request": 1 } }, - "extractor-name": "registrantCountry", + "matcher-name": "clear-site-data", "type": "http", "host": "https://api.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", - "extracted-results": [ - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042564861Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matched-at": "https://api.gouv.fr", + "ip": "149.202.190.28", + "timestamp": "2023-12-24T01:23:48.837846523Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "RDAP WHOIS", + "name": "HTTP Missing Security Headers", "author": [ - "ricardomaia", - "sttlr" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "whois", - "rdap", - "osint", - "misc" + "misconfig", + "headers", + "generic" ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://api.gouv.fr", + "matched-at": "https://api.gouv.fr", + "ip": "149.202.190.28", + "timestamp": "2023-12-24T01:23:48.837858365Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/robots-txt-endpoint.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", + "template-id": "robots-txt-endpoint", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "info": { + "name": "robots.txt endpoint prober", + "author": [ + "caspergn", + "pdteam" + ], + "tags": [ + "misc", + "generic" ], "severity": "info", "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "max-request": 2 } }, - "extractor-name": "nameServers", "type": "http", "host": "https://api.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", - "extracted-results": [ - "ns18.ovh.net", - "dns18.ovh.net" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042585239Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matched-at": "https://api.gouv.fr/robots.txt", + "ip": "149.202.190.28", + "timestamp": "2023-12-24T01:24:02.293696916Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/robots.txt'", "matcher-status": true }, { @@ -2864,15 +2725,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantEmail", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2016-02-24T18:09:37Z" + "swscdmldpsaea7q26su0@y.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042602621Z", + "timestamp": "2023-12-24T01:24:02.738246813Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2910,15 +2771,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrantPhone", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2024-02-24T18:09:37Z" + "+33.681349243" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.04261778Z", + "timestamp": "2023-12-24T01:24:02.738284554Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2956,15 +2817,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantAddress", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "DINSIC ISN" + "39 quai Andre Citroen", + "Paris", + "75015", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042631956Z", + "timestamp": "2023-12-24T01:24:02.738294793Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3002,15 +2866,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantCountry", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "DINSIC ISN" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042644559Z", + "timestamp": "2023-12-24T01:24:02.738305824Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3048,15 +2912,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrationDate", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "swscdmldpsaea7q26su0@y.o-w-o.info" + "2016-02-24T18:09:37Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042657975Z", + "timestamp": "2023-12-24T01:24:02.738314189Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3094,15 +2958,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "active" + "2023-10-19T13:36:35.060437Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042670708Z", + "timestamp": "2023-12-24T01:24:02.738324148Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3140,15 +3004,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2023-10-19T13:36:35.060437Z" + "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042683492Z", + "timestamp": "2023-12-24T01:24:02.738337113Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3186,18 +3050,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "nameServers", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "Paris", - "75015", - "FR", - "39 quai Andre Citroen" + "ns18.ovh.net", + "dns18.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042718898Z", + "timestamp": "2023-12-24T01:24:02.738689404Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3243,7 +3105,145 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T01:28:04.042734307Z", + "timestamp": "2023-12-24T01:24:02.738716284Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://api.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", + "extracted-results": [ + "active" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T01:24:02.738727205Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "expirationDate", + "type": "http", + "host": "https://api.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", + "extracted-results": [ + "2024-02-24T18:09:37Z" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T01:24:02.738742704Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantName", + "type": "http", + "host": "https://api.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", + "extracted-results": [ + "DINSIC ISN" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T01:24:02.738854424Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3283,7 +3283,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr/", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:28:33.126863116Z", + "timestamp": "2023-12-24T01:24:20.208402236Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/'", "matcher-status": true }, @@ -3323,7 +3323,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr/", "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:28:33.126907248Z", + "timestamp": "2023-12-24T01:24:20.208440498Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/'", "matcher-status": true }, @@ -3370,10 +3370,10 @@ "host": "api.gouv.fr:22", "matched-at": "api.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:29:46.261949178Z", + "timestamp": "2023-12-24T01:25:15.743281017Z", "matcher-status": true }, { @@ -3387,7 +3387,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -3402,7 +3403,7 @@ "Let's Encrypt" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:30:36.438499391Z", + "timestamp": "2023-12-24T01:26:02.726958908Z", "matcher-status": true }, { @@ -3416,7 +3417,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -3432,7 +3434,7 @@ "www.api.gouv.fr" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:30:36.43861192Z", + "timestamp": "2023-12-24T01:26:02.727106605Z", "matcher-status": true }, { @@ -3447,7 +3449,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -3462,7 +3465,7 @@ "tls12" ], "ip": "149.202.190.28", - "timestamp": "2023-12-17T01:30:38.739167872Z", + "timestamp": "2023-12-24T01:26:05.999891856Z", "matcher-status": true } ], @@ -3470,7 +3473,7 @@ { "requestedUrl": "https://api.gouv.fr/", "finalUrl": "https://api.gouv.fr/", - "fetchTime": "2023-12-17T01:21:54.282Z", + "fetchTime": "2023-12-24T01:19:46.367Z", "runWarnings": [], "categories": { "performance": { @@ -3502,7 +3505,7 @@ "snapshot" ], "id": "best-practices", - "score": 1 + "score": 0.92 }, "seo": { "title": "SEO", @@ -3533,53 +3536,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3505, + "numericValue": 3542, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1937, - "firstMeaningfulPaint": 2400, - "largestContentfulPaint": 3094, - "interactive": 3505, - "speedIndex": 2827, - "totalBlockingTime": 164, - "maxPotentialFID": 188, + "firstContentfulPaint": 1780, + "firstMeaningfulPaint": 2230, + "largestContentfulPaint": 3185, + "interactive": 3542, + "speedIndex": 2140, + "totalBlockingTime": 170, + "maxPotentialFID": 184, "cumulativeLayoutShift": 0.10415353732638889, "cumulativeLayoutShiftMainFrame": 0.10415353732638889, "totalCumulativeLayoutShift": 0.10415353732638889, "observedTimeOrigin": 0, - "observedTimeOriginTs": 684505979, + "observedTimeOriginTs": 855550946, "observedNavigationStart": 0, - "observedNavigationStartTs": 684505979, - "observedFirstPaint": 1055, - "observedFirstPaintTs": 685561021, - "observedFirstContentfulPaint": 1055, - "observedFirstContentfulPaintTs": 685561021, - "observedFirstContentfulPaintAllFrames": 1055, - "observedFirstContentfulPaintAllFramesTs": 685561021, - "observedFirstMeaningfulPaint": 1258, - "observedFirstMeaningfulPaintTs": 685764065, - "observedLargestContentfulPaint": 1196, - "observedLargestContentfulPaintTs": 685702131, - "observedLargestContentfulPaintAllFrames": 1196, - "observedLargestContentfulPaintAllFramesTs": 685702131, - "observedTraceEnd": 4100, - "observedTraceEndTs": 688605788, - "observedLoad": 1787, - "observedLoadTs": 686292526, - "observedDomContentLoaded": 1167, - "observedDomContentLoadedTs": 685673395, + "observedNavigationStartTs": 855550946, + "observedFirstPaint": 653, + "observedFirstPaintTs": 856204411, + "observedFirstContentfulPaint": 653, + "observedFirstContentfulPaintTs": 856204411, + "observedFirstContentfulPaintAllFrames": 653, + "observedFirstContentfulPaintAllFramesTs": 856204411, + "observedFirstMeaningfulPaint": 805, + "observedFirstMeaningfulPaintTs": 856356189, + "observedLargestContentfulPaint": 805, + "observedLargestContentfulPaintTs": 856356189, + "observedLargestContentfulPaintAllFrames": 805, + "observedLargestContentfulPaintAllFramesTs": 856356189, + "observedTraceEnd": 3334, + "observedTraceEndTs": 858884467, + "observedLoad": 1026, + "observedLoadTs": 856577292, + "observedDomContentLoaded": 725, + "observedDomContentLoadedTs": 856275955, "observedCumulativeLayoutShift": 0.10415353732638889, "observedCumulativeLayoutShiftMainFrame": 0.10415353732638889, "observedTotalCumulativeLayoutShift": 0.10415353732638889, - "observedFirstVisualChange": 1016, - "observedFirstVisualChangeTs": 685521979, - "observedLastVisualChange": 4099, - "observedLastVisualChangeTs": 688604979, - "observedSpeedIndex": 1299, - "observedSpeedIndexTs": 685804733 + "observedFirstVisualChange": 631, + "observedFirstVisualChangeTs": 856181946, + "observedLastVisualChange": 3331, + "observedLastVisualChangeTs": 858881946, + "observedSpeedIndex": 880, + "observedSpeedIndexTs": 856431408 }, { "lcpInvalidated": false @@ -3597,23 +3600,23 @@ "type": "debugdata", "items": [ { - "numRequests": 32, + "numRequests": 33, "numScripts": 12, "numStylesheets": 2, "numFonts": 3, - "numTasks": 910, + "numTasks": 882, "numTasksOver10ms": 6, "numTasksOver25ms": 5, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 149.052, - "throughput": 5200880.970381321, - "maxRtt": 153.308, - "maxServerLatency": 248.846, - "totalByteWeight": 500717, - "totalTaskTime": 350.5770000000001, - "mainDocumentTransferSize": 15187 + "rtt": 85.205, + "throughput": 11578954.663988505, + "maxRtt": 87.889, + "maxServerLatency": 130.39499999999998, + "totalByteWeight": 674554, + "totalTaskTime": 366.0339999999994, + "mainDocumentTransferSize": 15181 } ] } @@ -3721,7 +3724,7 @@ "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, + "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.99, "lighthouse_seoGrade": "A", @@ -3743,7 +3746,7 @@ "http": { "url": "https://api.trackdechets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:21:04 GMT", + "end_time": "Sun, 24 Dec 2023 01:14:58 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -3757,7 +3760,7 @@ "Cross-Origin-Embedder-Policy": "require-corp", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:21:03 GMT", + "Date": "Sun, 24 Dec 2023 01:14:57 GMT", "ETag": "W/\"196-HUCJKwlQurC5GNaaJnH0d+HOnRw\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", @@ -3770,13 +3773,13 @@ "X-Permitted-Cross-Domain-Policies": "none", "X-RateLimit-Limit": "1000", "X-RateLimit-Remaining": "998", - "X-RateLimit-Reset": "1702776123", - "X-Request-ID": "01b87679a82fdeada6218c680f688864", + "X-RateLimit-Reset": "1703380558", + "X-Request-ID": "fbcbf8444be13f8e6ddd0c0cc6725d87", "X-XSS-Protection": "0" }, - "scan_id": 45536577, + "scan_id": 45751962, "score": 110, - "start_time": "Sun, 17 Dec 2023 01:18:25 GMT", + "start_time": "Sun, 24 Dec 2023 01:14:55 GMT", "state": "FINISHED", "status_code": 400, "tests_failed": 0, @@ -3798,9 +3801,9 @@ "'none'" ], "font-src": [ - "https:", "'self'", - "data:" + "data:", + "https:" ], "form-action": [ "self" @@ -3822,8 +3825,8 @@ ], "style-src": [ "'self'", - "https:", - "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='" + "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", + "https:" ], "upgrade-insecure-requests": [ "'none'" @@ -4228,7 +4231,7 @@ "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -4368,7 +4371,7 @@ "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", "port": "443", "severity": "OK", - "finding": "69 >= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", @@ -4536,7 +4539,7 @@ "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", "port": "443", "severity": "INFO", - "finding": "1702776126" + "finding": "1703380610" }, { "id": "HSTS_time", @@ -5134,7 +5137,7 @@ "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", "port": "443", "severity": "INFO", - "finding": "54" + "finding": "98" } ], "thirdparties": { @@ -5149,7 +5152,7 @@ "cross-origin-embedder-policy": "require-corp", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 01:21:23 GMT", + "date": "Sun, 24 Dec 2023 01:15:32 GMT", "etag": "W/\"378-MAeTIgaPkJnVE7n+BcgLws4/LM4\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -5162,8 +5165,8 @@ "x-permitted-cross-domain-policies": "none", "x-ratelimit-limit": "1000", "x-ratelimit-remaining": "999", - "x-ratelimit-reset": "1702776144", - "x-request-id": "5c9383fa767034c4418fa7e568effc9e", + "x-ratelimit-reset": "1703380593", + "x-request-id": "b1c1478a2240a8cef10ba25d2ea8af41", "x-xss-protection": "0" }, "endpoints": [ @@ -5314,7 +5317,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:17:59", + "@generated": "Sun, 24 Dec 2023 01:14:27", "site": [ { "@name": "https://api.trackdechets.beta.gouv.fr", @@ -5329,13 +5332,6 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, - { - "name": "Content Security Policy (CSP) Header Not Set", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, { "name": "CSP: Notices", "riskcode": "1", @@ -5457,7 +5453,7 @@ "type": "dns", "host": "api.trackdechets.beta.gouv.fr.", "matched-at": "api.trackdechets.beta.gouv.fr", - "timestamp": "2023-12-17T01:23:25.195518164Z", + "timestamp": "2023-12-24T01:18:33.911386984Z", "matcher-status": true }, { @@ -5492,7 +5488,7 @@ "extracted-results": [ "trackdechets-api.baleen.cshield.net." ], - "timestamp": "2023-12-17T01:23:25.437625343Z", + "timestamp": "2023-12-24T01:18:34.48357148Z", "matcher-status": true }, { @@ -5517,8 +5513,119 @@ "type": "http", "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:24:00.864396562Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:31.316820877Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.52998703Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530032214Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530054667Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5554,8 +5661,45 @@ "type": "http", "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:24:10.421964618Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530096034Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.53012092Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5591,8 +5735,119 @@ "type": "http", "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:24:10.422022596Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530145787Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530167848Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530193386Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://api.trackdechets.beta.gouv.fr", + "matched-at": "https://api.trackdechets.beta.gouv.fr", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:19:46.530217411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5607,7 +5862,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -5621,8 +5877,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:26:13.511555537Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:22:18.927771234Z", "matcher-status": true }, { @@ -5636,7 +5892,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -5650,8 +5907,8 @@ "extracted-results": [ "api.trackdechets.beta.gouv.fr" ], - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:26:13.511672966Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:22:18.927892801Z", "matcher-status": true }, { @@ -5666,7 +5923,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -5680,8 +5938,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:26:14.998180076Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:22:21.811861562Z", "matcher-status": true }, { @@ -5696,7 +5954,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -5710,8 +5969,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.179.148.96", - "timestamp": "2023-12-17T01:26:15.189203509Z", + "ip": "185.179.149.96", + "timestamp": "2023-12-24T01:22:22.469716629Z", "matcher-status": true } ], @@ -5719,7 +5978,7 @@ { "requestedUrl": "https://api.trackdechets.beta.gouv.fr/", "finalUrl": "https://api.trackdechets.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:18:13.489Z", + "fetchTime": "2023-12-24T01:14:42.134Z", "runWarnings": [], "categories": { "performance": { @@ -5730,7 +5989,7 @@ "snapshot" ], "id": "performance", - "score": 0.983976173400879 + "score": 0.9839471817016602 }, "accessibility": { "title": "Accessibility", @@ -5782,48 +6041,48 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5883, + "numericValue": 5872, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5883, - "firstMeaningfulPaint": 5883, - "interactive": 5883, - "speedIndex": 5883, + "firstContentfulPaint": 5872, + "firstMeaningfulPaint": 5872, + "interactive": 5872, + "speedIndex": 6043, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 390563748, + "observedTimeOriginTs": 461288968, "observedNavigationStart": 0, - "observedNavigationStartTs": 390563748, - "observedFirstPaint": 908, - "observedFirstPaintTs": 391472239, - "observedFirstContentfulPaint": 1125, - "observedFirstContentfulPaintTs": 391689139, - "observedFirstContentfulPaintAllFrames": 1125, - "observedFirstContentfulPaintAllFramesTs": 391689139, - "observedFirstMeaningfulPaint": 1125, - "observedFirstMeaningfulPaintTs": 391689139, - "observedTraceEnd": 4339, - "observedTraceEndTs": 394902800, - "observedLoad": 891, - "observedLoadTs": 391454464, + "observedNavigationStartTs": 461288968, + "observedFirstPaint": 1271, + "observedFirstPaintTs": 462559778, + "observedFirstContentfulPaint": 1564, + "observedFirstContentfulPaintTs": 462853191, + "observedFirstContentfulPaintAllFrames": 1564, + "observedFirstContentfulPaintAllFramesTs": 462853191, + "observedFirstMeaningfulPaint": 1564, + "observedFirstMeaningfulPaintTs": 462853191, + "observedTraceEnd": 5082, + "observedTraceEndTs": 466371299, + "observedLoad": 1330, + "observedLoadTs": 462619225, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 390564305, + "observedDomContentLoadedTs": 461289504, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 920, - "observedFirstVisualChangeTs": 391483748, - "observedLastVisualChange": 1603, - "observedLastVisualChangeTs": 392166748, - "observedSpeedIndex": 1357, - "observedSpeedIndexTs": 391920489 + "observedFirstVisualChange": 1242, + "observedFirstVisualChangeTs": 462530968, + "observedLastVisualChange": 2042, + "observedLastVisualChangeTs": 463330968, + "observedSpeedIndex": 1769, + "observedSpeedIndexTs": 463057477 }, { "lcpInvalidated": false @@ -5845,19 +6104,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 0, - "numTasks": 13, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 87.762, - "throughput": 13335594.028587522, - "maxRtt": 87.762, - "maxServerLatency": 32.794, - "totalByteWeight": 1132587, - "totalTaskTime": 4.436000000000001, - "mainDocumentTransferSize": 1249 + "rtt": 149.23000000000002, + "throughput": 7582853.647494942, + "maxRtt": 149.23000000000002, + "maxServerLatency": 21.686999999999983, + "totalByteWeight": 1132739, + "totalTaskTime": 5.662999999999999, + "mainDocumentTransferSize": 1248 } ] } @@ -5961,7 +6220,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.983976173400879, + "lighthouse_performance": 0.9839471817016602, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.64, "lighthouse_accessibilityGrade": "C", @@ -5990,7 +6249,7 @@ "http": { "url": "https://annuaire-entreprises.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:16:36 GMT", + "end_time": "Sun, 24 Dec 2023 01:14:54 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -5999,16 +6258,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 01:16:35 GMT", + "Date": "Sun, 24 Dec 2023 01:14:53 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45536553, + "scan_id": 45751959, "score": 55, - "start_time": "Sun, 17 Dec 2023 01:16:33 GMT", + "start_time": "Sun, 24 Dec 2023 01:14:50 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -6547,7 +6806,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "OK", - "finding": "43 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -6715,7 +6974,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "1702775885" + "finding": "1703380612" }, { "id": "HSTS_time", @@ -7299,7 +7558,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "101" } ], "thirdparties": { @@ -7319,7 +7578,7 @@ "value": "1", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1702777632, + "expires": 1703382325, "size": 17, "httpOnly": false, "secure": false, @@ -7331,10 +7590,10 @@ }, { "name": "_pk_id.145.4c08", - "value": "8f4013a39d2b47c0.1702775832.", + "value": "fae6f3d5f8378cb2.1703380526.", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1736731032, + "expires": 1737335726, "size": 43, "httpOnly": false, "secure": false, @@ -7346,10 +7605,10 @@ }, { "name": "annuaire-entreprises-session", - "value": "Fe26.2*1*ab41332b29c16240f104fd3bcec5969ad0cfe95a853aba9e364c562c8b811f38*KfyK0hEnfMubhHh3oDTqsQ*T7cfuJMm7_VxleQoO65PKU44iICj3EfAJPLQnn-b1wGrKG-gldp6yFQYcgiM4JfV*1704071831376*472e3ed39bfdad52db680d339fe6b78aeb0a88c87296ec7d4223c5f3d8e4de6b*4HjF6EG6Afl1JkB5XAacypPiuOELIk2hLLYfq93YwZ4~2", + "value": "Fe26.2*1*3d88b6aca9ca8a2c69bf80702b347cae0ca64b290c23d2a05f5e2c45d034aa3b*ZaSp3s_EG0Q_laOaFmiOdw*DmHU46LXjds-BiAUlPFOzq5Ora7OzxbjFqWHoerXziR9_8J5EVbFcNwO2verov-h*1704676524535*e021810f3a6bb12d9c5b1bf06e917b84feb5f8a153c1162a36bf157d9a4039ee*uq25WIVaWOO8mizhxoeKE1uo5h81XMOSvNkPkF9-D0c~2", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1704071771.437588, + "expires": 1704676464.640652, "size": 314, "httpOnly": true, "secure": true, @@ -7361,11 +7620,11 @@ }, { "name": "bln_challengejs", - "value": "Zd__1N1-6sf4gdz2S3tyyKwZj0TssKcTW_FcFOHZE5VC69nGVZj4iqSIbb9jfgi-wKMDcAtVz_NzB6BIF4Z502w-g-Vc7aToTF-j7ijnP1MMlsNvsfjtxBZn6C0mqMyFX-zBSSPrYI7T56bwUl_Awy-mZfqzcUkyoYsm-qaJk7m8SmBu2M2oJSuND9bhxcpQjZK6gpZPXhAhlkUhT7hHBRD432HzuLm4YKM2mjhmWcOqPZJkqDHp41GL7fAe-6DOUp-6kXAtwo3uBIZvw4nF9Q", + "value": "Zd__1N1-6sf4gdz2S3tyyBldcc7NEwO4n5Yu279QR2DRq854C4VtqB6jiwzONmtEFj4urQssx6ehnObLrwEXOnRn-a0LS-QKFdpo66RyL4gyrJ_fCiHKGg9zsim6aCIiXZZuqYHb3bXViMQr9dZtfYrrdaFNskmT2IX9dvahQEoY6YwE1za1ICNsJ87I673Wu-DB9Z3LQnkRTji9gwvVYlyNhUKsavDvJCgsaoMrhygPylvYgEG7883E89RAxvHS", "domain": ".data.gouv.fr", "path": "/", - "expires": 1702776731.313916, - "size": 293, + "expires": 1703381424.438771, + "size": 271, "httpOnly": false, "secure": false, "session": false, @@ -7380,17 +7639,17 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 01:17:11 GMT", - "etag": "\"12h2k6qqmxdouo\"", + "date": "Sun, 24 Dec 2023 01:15:24 GMT", + "etag": "\"jtevad8g41p5y\"", "referrer-policy": "origin-when-cross-origin", - "set-cookie": "annuaire-entreprises-session=Fe26.2*1*ab41332b29c16240f104fd3bcec5969ad0cfe95a853aba9e364c562c8b811f38*KfyK0hEnfMubhHh3oDTqsQ*T7cfuJMm7_VxleQoO65PKU44iICj3EfAJPLQnn-b1wGrKG-gldp6yFQYcgiM4JfV*1704071831376*472e3ed39bfdad52db680d339fe6b78aeb0a88c87296ec7d4223c5f3d8e4de6b*4HjF6EG6Afl1JkB5XAacypPiuOELIk2hLLYfq93YwZ4~2; Max-Age=1295940; Path=/; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "annuaire-entreprises-session=Fe26.2*1*3d88b6aca9ca8a2c69bf80702b347cae0ca64b290c23d2a05f5e2c45d034aa3b*ZaSp3s_EG0Q_laOaFmiOdw*DmHU46LXjds-BiAUlPFOzq5Ora7OzxbjFqWHoerXziR9_8J5EVbFcNwO2verov-h*1704676524535*e021810f3a6bb12d9c5b1bf06e917b84feb5f8a153c1162a36bf157d9a4039ee*uq25WIVaWOO8mizhxoeKE1uo5h81XMOSvNkPkF9-D0c~2; Max-Age=1295940; Path=/; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Next.js", - "x-varnish": "45117083", + "x-varnish": "53279370", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -7452,7 +7711,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.115.95", + "ip": "142.250.189.234", "geoip": { "continent": { "code": "NA", @@ -7536,7 +7795,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:16:07", + "@generated": "Sun, 24 Dec 2023 01:14:24", "site": [ { "@name": "https://annuaire-entreprises.data.gouv.fr", @@ -7593,13 +7852,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, { "name": "Re-examine Cache-control Directives", "riskcode": "0", @@ -7655,73 +7907,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "annuaire-entreprises.data.gouv.fr.", "matched-at": "annuaire-entreprises.data.gouv.fr", - "timestamp": "2023-12-17T01:19:26.563553689Z", + "extracted-results": [ + "gouv-data-annuaire-entreprises.baleen.cshield.net." + ], + "timestamp": "2023-12-24T01:18:38.47661441Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "annuaire-entreprises.data.gouv.fr.", "matched-at": "annuaire-entreprises.data.gouv.fr", - "extracted-results": [ - "gouv-data-annuaire-entreprises.baleen.cshield.net." - ], - "timestamp": "2023-12-17T01:19:26.644470361Z", + "timestamp": "2023-12-24T01:18:38.530528665Z", "matcher-status": true }, { @@ -7761,7 +8013,7 @@ "1; mode=block" ], "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:19:37.943862574Z", + "timestamp": "2023-12-24T01:18:58.077507018Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7788,7 +8040,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:00.358254459Z", + "timestamp": "2023-12-24T01:19:35.097217961Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7825,7 +8077,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809005973Z", + "timestamp": "2023-12-24T01:19:49.8531869Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7862,7 +8114,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809068249Z", + "timestamp": "2023-12-24T01:19:49.853238737Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7899,7 +8151,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809084589Z", + "timestamp": "2023-12-24T01:19:49.853254797Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7936,7 +8188,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809097052Z", + "timestamp": "2023-12-24T01:19:49.853270246Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7973,7 +8225,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809109446Z", + "timestamp": "2023-12-24T01:19:49.85333006Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -8010,7 +8262,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809124554Z", + "timestamp": "2023-12-24T01:19:49.853370084Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -8047,7 +8299,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809139211Z", + "timestamp": "2023-12-24T01:19:49.853418905Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -8084,7 +8336,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:08.809152836Z", + "timestamp": "2023-12-24T01:19:49.853448871Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -8112,7 +8364,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr/robots.txt", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:18.078057499Z", + "timestamp": "2023-12-24T01:20:06.128203522Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr/robots.txt'", "matcher-status": true }, @@ -8140,7 +8392,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr/robots.txt", "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:20:18.084593522Z", + "timestamp": "2023-12-24T01:20:06.228637088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr/robots.txt'", "matcher-status": true }, @@ -8155,7 +8407,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -8170,7 +8423,7 @@ "Let's Encrypt" ], "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:22:09.424015661Z", + "timestamp": "2023-12-24T01:22:20.442899697Z", "matcher-status": true }, { @@ -8184,7 +8437,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -8199,7 +8453,7 @@ "annuaire-entreprises.data.gouv.fr" ], "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:22:09.424138859Z", + "timestamp": "2023-12-24T01:22:20.443039347Z", "matcher-status": true }, { @@ -8214,7 +8468,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -8229,7 +8484,7 @@ "tls12" ], "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:22:10.857571906Z", + "timestamp": "2023-12-24T01:22:23.02024605Z", "matcher-status": true }, { @@ -8244,7 +8499,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -8259,7 +8515,7 @@ "tls13" ], "ip": "185.231.164.12", - "timestamp": "2023-12-17T01:22:11.059916547Z", + "timestamp": "2023-12-24T01:22:23.328202245Z", "matcher-status": true } ], @@ -8267,7 +8523,7 @@ { "requestedUrl": "https://annuaire-entreprises.data.gouv.fr/", "finalUrl": "https://annuaire-entreprises.data.gouv.fr/", - "fetchTime": "2023-12-17T01:16:22.463Z", + "fetchTime": "2023-12-24T01:14:39.155Z", "runWarnings": [], "categories": { "performance": { @@ -8330,53 +8586,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4159, + "numericValue": 4225, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1837, - "firstMeaningfulPaint": 1837, - "largestContentfulPaint": 2088, - "interactive": 4159, - "speedIndex": 1837, - "totalBlockingTime": 304, - "maxPotentialFID": 245, - "cumulativeLayoutShift": 0.0008603481716579861, - "cumulativeLayoutShiftMainFrame": 0.0008603481716579861, - "totalCumulativeLayoutShift": 0.0008603481716579861, + "firstContentfulPaint": 2087, + "firstMeaningfulPaint": 2087, + "largestContentfulPaint": 2354, + "interactive": 4225, + "speedIndex": 2088, + "totalBlockingTime": 70, + "maxPotentialFID": 97, + "cumulativeLayoutShift": 0.0030225427415635853, + "cumulativeLayoutShiftMainFrame": 0.0030225427415635853, + "totalCumulativeLayoutShift": 0.0030225427415635853, "observedTimeOrigin": 0, - "observedTimeOriginTs": 345041500, + "observedTimeOriginTs": 354941240, "observedNavigationStart": 0, - "observedNavigationStartTs": 345041500, - "observedFirstPaint": 363, - "observedFirstPaintTs": 345404743, - "observedFirstContentfulPaint": 363, - "observedFirstContentfulPaintTs": 345404743, - "observedFirstContentfulPaintAllFrames": 363, - "observedFirstContentfulPaintAllFramesTs": 345404743, - "observedFirstMeaningfulPaint": 363, - "observedFirstMeaningfulPaintTs": 345404743, - "observedLargestContentfulPaint": 363, - "observedLargestContentfulPaintTs": 345404743, - "observedLargestContentfulPaintAllFrames": 363, - "observedLargestContentfulPaintAllFramesTs": 345404743, - "observedTraceEnd": 2863, - "observedTraceEndTs": 347904818, - "observedLoad": 744, - "observedLoadTs": 345785842, - "observedDomContentLoaded": 546, - "observedDomContentLoadedTs": 345587462, - "observedCumulativeLayoutShift": 0.0008603481716579861, - "observedCumulativeLayoutShiftMainFrame": 0.0008603481716579861, - "observedTotalCumulativeLayoutShift": 0.0008603481716579861, - "observedFirstVisualChange": 361, - "observedFirstVisualChangeTs": 345402500, - "observedLastVisualChange": 2861, - "observedLastVisualChangeTs": 347902500, - "observedSpeedIndex": 393, - "observedSpeedIndexTs": 345434682 + "observedNavigationStartTs": 354941240, + "observedFirstPaint": 648, + "observedFirstPaintTs": 355589128, + "observedFirstContentfulPaint": 648, + "observedFirstContentfulPaintTs": 355589128, + "observedFirstContentfulPaintAllFrames": 648, + "observedFirstContentfulPaintAllFramesTs": 355589128, + "observedFirstMeaningfulPaint": 648, + "observedFirstMeaningfulPaintTs": 355589128, + "observedLargestContentfulPaint": 648, + "observedLargestContentfulPaintTs": 355589128, + "observedLargestContentfulPaintAllFrames": 648, + "observedLargestContentfulPaintAllFramesTs": 355589128, + "observedTraceEnd": 3463, + "observedTraceEndTs": 358404103, + "observedLoad": 1153, + "observedLoadTs": 356094631, + "observedDomContentLoaded": 862, + "observedDomContentLoadedTs": 355803550, + "observedCumulativeLayoutShift": 0.0030225427415635853, + "observedCumulativeLayoutShiftMainFrame": 0.0030225427415635853, + "observedTotalCumulativeLayoutShift": 0.0030225427415635853, + "observedFirstVisualChange": 661, + "observedFirstVisualChangeTs": 355602240, + "observedLastVisualChange": 3144, + "observedLastVisualChangeTs": 358085240, + "observedSpeedIndex": 701, + "observedSpeedIndexTs": 355642107 }, { "lcpInvalidated": false @@ -8394,22 +8650,22 @@ "type": "debugdata", "items": [ { - "numRequests": 30, + "numRequests": 31, "numScripts": 2, "numStylesheets": 4, "numFonts": 5, - "numTasks": 716, + "numTasks": 724, "numTasksOver10ms": 5, - "numTasksOver25ms": 5, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 6.236999999999998, - "throughput": 8195830.646893462, - "maxRtt": 85.884, - "maxServerLatency": 101.623, - "totalByteWeight": 429021, - "totalTaskTime": 300.6749999999988, + "rtt": 1.8089999999999997, + "throughput": 5818047.256634209, + "maxRtt": 147.759, + "maxServerLatency": 130.42500000000004, + "totalByteWeight": 440232, + "totalTaskTime": 282.229999999999, "mainDocumentTransferSize": 2062 } ] @@ -8535,7 +8791,7 @@ "http": { "url": "https://acceslibre.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:23:33 GMT", + "end_time": "Sun, 24 Dec 2023 01:22:07 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -8545,19 +8801,19 @@ "Content-Language": "fr", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:23:32 GMT", + "Date": "Sun, 24 Dec 2023 01:22:06 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=1w1anLdWevPe5tlawq5k9hA8MDGUfjjJ; expires=Sun, 15 Dec 2024 01:23:32 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Set-Cookie": "csrftoken=UqWI9iQR3HIQsf1Y0dNAdoP7aWJziwMF; expires=Sun, 22 Dec 2024 01:22:06 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie, origin, Accept-Language", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "44844f9a-01cc-4ecd-a1b2-9b7a9ec131f8" + "X-Request-ID": "fe660973-953f-4e1a-8080-51ce905d26e1" }, - "scan_id": 45536672, + "scan_id": 45752086, "score": 65, - "start_time": "Sun, 17 Dec 2023 01:23:29 GMT", + "start_time": "Sun, 24 Dec 2023 01:22:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -8597,7 +8853,7 @@ "data": { "csrftoken": { "domain": "acceslibre.beta.gouv.fr", - "expires": 1734225812, + "expires": 1734830527, "httponly": false, "max-age": null, "path": "/", @@ -8753,15 +9009,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T01:45:24Z", - "next_check_at": "2023-12-17T01:50:21Z", + "last_check_at": "2023-12-24T01:48:10Z", + "next_check_at": "2023-12-24T01:53:09Z", "mute_until": null, "favicon_url": "https://acceslibre.beta.gouv.fr/static/img/favicon.f67248f8d5b7.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T01:00:35Z", + "tested_at": "2023-12-24T01:18:17Z", "expires_at": "2024-03-10T13:10:08Z", "valid": true, "error": null @@ -8770,11 +9026,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 15, - "connection": 100, - "handshake": 107, - "response": 118, - "total": 340 + "namelookup": 50, + "connection": 155, + "handshake": 161, + "response": 167, + "total": 534 } }, "uptimeGrade": "A", @@ -8807,77 +9063,77 @@ "testssl": [ { "id": "service", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -8885,7 +9141,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -8893,7 +9149,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -8901,7 +9157,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -8909,7 +9165,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -8917,7 +9173,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -8925,525 +9181,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-11 13:10" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-10 13:10" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702776908" + "finding": "1703381804" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -9451,7 +9707,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -9460,7 +9716,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -9469,7 +9725,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -9478,7 +9734,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -9487,7 +9743,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -9495,7 +9751,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -9504,7 +9760,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -9513,7 +9769,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -9522,7 +9778,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -9531,14 +9787,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -9547,7 +9803,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -9556,7 +9812,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -9565,7 +9821,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -9574,7 +9830,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -9583,7 +9839,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -9592,7 +9848,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -9601,7 +9857,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -9610,7 +9866,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -9619,7 +9875,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -9628,392 +9884,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -10021,7 +10277,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -10029,7 +10285,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -10037,7 +10293,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -10045,7 +10301,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -10053,7 +10309,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -10061,525 +10317,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-11 13:10" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-10 13:10" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702776962" + "finding": "1703381858" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -10587,7 +10843,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -10596,7 +10852,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -10605,7 +10861,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -10614,7 +10870,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -10623,7 +10879,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -10631,7 +10887,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -10640,7 +10896,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -10649,7 +10905,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -10658,7 +10914,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -10667,14 +10923,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -10683,7 +10939,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -10692,7 +10948,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -10701,7 +10957,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -10710,7 +10966,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -10719,7 +10975,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -10728,7 +10984,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -10737,7 +10993,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -10746,7 +11002,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -10755,7 +11011,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -10764,392 +11020,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/148.253.75.120", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -11157,7 +11413,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -11165,7 +11421,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -11173,7 +11429,7 @@ }, { "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -11181,7 +11437,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -11189,7 +11445,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -11197,525 +11453,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-11 13:10" }, { "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-10 13:10" }, { "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702777016" + "finding": "1703381912" }, { "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -11723,7 +11979,7 @@ }, { "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -11732,7 +11988,7 @@ }, { "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -11741,7 +11997,7 @@ }, { "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -11750,7 +12006,7 @@ }, { "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -11759,7 +12015,7 @@ }, { "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -11767,7 +12023,7 @@ }, { "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -11776,7 +12032,7 @@ }, { "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -11785,7 +12041,7 @@ }, { "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -11794,7 +12050,7 @@ }, { "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -11803,14 +12059,14 @@ }, { "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -11819,7 +12075,7 @@ }, { "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -11828,7 +12084,7 @@ }, { "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -11837,7 +12093,7 @@ }, { "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -11846,7 +12102,7 @@ }, { "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -11855,7 +12111,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -11864,7 +12120,7 @@ }, { "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -11873,7 +12129,7 @@ }, { "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -11882,7 +12138,7 @@ }, { "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -11891,7 +12147,7 @@ }, { "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -11900,315 +12156,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -12560,7 +12816,7 @@ "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "84 >= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", @@ -12756,14 +13012,14 @@ "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702777071" + "finding": "1703381972" }, { "id": "HSTS_time", @@ -13354,7 +13610,7 @@ "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "222" + "finding": "225" } ], "thirdparties": { @@ -13373,7 +13629,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/600aff6d-b1eb-414c-a186-233177221bbf/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-1-34" + "url": "https://client.crisp.chat/settings/website/600aff6d-b1eb-414c-a186-233177221bbf/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-1-36" }, { "type": "unknown", @@ -13390,7 +13646,7 @@ "value": "1", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1702778665, + "expires": 1703383562, "size": 17, "httpOnly": false, "secure": false, @@ -13402,10 +13658,10 @@ }, { "name": "_pk_id.118.c7e8", - "value": "048240db85f7202f.1702776866.", + "value": "31d8741b87bbf3ad.1703381763.", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1736732066, + "expires": 1737336963, "size": 43, "httpOnly": false, "secure": false, @@ -13417,10 +13673,10 @@ }, { "name": "csrftoken", - "value": "k2ocbUjmRyW75j5kTtPDGvFXcV5xuMtt", + "value": "QNt4Z1IgVMgtFafDILP3tkH0PS3iXDyY", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1734226464.352575, + "expires": 1734831361.99909, "size": 41, "httpOnly": false, "secure": true, @@ -13436,29 +13692,20 @@ "content-language": "en", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 01:34:24 GMT", + "date": "Sun, 24 Dec 2023 01:36:01 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=k2ocbUjmRyW75j5kTtPDGvFXcV5xuMtt; expires=Sun, 15 Dec 2024 01:34:24 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=QNt4Z1IgVMgtFafDILP3tkH0PS3iXDyY; expires=Sun, 22 Dec 2024 01:36:01 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin, Accept-Language", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "44a9a69d-2e16-4813-a73c-65cd8657e1a3" + "x-request-id": "71ca7d11-d37f-4971-897c-d9d77fb52470" }, "endpoints": [ { "hostname": "acceslibre.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "148.253.75.120", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -13490,13 +13737,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -13511,68 +13755,13 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { "hostname": "client.crisp.chat", - "ip": "172.64.153.75", + "ip": "104.18.34.181", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -13782,7 +13971,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:33:44", + "@generated": "Sun, 24 Dec 2023 01:35:20", "site": [ { "@name": "https://acceslibre.beta.gouv.fr", @@ -13790,13 +13979,6 @@ "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "Hash Disclosure - Mac OSX salted SHA-1", - "riskcode": "3", - "confidence": "2", - "riskdesc": "High (Medium)", - "desc": "

A hash was disclosed by the web server. - Mac OSX salted SHA-1

" - }, { "name": "Absence of Anti-CSRF Tokens", "riskcode": "2", @@ -14016,7 +14198,7 @@ "extracted-results": [ "access4all.osc-fr1.scalingo.io." ], - "timestamp": "2023-12-17T01:39:15.811647219Z", + "timestamp": "2023-12-24T01:40:54.618260225Z", "matcher-status": true }, { @@ -14051,7 +14233,7 @@ "type": "dns", "host": "acceslibre.beta.gouv.fr.", "matched-at": "acceslibre.beta.gouv.fr", - "timestamp": "2023-12-17T01:39:15.817649816Z", + "timestamp": "2023-12-24T01:40:55.916311083Z", "matcher-status": true }, { @@ -14089,8 +14271,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:27.3577208Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:06.958524982Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14125,8 +14307,8 @@ "extracted-results": [ "https://4007bda579804c1499dd28ae18cb0ff5@sentry.incubateur.net/35" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:27.388965002Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:06.987755115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14163,8 +14345,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:50.641425464Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:30.852907035Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14201,8 +14383,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:50.641475266Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:30.852974981Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14228,8 +14410,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:50.722034991Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:30.934669874Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14263,8 +14445,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:55.017735005Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:34.929510165Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14296,12 +14478,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906223451Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678439283Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14333,12 +14515,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906261511Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678482593Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14370,12 +14552,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906272562Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678493955Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14407,12 +14589,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906287089Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678503793Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14444,12 +14626,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906305834Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678512629Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14481,12 +14663,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:39:58.906341129Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:38.678524481Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14527,8 +14709,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/api/docs/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:40:04.640374617Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:44.309609615Z", "curl-command": "curl -X 'GET' -H 'Accept: text/html' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/api/docs/'", "matcher-status": true }, @@ -14555,8 +14737,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/robots.txt", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:40:08.535777281Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:48.166596897Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -14586,8 +14768,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/sitemap.xml", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:40:08.570858113Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:41:48.253817667Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/sitemap.xml'", "matcher-status": true }, @@ -14626,8 +14808,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:40:21.107135091Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:42:00.722708349Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: acceslibre.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/'", "matcher-status": true }, @@ -14642,7 +14824,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -14656,8 +14839,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:46:00.907237326Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:47:40.442652276Z", "matcher-status": true }, { @@ -14671,7 +14854,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -14685,8 +14869,8 @@ "extracted-results": [ "acceslibre.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:46:00.907350437Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:47:40.442759395Z", "matcher-status": true }, { @@ -14701,7 +14885,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -14715,8 +14900,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:46:02.272942435Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:47:41.817124186Z", "matcher-status": true }, { @@ -14731,7 +14916,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -14745,8 +14931,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T01:46:02.465323816Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T01:47:41.991022651Z", "matcher-status": true } ], @@ -14754,7 +14940,7 @@ { "requestedUrl": "https://acceslibre.beta.gouv.fr/", "finalUrl": "https://acceslibre.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:33:58.654Z", + "fetchTime": "2023-12-24T01:35:34.321Z", "runWarnings": [], "categories": { "performance": { @@ -14765,7 +14951,7 @@ "snapshot" ], "id": "performance", - "score": 0.9967784881591797 + "score": 0.9966808319091797 }, "accessibility": { "title": "Accessibility", @@ -14817,53 +15003,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4370, + "numericValue": 4440, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4370, - "firstMeaningfulPaint": 4370, - "largestContentfulPaint": 5838, - "interactive": 4370, - "speedIndex": 4370, + "firstContentfulPaint": 4440, + "firstMeaningfulPaint": 4440, + "largestContentfulPaint": 5931, + "interactive": 4440, + "speedIndex": 4440, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.007691393640306261, - "cumulativeLayoutShiftMainFrame": 0.007691393640306261, - "totalCumulativeLayoutShift": 0.007691393640306261, + "cumulativeLayoutShift": 0.007000783284505209, + "cumulativeLayoutShiftMainFrame": 0.007000783284505209, + "totalCumulativeLayoutShift": 0.007000783284505209, "observedTimeOrigin": 0, - "observedTimeOriginTs": 455924029, + "observedTimeOriginTs": 338443965, "observedNavigationStart": 0, - "observedNavigationStartTs": 455924029, - "observedFirstPaint": 580, - "observedFirstPaintTs": 456503915, - "observedFirstContentfulPaint": 580, - "observedFirstContentfulPaintTs": 456503915, - "observedFirstContentfulPaintAllFrames": 580, - "observedFirstContentfulPaintAllFramesTs": 456503915, - "observedFirstMeaningfulPaint": 580, - "observedFirstMeaningfulPaintTs": 456503915, - "observedLargestContentfulPaint": 580, - "observedLargestContentfulPaintTs": 456503915, - "observedLargestContentfulPaintAllFrames": 580, - "observedLargestContentfulPaintAllFramesTs": 456503915, - "observedTraceEnd": 3206, - "observedTraceEndTs": 459130300, - "observedLoad": 900, - "observedLoadTs": 456823690, + "observedNavigationStartTs": 338443965, + "observedFirstPaint": 545, + "observedFirstPaintTs": 338988814, + "observedFirstContentfulPaint": 545, + "observedFirstContentfulPaintTs": 338988814, + "observedFirstContentfulPaintAllFrames": 545, + "observedFirstContentfulPaintAllFramesTs": 338988814, + "observedFirstMeaningfulPaint": 545, + "observedFirstMeaningfulPaintTs": 338988814, + "observedLargestContentfulPaint": 545, + "observedLargestContentfulPaintTs": 338988814, + "observedLargestContentfulPaintAllFrames": 545, + "observedLargestContentfulPaintAllFramesTs": 338988814, + "observedTraceEnd": 3230, + "observedTraceEndTs": 341673766, + "observedLoad": 922, + "observedLoadTs": 339365557, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 455924546, - "observedCumulativeLayoutShift": 0.007691393640306261, - "observedCumulativeLayoutShiftMainFrame": 0.007691393640306261, - "observedTotalCumulativeLayoutShift": 0.007691393640306261, - "observedFirstVisualChange": 574, - "observedFirstVisualChangeTs": 456498029, - "observedLastVisualChange": 924, - "observedLastVisualChangeTs": 456848029, - "observedSpeedIndex": 583, - "observedSpeedIndexTs": 456506572 + "observedDomContentLoadedTs": 338444816, + "observedCumulativeLayoutShift": 0.007000783284505209, + "observedCumulativeLayoutShiftMainFrame": 0.007000783284505209, + "observedTotalCumulativeLayoutShift": 0.007000783284505209, + "observedFirstVisualChange": 542, + "observedFirstVisualChangeTs": 338985965, + "observedLastVisualChange": 692, + "observedLastVisualChangeTs": 339135965, + "observedSpeedIndex": 547, + "observedSpeedIndexTs": 338990940 }, { "lcpInvalidated": false @@ -14885,19 +15071,19 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 4, - "numTasks": 14, + "numTasks": 29, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.377000000000001, - "throughput": 19755225.776241977, - "maxRtt": 82.739, - "maxServerLatency": 23.411, - "totalByteWeight": 1065466, - "totalTaskTime": 4.949, - "mainDocumentTransferSize": 6421 + "rtt": 1.6530000000000002, + "throughput": 18040210.529878605, + "maxRtt": 85.832, + "maxServerLatency": 11.543999999999969, + "totalByteWeight": 1065978, + "totalTaskTime": 4.563999999999998, + "mainDocumentTransferSize": 6449 } ] } @@ -15006,7 +15192,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.9967784881591797, + "lighthouse_performance": 0.9966808319091797, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -15032,7 +15218,7 @@ "http": { "url": "https://adock.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:12:26 GMT", + "end_time": "Sun, 24 Dec 2023 01:11:09 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -15042,7 +15228,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' *.gouv.fr; report-uri https://o59236.ingest.sentry.io/api/1187894/envelope/; connect-src 'self' https://o59236.ingest.sentry.io/ https://api-adresse.data.gouv.fr/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; font-src 'self' https://fonts.gstatic.com/ themes.googleusercontent.com data:; script-src 'self' https://stats.data.gouv.fr/; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; img-src 'self' https: data:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:12:25 GMT", + "Date": "Sun, 24 Dec 2023 01:11:08 GMT", "ETag": "W/\"64669689-4f4\"", "Last-Modified": "Thu, 18 May 2023 21:20:09 GMT", "Server": "nginx", @@ -15053,9 +15239,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45536339, + "scan_id": 45751741, "score": 105, - "start_time": "Sun, 17 Dec 2023 01:12:22 GMT", + "start_time": "Sun, 24 Dec 2023 01:11:05 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -15072,16 +15258,16 @@ ], "connect-src": [ "'self'", - "https://api-adresse.data.gouv.fr/", - "https://o59236.ingest.sentry.io/" + "https://o59236.ingest.sentry.io/", + "https://api-adresse.data.gouv.fr/" ], "default-src": [ "'self'", "*.gouv.fr" ], "font-src": [ - "'self'", "themes.googleusercontent.com", + "'self'", "data:", "https://fonts.gstatic.com/" ], @@ -15092,20 +15278,20 @@ "'none'" ], "img-src": [ - "https:", "'self'", - "data:" + "data:", + "https:" ], "report-uri": [ "https://o59236.ingest.sentry.io/api/1187894/envelope/" ], "script-src": [ - "'self'", - "https://stats.data.gouv.fr/" + "https://stats.data.gouv.fr/", + "'self'" ], "style-src": [ - "'self'", "'unsafe-inline'", + "'self'", "https://fonts.googleapis.com/" ] }, @@ -15294,15 +15480,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T01:39:56Z", - "next_check_at": "2023-12-17T01:44:55Z", + "last_check_at": "2023-12-24T01:41:39Z", + "next_check_at": "2023-12-24T01:46:39Z", "mute_until": null, "favicon_url": "https://adock.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T00:55:12Z", + "tested_at": "2023-12-24T01:16:51Z", "expires_at": "2024-02-27T05:58:04Z", "valid": true, "error": null @@ -15311,11 +15497,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 132, - "connection": 112, - "handshake": 232, - "response": 112, - "total": 589 + "namelookup": 164, + "connection": 146, + "handshake": 300, + "response": 146, + "total": 756 } }, "uptimeGrade": "A", @@ -15331,7 +15517,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.3", + "version": "8.9p1 Ubuntu 3ubuntu0.5", "vulnerabilities": [] } }, @@ -15732,7 +15918,7 @@ "ip": "adock.beta.gouv.fr/176.31.253.20", "port": "443", "severity": "OK", - "finding": "72 >= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", @@ -15942,7 +16128,7 @@ "ip": "adock.beta.gouv.fr/176.31.253.20", "port": "443", "severity": "INFO", - "finding": "1702777070" + "finding": "1703381753" }, { "id": "HSTS_time", @@ -16553,7 +16739,7 @@ "value": "1", "domain": "adock.beta.gouv.fr", "path": "/", - "expires": 1702778830, + "expires": 1703383513, "size": 16, "httpOnly": false, "secure": false, @@ -16565,10 +16751,10 @@ }, { "name": "_pk_id.50.ea54", - "value": "f80ffb9827851eef.1702777031.", + "value": "0c987e1520f96729.1703381714.", "domain": "adock.beta.gouv.fr", "path": "/", - "expires": 1736732231, + "expires": 1737336914, "size": 42, "httpOnly": false, "secure": false, @@ -16584,7 +16770,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' *.gouv.fr; report-uri https://o59236.ingest.sentry.io/api/1187894/envelope/; connect-src 'self' https://o59236.ingest.sentry.io/ https://api-adresse.data.gouv.fr/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; font-src 'self' https://fonts.gstatic.com/ themes.googleusercontent.com data:; script-src 'self' https://stats.data.gouv.fr/; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; img-src 'self' https: data:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 01:37:09 GMT", + "date": "Sun, 24 Dec 2023 01:35:12 GMT", "etag": "W/\"64669689-4f4\"", "last-modified": "Thu, 18 May 2023 21:20:09 GMT", "server": "nginx", @@ -16933,7 +17119,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:36:28", + "@generated": "Sun, 24 Dec 2023 01:34:32", "site": [ { "@name": "https://adock.beta.gouv.fr", @@ -17083,7 +17269,7 @@ "type": "dns", "host": "adock.beta.gouv.fr.", "matched-at": "adock.beta.gouv.fr", - "timestamp": "2023-12-17T01:39:08.675252925Z", + "timestamp": "2023-12-24T01:37:15.181944627Z", "matcher-status": true }, { @@ -17123,7 +17309,7 @@ "1; mode=block" ], "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:39:23.841708478Z", + "timestamp": "2023-12-24T01:37:30.047132865Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17150,7 +17336,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:39:53.296120694Z", + "timestamp": "2023-12-24T01:37:59.871609888Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17187,7 +17373,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090338557Z", + "timestamp": "2023-12-24T01:38:11.678501146Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17224,7 +17410,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090381988Z", + "timestamp": "2023-12-24T01:38:11.678564474Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17261,7 +17447,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090404921Z", + "timestamp": "2023-12-24T01:38:11.678585042Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17298,7 +17484,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090421071Z", + "timestamp": "2023-12-24T01:38:11.678597996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17335,7 +17521,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090434045Z", + "timestamp": "2023-12-24T01:38:11.67861106Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17372,7 +17558,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090447039Z", + "timestamp": "2023-12-24T01:38:11.678623543Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17409,7 +17595,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:05.090461216Z", + "timestamp": "2023-12-24T01:38:11.678638892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17444,12 +17630,12 @@ ] } }, - "matcher-name": "ats", + "matcher-name": "nginxgeneric", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr/", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:34.295113477Z", + "timestamp": "2023-12-24T01:38:41.276842506Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adock.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr/'", "matcher-status": true }, @@ -17484,12 +17670,12 @@ ] } }, - "matcher-name": "nginxgeneric", + "matcher-name": "ats", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr/", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:40:34.295160324Z", + "timestamp": "2023-12-24T01:38:41.276886357Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adock.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr/'", "matcher-status": true }, @@ -17536,10 +17722,10 @@ "host": "adock.beta.gouv.fr:22", "matched-at": "adock.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.3" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:41:28.98329482Z", + "timestamp": "2023-12-24T01:39:33.373774771Z", "matcher-status": true }, { @@ -17554,8 +17740,10 @@ ], "tags": [ "network", - "c2", "jarm", + "c2", + "ir", + "osint", "cti" ], "description": "Detect C2 Servers with JARM Hashes\n", @@ -17571,7 +17759,7 @@ "host": "adock.beta.gouv.fr:443", "matched-at": "adock.beta.gouv.fr:443", "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:42:01.657663256Z", + "timestamp": "2023-12-24T01:40:08.4440066Z", "matcher-status": true }, { @@ -17585,7 +17773,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -17600,7 +17789,7 @@ "Let's Encrypt" ], "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:42:09.614202781Z", + "timestamp": "2023-12-24T01:40:22.204513181Z", "matcher-status": true }, { @@ -17614,7 +17803,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -17629,7 +17819,7 @@ "adock.beta.gouv.fr" ], "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:42:09.614320791Z", + "timestamp": "2023-12-24T01:40:22.20462056Z", "matcher-status": true }, { @@ -17644,7 +17834,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -17659,7 +17850,7 @@ "tls12" ], "ip": "176.31.253.20", - "timestamp": "2023-12-17T01:42:12.678408578Z", + "timestamp": "2023-12-24T01:40:27.202678439Z", "matcher-status": true } ], @@ -17667,7 +17858,7 @@ { "requestedUrl": "https://adock.beta.gouv.fr/", "finalUrl": "https://adock.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:36:42.639Z", + "fetchTime": "2023-12-24T01:34:46.332Z", "runWarnings": [], "categories": { "performance": { @@ -17678,7 +17869,7 @@ "snapshot" ], "id": "performance", - "score": 0.968105697631836 + "score": 0.9680545806884766 }, "accessibility": { "title": "Accessibility", @@ -17730,53 +17921,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6510, + "numericValue": 4440, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { "firstContentfulPaint": 3714, - "firstMeaningfulPaint": 6510, - "largestContentfulPaint": 4903, - "interactive": 6510, - "speedIndex": 3823, + "firstMeaningfulPaint": 4440, + "largestContentfulPaint": 4899, + "interactive": 4440, + "speedIndex": 3798, "totalBlockingTime": 409, - "maxPotentialFID": 647, + "maxPotentialFID": 650, "cumulativeLayoutShift": 0.008662261962890626, "cumulativeLayoutShiftMainFrame": 0.008662261962890626, "totalCumulativeLayoutShift": 0.008662261962890626, "observedTimeOrigin": 0, - "observedTimeOriginTs": 338635318, + "observedTimeOriginTs": 419547347, "observedNavigationStart": 0, - "observedNavigationStartTs": 338635318, - "observedFirstPaint": 951, - "observedFirstPaintTs": 339586738, - "observedFirstContentfulPaint": 951, - "observedFirstContentfulPaintTs": 339586738, - "observedFirstContentfulPaintAllFrames": 951, - "observedFirstContentfulPaintAllFramesTs": 339586738, - "observedFirstMeaningfulPaint": 1127, - "observedFirstMeaningfulPaintTs": 339762509, - "observedLargestContentfulPaint": 1043, - "observedLargestContentfulPaintTs": 339678621, - "observedLargestContentfulPaintAllFrames": 1043, - "observedLargestContentfulPaintAllFramesTs": 339678621, - "observedTraceEnd": 3537, - "observedTraceEndTs": 342172780, - "observedLoad": 1229, - "observedLoadTs": 339864724, - "observedDomContentLoaded": 947, - "observedDomContentLoadedTs": 339582190, + "observedNavigationStartTs": 419547347, + "observedFirstPaint": 931, + "observedFirstPaintTs": 420477860, + "observedFirstContentfulPaint": 931, + "observedFirstContentfulPaintTs": 420477860, + "observedFirstContentfulPaintAllFrames": 931, + "observedFirstContentfulPaintAllFramesTs": 420477860, + "observedFirstMeaningfulPaint": 1094, + "observedFirstMeaningfulPaintTs": 420641548, + "observedLargestContentfulPaint": 1029, + "observedLargestContentfulPaintTs": 420576540, + "observedLargestContentfulPaintAllFrames": 1029, + "observedLargestContentfulPaintAllFramesTs": 420576540, + "observedTraceEnd": 3514, + "observedTraceEndTs": 423061692, + "observedLoad": 1206, + "observedLoadTs": 420753203, + "observedDomContentLoaded": 926, + "observedDomContentLoadedTs": 420473018, "observedCumulativeLayoutShift": 0.008662261962890626, "observedCumulativeLayoutShiftMainFrame": 0.008662261962890626, "observedTotalCumulativeLayoutShift": 0.008662261962890626, - "observedFirstVisualChange": 951, - "observedFirstVisualChangeTs": 339586318, - "observedLastVisualChange": 1551, - "observedLastVisualChangeTs": 340186318, - "observedSpeedIndex": 1046, - "observedSpeedIndexTs": 339681746 + "observedFirstVisualChange": 935, + "observedFirstVisualChangeTs": 420482347, + "observedLastVisualChange": 1535, + "observedLastVisualChangeTs": 421082347, + "observedSpeedIndex": 1028, + "observedSpeedIndexTs": 420575010 }, { "lcpInvalidated": false @@ -17798,18 +17989,18 @@ "numScripts": 3, "numStylesheets": 2, "numFonts": 3, - "numTasks": 484, - "numTasksOver10ms": 5, + "numTasks": 468, + "numTasksOver10ms": 4, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 6.284, - "throughput": 15815617.96729836, - "maxRtt": 85.812, - "maxServerLatency": 26.577000000000005, - "totalByteWeight": 1215794, - "totalTaskTime": 292.26199999999926, + "rtt": 6.563000000000001, + "throughput": 15777593.974722411, + "maxRtt": 85.90599999999999, + "maxServerLatency": 27.729999999999997, + "totalByteWeight": 1216062, + "totalTaskTime": 294.0639999999994, "mainDocumentTransferSize": 1181 } ] @@ -17917,7 +18108,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.968105697631836, + "lighthouse_performance": 0.9680545806884766, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.73, "lighthouse_accessibilityGrade": "B", @@ -17943,28 +18134,28 @@ "http": { "url": "https://aidantsconnect.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:32:31 GMT", + "end_time": "Sun, 24 Dec 2023 01:20:53 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js", + "Content-Security-Policy": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:32:28 GMT", + "Date": "Sun, 24 Dec 2023 01:20:51 GMT", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=60", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "83844e22-a05d-4b15-b7ae-697ebc0717e0" + "X-Request-ID": "4c67e9de-3923-49e3-a555-f99cc56d4eea" }, - "scan_id": 45536811, + "scan_id": 45752059, "score": 55, - "start_time": "Sun, 17 Dec 2023 01:32:24 GMT", + "start_time": "Sun, 24 Dec 2023 01:20:47 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -17977,67 +18168,67 @@ "output": { "data": { "connect-src": [ - "https://stats.data.gouv.fr/piwik.php", - "https://stats.data.gouv.fr/matomo.php", + "https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2", "https://api-adresse.data.gouv.fr/search/", "'self'", - "https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2" + "https://stats.data.gouv.fr/matomo.php", + "https://stats.data.gouv.fr/piwik.php" ], "default-src": [ "'self'" ], "frame-src": [ - "http://www.youtube-nocookie.com/embed/AJGo6bydQss", - "http://www.youtube-nocookie.com/embed/WTHj_kQXnzs", - "https://www.youtube.com/embed/WTHj_kQXnzs", + "https://www.youtube.com/embed/ihsm-36I-fE", "https://www.youtube.com/embed/hATrqHG4zYQ", - "https://www.youtube-nocookie.com/embed/AJGo6bydQss", - "http://www.youtube.com/embed/WTHj_kQXnzs", + "http://www.youtube.com/embed/ihsm-36I-fE", + "https://www.youtube-nocookie.com/embed/WTHj_kQXnzs", "https://www.youtube-nocookie.com/embed/ihsm-36I-fE", - "https://www.youtube-nocookie.com/embed/hATrqHG4zYQ", "https://www.youtube.com/embed/AJGo6bydQss", - "http://www.youtube-nocookie.com/embed/ihsm-36I-fE", - "http://www.youtube.com/embed/AJGo6bydQss", - "http://www.youtube.com/embed/hATrqHG4zYQ", - "http://www.youtube.com/embed/ihsm-36I-fE", + "http://www.youtube.com/embed/WTHj_kQXnzs", "http://www.youtube-nocookie.com/embed/hATrqHG4zYQ", - "https://www.youtube-nocookie.com/embed/WTHj_kQXnzs", - "https://www.youtube.com/embed/ihsm-36I-fE" + "http://www.youtube.com/embed/hATrqHG4zYQ", + "http://www.youtube-nocookie.com/embed/ihsm-36I-fE", + "https://www.youtube-nocookie.com/embed/AJGo6bydQss", + "https://www.youtube-nocookie.com/embed/hATrqHG4zYQ", + "http://www.youtube-nocookie.com/embed/WTHj_kQXnzs", + "https://www.youtube.com/embed/WTHj_kQXnzs", + "http://www.youtube-nocookie.com/embed/AJGo6bydQss", + "http://www.youtube.com/embed/AJGo6bydQss" ], "img-src": [ - "https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/", "'self'", - "data:" + "data:", + "https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/" ], "object-src": [ "'none'" ], "script-src": [ - "https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js", + "https://code.jquery.com/ui/1.13.1/jquery-ui.js", + "'sha256-co4gfu3p1qnocvjdyc+znsvh77xoc5h2oczyfb8yupa='", + "https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js", "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js", - "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js", - "'self'", - "'sha256-tzfaiqy7u6q6ovmbu59mz7pal/g930thgxhg6dg/chq='", - "'sha256-arvyo8aj91wuvpfvqp2ffhuihzjn3xali7vgj2tqx18='", - "https://forms.sbc29.com/form.js", - "https://stats.data.gouv.fr/piwik.js", "https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js", - "https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js", - "https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js", + "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js", "https://code.jquery.com/jquery-3.6.1.js", "'sha256-oohki3o/lokqd0j+jc75068tfqqov40dyk6wrkixi1c='", + "https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js", + "'sha256-mxh/smf1qtric8hr62qt2dvp/stb/ixr4xmbrvkcz0u='", + "https://stats.data.gouv.fr/piwik.js", + "'sha256-+ip5od5k5h6dnqj5xgjgipif2k6vdsriwatxnixvr8s='", + "https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js", + "https://forms.sbc29.com/form.js", "https://stats.data.gouv.fr/matomo.js", + "'sha256-arvyo8aj91wuvpfvqp2ffhuihzjn3xali7vgj2tqx18='", + "'self'", + "https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js", + "'sha256-tzfaiqy7u6q6ovmbu59mz7pal/g930thgxhg6dg/chq='", "https://unpkg.com/easymde/dist/easymde.min.js", - "https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js", - "'sha256-co4gfu3p1qnocvjdyc+znsvh77xoc5h2oczyfb8yupa='", - "'sha256-+ip5od5k5h6dnqj5xgjgipif2k6vdsriwatxnixvr8s='", - "'sha256-nr0pzgaeuncaj2dbnvxn6w2goemnj9jqe4tqs/h7o0c='", - "'sha256-mxh/smf1qtric8hr62qt2dvp/stb/ixr4xmbrvkcz0u='", - "https://code.jquery.com/ui/1.13.1/jquery-ui.js" + "'sha256-nr0pzgaeuncaj2dbnvxn6w2goemnj9jqe4tqs/h7o0c='" ], "style-src": [ - "'self'", "https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css", + "'self'", "https://unpkg.com/easymde/dist/easymde.min.css" ] }, @@ -18243,28 +18434,28 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T01:56:22Z", - "next_check_at": "2023-12-17T02:01:20Z", + "last_check_at": "2023-12-24T01:56:11Z", + "next_check_at": "2023-12-24T02:01:10Z", "mute_until": null, "favicon_url": "https://aidantsconnect.beta.gouv.fr/static/images/favicons/favicon-32x32.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T01:11:34Z", + "tested_at": "2023-12-24T01:36:22Z", "expires_at": "2024-03-07T18:44:08Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.958, + "apdex": 0.954, "timings": { "redirect": 0, - "namelookup": 155, - "connection": 138, - "handshake": 144, - "response": 302, - "total": 739 + "namelookup": 183, + "connection": 154, + "handshake": 161, + "response": 348, + "total": 846 } }, "uptimeGrade": "A", @@ -18502,7 +18693,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -18642,7 +18833,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "81 >= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", @@ -18845,7 +19036,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702777624" + "finding": "1703382007" }, { "id": "HSTS_time", @@ -18915,7 +19106,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/" }, { "id": "Referrer-Policy", @@ -19433,77 +19624,77 @@ }, { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19511,7 +19702,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19519,7 +19710,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19527,7 +19718,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19535,7 +19726,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -19543,7 +19734,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -19551,518 +19742,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702777680" + "finding": "1703382106" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -20070,7 +20261,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -20079,7 +20270,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -20088,7 +20279,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -20097,7 +20288,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -20106,7 +20297,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -20114,7 +20305,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -20123,7 +20314,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -20132,7 +20323,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -20141,7 +20332,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -20150,14 +20341,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -20166,7 +20357,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -20175,7 +20366,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -20184,7 +20375,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -20193,7 +20384,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -20202,7 +20393,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -20211,7 +20402,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -20220,7 +20411,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -20229,7 +20420,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -20238,7 +20429,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -20247,399 +20438,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -20647,7 +20838,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -20655,7 +20846,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -20663,7 +20854,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -20671,7 +20862,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -20679,7 +20870,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -20687,518 +20878,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702777734" + "finding": "1703382206" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -21206,7 +21397,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -21215,7 +21406,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -21224,7 +21415,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -21233,7 +21424,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -21242,7 +21433,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -21250,7 +21441,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -21259,7 +21450,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -21268,7 +21459,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -21277,7 +21468,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -21286,14 +21477,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -21302,7 +21493,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -21311,7 +21502,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -21320,7 +21511,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -21329,7 +21520,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -21338,7 +21529,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -21347,7 +21538,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -21356,7 +21547,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -21365,7 +21556,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -21374,7 +21565,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -21383,399 +21574,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21783,7 +21974,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21791,7 +21982,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21799,7 +21990,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21807,7 +21998,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -21815,7 +22006,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -21823,518 +22014,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702777789" + "finding": "1703382307" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -22342,7 +22533,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -22351,7 +22542,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -22360,7 +22551,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -22369,7 +22560,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -22378,7 +22569,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -22386,7 +22577,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -22395,7 +22586,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -22404,7 +22595,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -22413,7 +22604,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -22422,14 +22613,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -22438,7 +22629,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -22447,7 +22638,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -22456,7 +22647,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -22465,7 +22656,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -22474,7 +22665,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -22483,7 +22674,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -22492,7 +22683,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -22501,7 +22692,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -22510,7 +22701,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -22519,332 +22710,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "scanTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "223" + "finding": "405" } ], "thirdparties": { @@ -22903,7 +23094,7 @@ }, { "type": "unpkg", - "url": "https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js", + "url": "https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css", "details": { "id": "unpkg", "message": "Host files locally" @@ -22911,7 +23102,7 @@ }, { "type": "unpkg", - "url": "https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css", + "url": "https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js", "details": { "id": "unpkg", "message": "Host files locally" @@ -22937,21 +23128,21 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; object-src 'none'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js", + "content-security-policy": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 01:46:10 GMT", + "date": "Sun, 24 Dec 2023 01:38:37 GMT", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=60", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "9a197396-d63a-4a2e-9865-3db8154472c0" + "x-request-id": "0885bc25-6243-4bf8-962e-60d28104252a" }, "endpoints": [ { "hostname": "aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -23007,7 +23198,7 @@ }, { "hostname": "unpkg.com", - "ip": "104.16.122.175", + "ip": "104.16.124.175", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -23274,7 +23465,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:45:28", + "@generated": "Sun, 24 Dec 2023 01:37:55", "site": [ { "@name": "https://aidantsconnect.beta.gouv.fr", @@ -23345,6 +23536,13 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, { "name": "Base64 Disclosure", "riskcode": "0", @@ -23428,20 +23626,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -23456,31 +23657,27 @@ "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", "matched-at": "aidantsconnect.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T01:51:14.22656961Z", + "timestamp": "2023-12-24T01:46:58.762367085Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -23490,36 +23687,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", - "matched-at": "aidantsconnect.beta.gouv.fr", + "matched-at": "_dmarc.aidantsconnect.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=DMARC1; p=none\"" ], - "timestamp": "2023-12-17T01:51:14.239038143Z", + "timestamp": "2023-12-24T01:46:58.912661757Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -23535,26 +23732,30 @@ "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", "matched-at": "aidantsconnect.beta.gouv.fr", - "timestamp": "2023-12-17T01:51:14.457649027Z", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com include:spf.tipimail.com include:_spf.alwaysdata.com -all\"" + ], + "timestamp": "2023-12-24T01:46:58.920644801Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -23571,30 +23772,27 @@ "host": "aidantsconnect.beta.gouv.fr.", "matched-at": "aidantsconnect.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:spf.tipimail.com include:_spf.alwaysdata.com -all\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T01:51:15.226075655Z", + "timestamp": "2023-12-24T01:46:59.765322795Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -23603,17 +23801,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", - "matched-at": "_dmarc.aidantsconnect.beta.gouv.fr", + "matched-at": "aidantsconnect.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T01:51:15.458259979Z", + "timestamp": "2023-12-24T01:47:00.039128777Z", "matcher-status": true }, { @@ -23644,12 +23842,86 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://aidantsconnect.beta.gouv.fr", + "matched-at": "https://aidantsconnect.beta.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T01:48:31.806540336Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://aidantsconnect.beta.gouv.fr", + "matched-at": "https://aidantsconnect.beta.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T01:48:31.806596751Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697454847Z", + "timestamp": "2023-12-24T01:48:31.806619353Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23686,7 +23958,7 @@ "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697507615Z", + "timestamp": "2023-12-24T01:48:31.806637226Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23718,12 +23990,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697529145Z", + "timestamp": "2023-12-24T01:48:31.806659978Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23755,12 +24027,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697548201Z", + "timestamp": "2023-12-24T01:48:31.806683302Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23797,7 +24069,81 @@ "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697679276Z", + "timestamp": "2023-12-24T01:48:31.80669873Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://aidantsconnect.beta.gouv.fr", + "matched-at": "https://aidantsconnect.beta.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T01:48:31.806715862Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://aidantsconnect.beta.gouv.fr", + "matched-at": "https://aidantsconnect.beta.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T01:48:31.806730519Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23834,7 +24180,7 @@ "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697699483Z", + "timestamp": "2023-12-24T01:48:31.806745707Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23866,160 +24212,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://aidantsconnect.beta.gouv.fr", - "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.69771891Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://aidantsconnect.beta.gouv.fr", - "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697733787Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://aidantsconnect.beta.gouv.fr", - "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697748254Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://aidantsconnect.beta.gouv.fr", - "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697769694Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:52:17.697788409Z", + "timestamp": "2023-12-24T01:48:31.806760265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -24034,7 +24232,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -24049,7 +24248,7 @@ "Let's Encrypt" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:58:53.515650412Z", + "timestamp": "2023-12-24T01:55:22.75147241Z", "matcher-status": true }, { @@ -24063,7 +24262,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -24078,7 +24278,7 @@ "aidantsconnect.beta.gouv.fr" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:58:53.515787979Z", + "timestamp": "2023-12-24T01:55:22.751602341Z", "matcher-status": true }, { @@ -24093,7 +24293,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -24108,7 +24309,7 @@ "tls12" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:58:54.916791469Z", + "timestamp": "2023-12-24T01:55:25.700059982Z", "matcher-status": true }, { @@ -24123,7 +24324,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -24138,7 +24340,7 @@ "tls13" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T01:58:55.118593676Z", + "timestamp": "2023-12-24T01:55:26.011911681Z", "matcher-status": true } ], @@ -24146,7 +24348,7 @@ { "requestedUrl": "https://aidantsconnect.beta.gouv.fr/", "finalUrl": "https://aidantsconnect.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:45:42.226Z", + "fetchTime": "2023-12-24T01:38:10.387Z", "runWarnings": [], "categories": { "performance": { @@ -24209,53 +24411,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2592, + "numericValue": 2695, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2592, - "firstMeaningfulPaint": 2592, - "largestContentfulPaint": 4185, - "interactive": 2592, - "speedIndex": 2592, + "firstContentfulPaint": 2695, + "firstMeaningfulPaint": 2695, + "largestContentfulPaint": 3439, + "interactive": 2695, + "speedIndex": 2695, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.00855994987487793, - "cumulativeLayoutShiftMainFrame": 0.00855994987487793, - "totalCumulativeLayoutShift": 0.00855994987487793, + "cumulativeLayoutShift": 0.039250240325927735, + "cumulativeLayoutShiftMainFrame": 0.039250240325927735, + "totalCumulativeLayoutShift": 0.039250240325927735, "observedTimeOrigin": 0, - "observedTimeOriginTs": 325806522, + "observedTimeOriginTs": 461835481, "observedNavigationStart": 0, - "observedNavigationStartTs": 325806522, - "observedFirstPaint": 479, - "observedFirstPaintTs": 326285187, - "observedFirstContentfulPaint": 479, - "observedFirstContentfulPaintTs": 326285187, - "observedFirstContentfulPaintAllFrames": 479, - "observedFirstContentfulPaintAllFramesTs": 326285187, - "observedFirstMeaningfulPaint": 479, - "observedFirstMeaningfulPaintTs": 326285187, - "observedLargestContentfulPaint": 773, - "observedLargestContentfulPaintTs": 326579689, - "observedLargestContentfulPaintAllFrames": 773, - "observedLargestContentfulPaintAllFramesTs": 326579689, - "observedTraceEnd": 3171, - "observedTraceEndTs": 328977404, - "observedLoad": 842, - "observedLoadTs": 326648470, + "observedNavigationStartTs": 461835481, + "observedFirstPaint": 543, + "observedFirstPaintTs": 462378402, + "observedFirstContentfulPaint": 543, + "observedFirstContentfulPaintTs": 462378402, + "observedFirstContentfulPaintAllFrames": 543, + "observedFirstContentfulPaintAllFramesTs": 462378402, + "observedFirstMeaningfulPaint": 543, + "observedFirstMeaningfulPaintTs": 462378402, + "observedLargestContentfulPaint": 685, + "observedLargestContentfulPaintTs": 462520043, + "observedLargestContentfulPaintAllFrames": 685, + "observedLargestContentfulPaintAllFramesTs": 462520043, + "observedTraceEnd": 3132, + "observedTraceEndTs": 464967552, + "observedLoad": 804, + "observedLoadTs": 462639835, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 325807036, - "observedCumulativeLayoutShift": 0.00855994987487793, - "observedCumulativeLayoutShiftMainFrame": 0.00855994987487793, - "observedTotalCumulativeLayoutShift": 0.00855994987487793, - "observedFirstVisualChange": 480, - "observedFirstVisualChangeTs": 326286522, - "observedLastVisualChange": 963, - "observedLastVisualChangeTs": 326769522, - "observedSpeedIndex": 707, - "observedSpeedIndexTs": 326513439 + "observedDomContentLoadedTs": 461836056, + "observedCumulativeLayoutShift": 0.039250240325927735, + "observedCumulativeLayoutShiftMainFrame": 0.039250240325927735, + "observedTotalCumulativeLayoutShift": 0.039250240325927735, + "observedFirstVisualChange": 546, + "observedFirstVisualChangeTs": 462381481, + "observedLastVisualChange": 879, + "observedLastVisualChangeTs": 462714481, + "observedSpeedIndex": 737, + "observedSpeedIndexTs": 462572830 }, { "lcpInvalidated": false @@ -24277,19 +24479,19 @@ "numScripts": 13, "numStylesheets": 7, "numFonts": 4, - "numTasks": 13, - "numTasksOver10ms": 0, - "numTasksOver25ms": 0, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, - "numTasksOver500ms": 0, - "rtt": 5.239, - "throughput": 12347898.37611056, - "maxRtt": 86.069, - "maxServerLatency": 243.717, - "totalByteWeight": 549942, - "totalTaskTime": 3.896, - "mainDocumentTransferSize": 8378 + "numTasks": 18, + "numTasksOver10ms": 1, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, + "numTasksOver500ms": 1, + "rtt": 2.723, + "throughput": 5731766.251437211, + "maxRtt": 153.878, + "maxServerLatency": 14.588999999999999, + "totalByteWeight": 550108, + "totalTaskTime": 3128.365, + "mainDocumentTransferSize": 8333 } ] } @@ -24384,7 +24586,7 @@ "sonarcloud": null, "summary": { "httpGrade": "C", - "apdex": 0.958, + "apdex": 0.954, "apdexGrade": "E", "uptime": 99.977, "uptimeGrade": "A", @@ -24424,27 +24626,27 @@ "http": { "url": "https://aides-territoires.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:13:45 GMT", + "end_time": "Sun, 24 Dec 2023 01:12:36 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-0fZTU7VhZNpQnoorwgqj2Q=='", + "Content-Security-Policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-6MPX53CljXF1jX4HXwieGw=='", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:13:42 GMT", + "Date": "Sun, 24 Dec 2023 01:12:33 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", - "X-Request-ID": "0b6fa2bb-08cb-4395-8278-07c061c7d5f6" + "X-Request-ID": "803e17ff-81ec-41e7-a711-bb968181f302" }, - "scan_id": 45536510, + "scan_id": 45751923, "score": 105, - "start_time": "Sun, 17 Dec 2023 01:13:39 GMT", + "start_time": "Sun, 24 Dec 2023 01:12:15 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -24460,9 +24662,9 @@ "'self'" ], "connect-src": [ + "https://in-automate.brevo.com/", "'self'", - "https://stats.data.gouv.fr", - "https://in-automate.brevo.com/" + "https://stats.data.gouv.fr" ], "default-src": [ "https://*.scw.cloud" @@ -24478,10 +24680,10 @@ ], "frame-src": [ "https://stats.data.gouv.fr", - "https://www.dailymotion.com", "'self'", - "https://www.youtube.com", - "https://aides-territoires-metabase.osc-fr1.scalingo.io" + "https://aides-territoires-metabase.osc-fr1.scalingo.io", + "https://www.dailymotion.com", + "https://www.youtube.com" ], "img-src": [ "https://stats.data.gouv.fr", @@ -24495,10 +24697,10 @@ ], "script-src": [ "https://stats.data.gouv.fr", - "https://aides-territoires-metabase.osc-fr1.scalingo.io", + "'nonce-6mpx53cljxf1jx4hxwiegw=='", "'self'", - "https://sibautomation.com", - "'nonce-0fztu7vhznpqnoorwgqj2q=='" + "https://aides-territoires-metabase.osc-fr1.scalingo.io", + "https://sibautomation.com" ], "style-src": [ "'unsafe-inline'", @@ -24699,28 +24901,28 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:08:54Z", - "next_check_at": "2023-12-17T02:13:51Z", + "last_check_at": "2023-12-24T02:04:21Z", + "next_check_at": "2023-12-24T02:09:21Z", "mute_until": null, "favicon_url": "https://aides-territoires.beta.gouv.fr/static/favicons/favicon.12acb9fc12ee.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T01:49:00Z", + "tested_at": "2023-12-24T01:19:33Z", "expires_at": "2024-03-07T20:18:14Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.716, + "apdex": 0.713, "timings": { "redirect": 0, - "namelookup": 219, - "connection": 176, - "handshake": 181, - "response": 662, - "total": 1239 + "namelookup": 125, + "connection": 120, + "handshake": 127, + "response": 625, + "total": 996 } }, "uptimeGrade": "A", @@ -24753,77 +24955,77 @@ "testssl": [ { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24831,7 +25033,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24839,7 +25041,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24847,7 +25049,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24855,7 +25057,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -24863,7 +25065,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -24871,511 +25073,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-08 20:18" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-07 20:18" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702778159" + "finding": "1703382866" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-2huHy1O0obflHXdA1vMduw=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-g9fPz4TbPgAZ5ZucUe19pw=='" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -25383,7 +25585,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -25392,7 +25594,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -25401,7 +25603,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -25410,7 +25612,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -25419,7 +25621,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -25427,7 +25629,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -25436,7 +25638,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -25445,7 +25647,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -25454,7 +25656,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -25463,14 +25665,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -25479,7 +25681,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -25488,7 +25690,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -25497,7 +25699,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -25506,7 +25708,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -25515,7 +25717,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -25524,7 +25726,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -25533,7 +25735,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -25542,7 +25744,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -25551,7 +25753,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -25560,315 +25762,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -26220,7 +26422,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "81 >= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", @@ -26423,7 +26625,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702778220" + "finding": "1703382927" }, { "id": "HSTS_time", @@ -26486,7 +26688,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-mL8FkbNugHqVM63PQT3amQ=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-O2446925tk76gzDoXrGYTw=='" }, { "id": "Referrer-Policy", @@ -26997,77 +27199,77 @@ }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -27075,7 +27277,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -27083,7 +27285,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -27091,7 +27293,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -27099,7 +27301,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -27107,7 +27309,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -27115,511 +27317,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-08 20:18" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-07 20:18" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "-2 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702778281" + "finding": "1703382988" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-9nQfR7OaGB1rhZ7rVT6NQg=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-v6CLbM4pEjhphnIud0xiCA=='" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -27627,7 +27829,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -27636,7 +27838,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -27645,7 +27847,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -27654,7 +27856,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -27663,7 +27865,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -27671,7 +27873,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -27680,7 +27882,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -27689,7 +27891,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -27698,7 +27900,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -27707,14 +27909,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -27723,7 +27925,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -27732,7 +27934,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -27741,7 +27943,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -27750,7 +27952,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -27759,7 +27961,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -27768,7 +27970,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -27777,7 +27979,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -27786,7 +27988,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -27795,7 +27997,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -27804,392 +28006,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -28197,7 +28399,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -28205,7 +28407,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -28213,7 +28415,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -28221,7 +28423,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -28229,7 +28431,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -28237,511 +28439,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-08 20:18" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-07 20:18" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702778344" + "finding": "1703383050" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-au3f4w9mi9KJ6DboxXASdA=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-Z/SvWr6j7gqROxQEQjEQbQ=='" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -28749,7 +28951,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -28758,7 +28960,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -28767,7 +28969,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -28776,7 +28978,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -28785,7 +28987,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -28793,7 +28995,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -28802,7 +29004,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -28811,7 +29013,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -28820,7 +29022,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -28829,14 +29031,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -28845,7 +29047,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -28854,7 +29056,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -28863,7 +29065,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -28872,7 +29074,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -28881,7 +29083,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -28890,7 +29092,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -28899,7 +29101,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -28908,7 +29110,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -28917,7 +29119,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -28926,325 +29128,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "248" + "finding": "246" } ], "thirdparties": { @@ -29253,6 +29455,10 @@ "type": "unknown", "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/upload/Aides-territoires-presentation.jpg" }, + { + "type": "unknown", + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/projects/e0d0-refection-et-rehabilitation-energetique-de-la_image.png" + }, { "type": "unknown", "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/blog/renforcez-vos-competences-en-matiere-de-pilotage-d_logo.png" @@ -29263,23 +29469,23 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/region-occitanie_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/region-grand-est_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-francaise-de-developpement_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-bio_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-de-leau-rhone-mediterranee-corse_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/region-occitanie_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/ministere-de-la-transition-ecologique-et-solidaire_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/la-banque-postale_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-nationale-de-la-securite-des-systemes-dinfo_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-nationale-du-sport_logo.png" }, { "type": "unknown", @@ -29299,7 +29505,7 @@ }, { "type": "unknown", - "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=3a4c280c-e912-4c1a-b023-05326a035b7e&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&sib_name=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&ma_referrer=&ma_path=%2F" + "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=f1a7346d-b3eb-4cdd-9983-218da6a0c2bc&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&sib_name=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&ma_referrer=&ma_path=%2F" } ], "cookies": [ @@ -29308,7 +29514,7 @@ "value": "1", "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1702779898, + "expires": 1703384603, "size": 16, "httpOnly": false, "secure": false, @@ -29320,10 +29526,10 @@ }, { "name": "_pk_id.62.6088", - "value": "df239b2ce08a1c07.1702778098.", + "value": "6694b5c13f9a7287.1703382804.", "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1736733298, + "expires": 1737338004, "size": 42, "httpOnly": false, "secure": false, @@ -29335,10 +29541,10 @@ }, { "name": "sib_cuid", - "value": "3a4c280c-e912-4c1a-b023-05326a035b7e", + "value": "f1a7346d-b3eb-4cdd-9983-218da6a0c2bc", "domain": ".aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1718499298, + "expires": 1719104003, "size": 44, "httpOnly": false, "secure": false, @@ -29350,20 +29556,20 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-rFSh3LsE7jzTLGaXLcetNw=='", + "content-security-policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-MJXILaIrOvgap7FN3QtGfw=='", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 01:54:57 GMT", + "date": "Sun, 24 Dec 2023 01:53:23 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", - "x-request-id": "1f83c933-75a6-468e-b085-57973c5e755a" + "x-request-id": "a1e06122-0ff3-433c-8653-e451c0b7801c" }, "endpoints": [ { "hostname": "aides-territoires.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "148.253.75.120", "geoip": { "continent": { "code": "EU", @@ -29419,7 +29625,7 @@ }, { "hostname": "aides-territoires-prod.s3.fr-par.scw.cloud", - "ip": "51.159.62.6", + "ip": "51.159.62.7", "geoip": { "city": { "geoname_id": 2988507, @@ -29534,42 +29740,8 @@ }, { "hostname": "in-automate.brevo.com", - "ip": "172.64.149.40", + "ip": "104.18.38.216", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -29731,7 +29903,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:54:17", + "@generated": "Sun, 24 Dec 2023 01:52:41", "site": [ { "@name": "https://aides-territoires.beta.gouv.fr", @@ -29902,7 +30074,7 @@ { "requestedUrl": "https://aides-territoires.beta.gouv.fr/", "finalUrl": "https://aides-territoires.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:54:31.320Z", + "fetchTime": "2023-12-24T01:52:54.990Z", "runWarnings": [], "categories": { "performance": { @@ -29913,7 +30085,7 @@ "snapshot" ], "id": "performance", - "score": 0.1488656997680664 + "score": 0.04945049285888672 }, "accessibility": { "title": "Accessibility", @@ -29965,53 +30137,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2597, + "numericValue": 2656, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2597, - "firstMeaningfulPaint": 2597, - "largestContentfulPaint": 2712, - "interactive": 2597, - "speedIndex": 2597, + "firstContentfulPaint": 2656, + "firstMeaningfulPaint": 2656, + "largestContentfulPaint": 2771, + "interactive": 2656, + "speedIndex": 2786, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.011165509117974176, "cumulativeLayoutShiftMainFrame": 0.011165509117974176, "totalCumulativeLayoutShift": 0.011165509117974176, "observedTimeOrigin": 0, - "observedTimeOriginTs": 340339528, + "observedTimeOriginTs": 323529641, "observedNavigationStart": 0, - "observedNavigationStartTs": 340339528, - "observedFirstPaint": 485, - "observedFirstPaintTs": 340824739, - "observedFirstContentfulPaint": 485, - "observedFirstContentfulPaintTs": 340824739, - "observedFirstContentfulPaintAllFrames": 485, - "observedFirstContentfulPaintAllFramesTs": 340824739, - "observedFirstMeaningfulPaint": 485, - "observedFirstMeaningfulPaintTs": 340824739, - "observedLargestContentfulPaint": 485, - "observedLargestContentfulPaintTs": 340824739, - "observedLargestContentfulPaintAllFrames": 485, - "observedLargestContentfulPaintAllFramesTs": 340824739, - "observedTraceEnd": 3649, - "observedTraceEndTs": 343988879, - "observedLoad": 1342, - "observedLoadTs": 341681461, + "observedNavigationStartTs": 323529641, + "observedFirstPaint": 907, + "observedFirstPaintTs": 324436171, + "observedFirstContentfulPaint": 907, + "observedFirstContentfulPaintTs": 324436171, + "observedFirstContentfulPaintAllFrames": 907, + "observedFirstContentfulPaintAllFramesTs": 324436171, + "observedFirstMeaningfulPaint": 907, + "observedFirstMeaningfulPaintTs": 324436171, + "observedLargestContentfulPaint": 907, + "observedLargestContentfulPaintTs": 324436171, + "observedLargestContentfulPaintAllFrames": 907, + "observedLargestContentfulPaintAllFramesTs": 324436171, + "observedTraceEnd": 4750, + "observedTraceEndTs": 328279204, + "observedLoad": 2279, + "observedLoadTs": 325808689, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 340340105, + "observedDomContentLoadedTs": 323530159, "observedCumulativeLayoutShift": 0.011165509117974176, "observedCumulativeLayoutShiftMainFrame": 0.011165509117974176, "observedTotalCumulativeLayoutShift": 0.011165509117974176, - "observedFirstVisualChange": 480, - "observedFirstVisualChangeTs": 340819528, - "observedLastVisualChange": 1096, - "observedLastVisualChangeTs": 341435528, - "observedSpeedIndex": 503, - "observedSpeedIndexTs": 340842199 + "observedFirstVisualChange": 907, + "observedFirstVisualChangeTs": 324436641, + "observedLastVisualChange": 1524, + "observedLastVisualChangeTs": 325053641, + "observedSpeedIndex": 936, + "observedSpeedIndexTs": 324465188 }, { "lcpInvalidated": false @@ -30029,7 +30201,7 @@ "type": "debugdata", "items": [ { - "numRequests": 59, + "numRequests": 60, "numScripts": 5, "numStylesheets": 2, "numFonts": 5, @@ -30039,13 +30211,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.439, - "throughput": 21122004.38467778, - "maxRtt": 86.15699999999998, - "maxServerLatency": 338.52200000000005, - "totalByteWeight": 3151675, - "totalTaskTime": 1.732, - "mainDocumentTransferSize": 64473 + "rtt": 1.4769999999999999, + "throughput": 13292029.319795996, + "maxRtt": 84.12400000000001, + "maxServerLatency": 291.86400000000003, + "totalByteWeight": 3410753, + "totalTaskTime": 4.224, + "mainDocumentTransferSize": 64805 } ] } @@ -30131,7 +30303,7 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.716, + "apdex": 0.713, "apdexGrade": "F", "uptime": 99.966, "uptimeGrade": "A", @@ -30144,8 +30316,8 @@ "cookiesGrade": "C", "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 13, - "lighthouse_performance": 0.1488656997680664, + "trackersCount": 14, + "lighthouse_performance": 0.04945049285888672, "lighthouse_performanceGrade": "F", "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", @@ -30174,7 +30346,7 @@ "http": { "url": "https://aplus.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:57:24 GMT", + "end_time": "Sun, 24 Dec 2023 01:58:54 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -30183,18 +30355,18 @@ "Content-Length": "19893", "Content-Security-Policy": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 01:57:22 GMT", + "Date": "Sun, 24 Dec 2023 01:58:52 GMT", "Referrer-Policy": "origin-when-cross-origin, strict-origin-when-cross-origin", - "Set-Cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjE4ODJkNGNkMmJjZWUzMWFhY2RhZGZjNTQ0ZjBhOGY3NDQwYzgwYmUtMTcwMjc3ODI0MjgzMS1mZTVkMjQzNzYxNDAzZjVjZWM1OWY4YjcifSwiZXhwIjoxNzA1MzcwMjQyLCJuYmYiOjE3MDI3NzgyNDIsImlhdCI6MTcwMjc3ODI0Mn0.GMwg6u3VoBjns1gGa4R5bXxCvZsrccLgmbILfxsziX8; Max-Age=2592000; Expires=Tue, 16 Jan 2024 01:57:22 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", + "Set-Cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjcyZWU1ODEwZTU1ZmY2NTY5Mzg2YjIwZTFiMWU4ZDM4YWMyZmEzYTEtMTcwMzM4MzEzMjkzNC0yZGEzMWU2ZjdjNDRjNzkxMTgxZjY4ZjQifSwiZXhwIjoxNzA1OTc1MTMyLCJuYmYiOjE3MDMzODMxMzIsImlhdCI6MTcwMzM4MzEzMn0.4VKLJP3zsx5BTVzvkzxWH_xOmOz7BnZfwE7iy610Ric; Max-Age=2592000; Expires=Tue, 23 Jan 2024 01:58:52 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Permitted-Cross-Domain-Policies": "master-only", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45537142, + "scan_id": 45752610, "score": 115, - "start_time": "Sun, 17 Dec 2023 01:57:20 GMT", + "start_time": "Sun, 24 Dec 2023 01:58:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -30226,26 +30398,26 @@ "'self'" ], "frame-src": [ - "*.aplus.beta.gouv.fr", "'self'", "https://www.dailymotion.com", + "*.aplus.beta.gouv.fr", "blob:" ], "img-src": [ - "stats.data.gouv.fr", "'self'", + "stats.data.gouv.fr", "data:" ], "object-src": [ "'none'" ], "script-src": [ - "stats.data.gouv.fr", - "'self'" + "'self'", + "stats.data.gouv.fr" ], "style-src": [ - "'unsafe-inline'", "'self'", + "'unsafe-inline'", "stats.data.gouv.fr" ] }, @@ -30289,7 +30461,7 @@ "data": { "PLAY_SESSION": { "domain": "aplus.beta.gouv.fr", - "expires": 1705370242, + "expires": 1705975133, "httponly": true, "max-age": null, "path": "/", @@ -30431,7 +30603,7 @@ "url": "https://aplus.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.908, + "uptime": 100, "down": false, "down_since": null, "error": null, @@ -30447,15 +30619,15 @@ "slack_compatible:3773906685", "telegram:3339950730" ], - "last_check_at": "2023-12-17T02:03:54Z", - "next_check_at": "2023-12-17T02:08:54Z", + "last_check_at": "2023-12-24T02:06:17Z", + "next_check_at": "2023-12-24T02:11:16Z", "mute_until": null, "favicon_url": "https://aplus.beta.gouv.fr/assets/images/bb24f2cd5ff2ee1dbcb59efcd02c83a8-favicon.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T01:19:08Z", + "tested_at": "2023-12-24T01:41:26Z", "expires_at": "2024-01-24T15:05:29Z", "valid": true, "error": null @@ -30464,11 +30636,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 227, - "connection": 170, - "handshake": 178, - "response": 180, - "total": 756 + "namelookup": 169, + "connection": 109, + "handshake": 119, + "response": 118, + "total": 514 } }, "uptimeGrade": "A", @@ -30501,24 +30673,24 @@ "version": "2-4", "vulnerabilities": [ { - "addr": "::", - "port": "111", - "owner": "superuser" - }, - { + "owner": "superuser", "addr": "0.0.0.0", - "port": "111", - "owner": "superuser" + "port": "111" }, { - "addr": "0.0.0.0", - "port": "111", - "owner": "superuser" + "owner": "superuser", + "addr": "::", + "port": "111" }, { + "owner": "superuser", "addr": "::", - "port": "111", - "owner": "superuser" + "port": "111" + }, + { + "owner": "superuser", + "addr": "0.0.0.0", + "port": "111" } ] } @@ -30539,77 +30711,77 @@ "testssl": [ { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30617,7 +30789,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30625,7 +30797,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30633,7 +30805,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30641,7 +30813,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -30649,7 +30821,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -30657,539 +30829,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "04CF05F6E2B6CC381A93D46F0BA745D1DB76" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "5849E7F2F34299C9EFC01B87E80F8A41C744DF70" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "9FB00CDE4879F6A9DE1C4F5716313918381F012320C1C0527B25B487A0032529" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2023-10-26 15:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2024-01-24 15:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", - "finding": "1702778318" + "finding": "1703383211" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -31197,7 +31369,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -31206,7 +31378,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -31215,7 +31387,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -31224,7 +31396,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -31233,7 +31405,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -31241,7 +31413,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -31250,7 +31422,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -31259,7 +31431,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -31268,7 +31440,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -31277,14 +31449,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -31293,7 +31465,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -31302,7 +31474,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31311,7 +31483,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31320,7 +31492,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31329,7 +31501,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31338,7 +31510,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -31347,7 +31519,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -31356,7 +31528,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -31365,7 +31537,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -31374,392 +31546,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31767,7 +31939,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31775,7 +31947,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31783,7 +31955,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31791,7 +31963,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -31799,7 +31971,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -31807,539 +31979,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "04CF05F6E2B6CC381A93D46F0BA745D1DB76" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "5849E7F2F34299C9EFC01B87E80F8A41C744DF70" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "9FB00CDE4879F6A9DE1C4F5716313918381F012320C1C0527B25B487A0032529" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2023-10-26 15:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2024-01-24 15:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", - "finding": "1702778385" + "finding": "1703383278" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -32347,7 +32519,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -32356,7 +32528,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -32365,7 +32537,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -32374,7 +32546,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -32383,7 +32555,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -32391,7 +32563,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -32400,7 +32572,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -32409,7 +32581,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -32418,7 +32590,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -32427,14 +32599,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -32443,7 +32615,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -32452,7 +32624,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -32461,7 +32633,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -32470,7 +32642,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -32479,7 +32651,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -32488,7 +32660,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -32497,7 +32669,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -32506,7 +32678,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -32515,7 +32687,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -32524,392 +32696,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32917,7 +33089,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32925,7 +33097,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32933,7 +33105,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32941,7 +33113,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -32949,7 +33121,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -32957,539 +33129,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "04CF05F6E2B6CC381A93D46F0BA745D1DB76" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "5849E7F2F34299C9EFC01B87E80F8A41C744DF70" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "9FB00CDE4879F6A9DE1C4F5716313918381F012320C1C0527B25B487A0032529" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2023-10-26 15:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2024-01-24 15:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", - "finding": "1702778452" + "finding": "1703383345" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -33497,7 +33669,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -33506,7 +33678,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -33515,7 +33687,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -33524,7 +33696,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -33533,7 +33705,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -33541,7 +33713,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -33550,7 +33722,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -33559,7 +33731,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -33568,7 +33740,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -33577,14 +33749,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -33593,7 +33765,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -33602,7 +33774,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33611,7 +33783,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33620,7 +33792,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33629,7 +33801,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33638,7 +33810,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -33647,7 +33819,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -33656,7 +33828,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -33665,7 +33837,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -33674,325 +33846,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", - "finding": "205" + "finding": "206" } ], "thirdparties": { @@ -34003,7 +34175,7 @@ "value": "1", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1702780075, + "expires": 1703384967, "size": 16, "httpOnly": false, "secure": false, @@ -34015,10 +34187,10 @@ }, { "name": "_pk_id.42.2a46", - "value": "9f2eacec2f6995d3.1702778276.", + "value": "1288bc661a56050e.1703383168.", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1736733476, + "expires": 1737338368, "size": 42, "httpOnly": false, "secure": false, @@ -34030,10 +34202,10 @@ }, { "name": "PLAY_SESSION", - "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6Ijk5ZWEyNTA5YjI5MTU5ZGY0ODg2NzJlOGQ4YTU3OTk2M2E5ZmFlN2MtMTcwMjc3ODI3NTAwNS0zNmExNzBlODljMzhkMzFhZDE0NjUwMWUifSwiZXhwIjoxNzA1MzcwMjc1LCJuYmYiOjE3MDI3NzgyNzUsImlhdCI6MTcwMjc3ODI3NX0.nu0CLXpi-xZR9B1mUPN8D4I4u-h6VbCr07TtoEWhxWI", + "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjFmMTA3ODA1N2E4ZGJlYWYzNjcxOTRlNWVkODlkZjMxMjBkNTFlOWYtMTcwMzM4MzE2NjY5NC0xMzc4ZDJiOGZiMjk5ZDIxZjYxMTVjMTQifSwiZXhwIjoxNzA1OTc1MTY2LCJuYmYiOjE3MDMzODMxNjYsImlhdCI6MTcwMzM4MzE2Nn0.xAfIJamqVXcEVEtF1GEVk-pRnBI1qhgZDWRAxQWxbXk", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1705370275.05035, + "expires": 1705975166.738724, "size": 284, "httpOnly": true, "secure": true, @@ -34048,9 +34220,9 @@ "content-length": "19893", "content-security-policy": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 01:57:55 GMT", + "date": "Sun, 24 Dec 2023 01:59:26 GMT", "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin", - "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6Ijk5ZWEyNTA5YjI5MTU5ZGY0ODg2NzJlOGQ4YTU3OTk2M2E5ZmFlN2MtMTcwMjc3ODI3NTAwNS0zNmExNzBlODljMzhkMzFhZDE0NjUwMWUifSwiZXhwIjoxNzA1MzcwMjc1LCJuYmYiOjE3MDI3NzgyNzUsImlhdCI6MTcwMjc3ODI3NX0.nu0CLXpi-xZR9B1mUPN8D4I4u-h6VbCr07TtoEWhxWI; Max-Age=2592000; Expires=Tue, 16 Jan 2024 01:57:55 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", + "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjFmMTA3ODA1N2E4ZGJlYWYzNjcxOTRlNWVkODlkZjMxMjBkNTFlOWYtMTcwMzM4MzE2NjY5NC0xMzc4ZDJiOGZiMjk5ZDIxZjYxMTVjMTQifSwiZXhwIjoxNzA1OTc1MTY2LCJuYmYiOjE3MDMzODMxNjYsImlhdCI6MTcwMzM4MzE2Nn0.xAfIJamqVXcEVEtF1GEVk-pRnBI1qhgZDWRAxQWxbXk; Max-Age=2592000; Expires=Tue, 23 Jan 2024 01:59:26 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", "strict-transport-security": "max-age=15724800; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "DENY", @@ -34258,7 +34430,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 01:56:55", + "@generated": "Sun, 24 Dec 2023 01:58:25", "site": [ { "@name": "https://aplus.beta.gouv.fr", @@ -34363,22 +34535,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -34394,30 +34566,26 @@ "type": "dns", "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", - "extracted-results": [ - "\"sendinblue-code:c24c9950139318527a15eecce3c91ca3\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" - ], - "timestamp": "2023-12-17T02:02:16.778007784Z", + "timestamp": "2023-12-24T02:03:50.063259588Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -34433,7 +34601,11 @@ "type": "dns", "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", - "timestamp": "2023-12-17T02:02:16.847958357Z", + "extracted-results": [ + "\"sendinblue-code:c24c9950139318527a15eecce3c91ca3\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + ], + "timestamp": "2023-12-24T02:03:50.067492772Z", "matcher-status": true }, { @@ -34473,7 +34645,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; pct=100; rua=mailto:re+ypyaqgmnvdz@dmarc.postmarkapp.com; sp=none; aspf=r;\"" ], - "timestamp": "2023-12-17T02:02:16.921336932Z", + "timestamp": "2023-12-24T02:03:50.222111774Z", "matcher-status": true }, { @@ -34510,10 +34682,10 @@ "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T02:02:16.997564552Z", + "timestamp": "2023-12-24T02:03:51.056271543Z", "matcher-status": true }, { @@ -34546,10 +34718,10 @@ "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T02:02:17.680856114Z", + "timestamp": "2023-12-24T02:03:51.129093854Z", "matcher-status": true }, { @@ -34586,8 +34758,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:02:29.042197028Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:02.208426462Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34627,8 +34799,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:02:29.059216533Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:02.225564946Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34654,8 +34826,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:02:53.441771017Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:26.735863182Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34687,12 +34859,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:01.921766534Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:35.22251928Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34724,12 +34896,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:01.921816106Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:35.222573181Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34761,12 +34933,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:01.921832016Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:35.222595673Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34798,12 +34970,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:01.921845832Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:35.222617984Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34835,12 +35007,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:01.9219032Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:35.222632391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34879,8 +35051,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr/", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:24.117038447Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:04:57.52933031Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: aplus.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr/'", "matcher-status": true }, @@ -34921,8 +35093,8 @@ "type": "tcp", "host": "aplus.beta.gouv.fr:111", "matched-at": "aplus.beta.gouv.fr:111", - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:45.361443986Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:05:18.666161921Z", "matcher-status": true }, { @@ -34936,7 +35108,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -34950,8 +35123,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:52.131756684Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:05:24.520049634Z", "matcher-status": true }, { @@ -34965,7 +35138,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -34979,8 +35153,8 @@ "extracted-results": [ "aplus.beta.gouv.fr" ], - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:52.131890714Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:05:24.520175348Z", "matcher-status": true }, { @@ -34995,7 +35169,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -35009,8 +35184,8 @@ "extracted-results": [ "tls12" ], - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:53.621032852Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:05:25.873457075Z", "matcher-status": true }, { @@ -35025,7 +35200,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -35039,8 +35215,8 @@ "extracted-results": [ "tls13" ], - "ip": "141.94.167.220", - "timestamp": "2023-12-17T02:03:53.829183145Z", + "ip": "141.94.164.120", + "timestamp": "2023-12-24T02:05:26.072694417Z", "matcher-status": true } ], @@ -35048,7 +35224,7 @@ { "requestedUrl": "https://aplus.beta.gouv.fr/", "finalUrl": "https://aplus.beta.gouv.fr/", - "fetchTime": "2023-12-17T01:57:09.348Z", + "fetchTime": "2023-12-24T01:58:38.978Z", "runWarnings": [], "categories": { "performance": { @@ -35059,7 +35235,7 @@ "snapshot" ], "id": "performance", - "score": 0.879734992980957 + "score": 0.8796543121337891 }, "accessibility": { "title": "Accessibility", @@ -35111,53 +35287,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5530, + "numericValue": 5650, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1848, - "firstMeaningfulPaint": 3648, - "largestContentfulPaint": 2298, - "interactive": 5530, - "speedIndex": 2188, - "totalBlockingTime": 102, - "maxPotentialFID": 157, + "firstContentfulPaint": 1968, + "firstMeaningfulPaint": 3768, + "largestContentfulPaint": 2418, + "interactive": 5650, + "speedIndex": 2062, + "totalBlockingTime": 179, + "maxPotentialFID": 175, "cumulativeLayoutShift": 0.00013031768798828125, "cumulativeLayoutShiftMainFrame": 0.00013031768798828125, "totalCumulativeLayoutShift": 0.00013031768798828125, "observedTimeOrigin": 0, - "observedTimeOriginTs": 246595090, + "observedTimeOriginTs": 233632406, "observedNavigationStart": 0, - "observedNavigationStartTs": 246595090, - "observedFirstPaint": 822, - "observedFirstPaintTs": 247416825, - "observedFirstContentfulPaint": 822, - "observedFirstContentfulPaintTs": 247416825, - "observedFirstContentfulPaintAllFrames": 822, - "observedFirstContentfulPaintAllFramesTs": 247416825, - "observedFirstMeaningfulPaint": 969, - "observedFirstMeaningfulPaintTs": 247563600, - "observedLargestContentfulPaint": 822, - "observedLargestContentfulPaintTs": 247416825, - "observedLargestContentfulPaintAllFrames": 822, - "observedLargestContentfulPaintAllFramesTs": 247416825, - "observedTraceEnd": 3526, - "observedTraceEndTs": 250120929, - "observedLoad": 1217, - "observedLoadTs": 247811736, - "observedDomContentLoaded": 892, - "observedDomContentLoadedTs": 247487438, + "observedNavigationStartTs": 233632406, + "observedFirstPaint": 651, + "observedFirstPaintTs": 234283816, + "observedFirstContentfulPaint": 651, + "observedFirstContentfulPaintTs": 234283816, + "observedFirstContentfulPaintAllFrames": 651, + "observedFirstContentfulPaintAllFramesTs": 234283816, + "observedFirstMeaningfulPaint": 865, + "observedFirstMeaningfulPaintTs": 234497583, + "observedLargestContentfulPaint": 651, + "observedLargestContentfulPaintTs": 234283816, + "observedLargestContentfulPaintAllFrames": 651, + "observedLargestContentfulPaintAllFramesTs": 234283816, + "observedTraceEnd": 3518, + "observedTraceEndTs": 237150050, + "observedLoad": 1209, + "observedLoadTs": 234841629, + "observedDomContentLoaded": 861, + "observedDomContentLoadedTs": 234493165, "observedCumulativeLayoutShift": 0.00013031768798828125, "observedCumulativeLayoutShiftMainFrame": 0.00013031768798828125, "observedTotalCumulativeLayoutShift": 0.00013031768798828125, - "observedFirstVisualChange": 828, - "observedFirstVisualChangeTs": 247423090, - "observedLastVisualChange": 1428, - "observedLastVisualChangeTs": 248023090, - "observedSpeedIndex": 883, - "observedSpeedIndexTs": 247478434 + "observedFirstVisualChange": 658, + "observedFirstVisualChangeTs": 234290406, + "observedLastVisualChange": 1258, + "observedLastVisualChangeTs": 234890406, + "observedSpeedIndex": 738, + "observedSpeedIndexTs": 234370291 }, { "lcpInvalidated": false @@ -35179,19 +35355,19 @@ "numScripts": 4, "numStylesheets": 7, "numFonts": 3, - "numTasks": 587, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, + "numTasks": 487, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 83.682, - "throughput": 21265235.885720838, - "maxRtt": 83.741, - "maxServerLatency": 47.731999999999985, - "totalByteWeight": 1679111, - "totalTaskTime": 188.74499999999927, - "mainDocumentTransferSize": 20834 + "rtt": 84.166, + "throughput": 22607540.966503087, + "maxRtt": 85.877, + "maxServerLatency": 168.02100000000002, + "totalByteWeight": 1679534, + "totalTaskTime": 190.70999999999967, + "mainDocumentTransferSize": 20836 } ] } @@ -35281,7 +35457,7 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.908, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "C", "nmapOpenPortsCount": 4, @@ -35293,7 +35469,7 @@ "cookiesCount": 3, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.879734992980957, + "lighthouse_performance": 0.8796543121337891, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -35319,7 +35495,7 @@ "http": { "url": "https://app.pix.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:11:17 GMT", + "end_time": "Sun, 24 Dec 2023 02:12:41 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -35328,7 +35504,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 02:11:16 GMT", + "Date": "Sun, 24 Dec 2023 02:12:40 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -35336,9 +35512,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45537476, + "scan_id": 45752798, "score": 75, - "start_time": "Sun, 17 Dec 2023 02:10:13 GMT", + "start_time": "Sun, 24 Dec 2023 02:08:40 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -35523,15 +35699,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:16:20Z", - "next_check_at": "2023-12-17T02:21:19Z", + "last_check_at": "2023-12-24T02:16:51Z", + "next_check_at": "2023-12-24T02:21:48Z", "mute_until": null, "favicon_url": "https://app.pix.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:11:21Z", + "tested_at": "2023-12-24T01:42:01Z", "expires_at": "2024-11-12T22:59:59Z", "valid": true, "error": null @@ -35540,11 +35716,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 64, - "connection": 109, - "handshake": 119, - "response": 113, - "total": 405 + "namelookup": 70, + "connection": 120, + "handshake": 129, + "response": 123, + "total": 443 } }, "uptimeGrade": "A", @@ -35577,77 +35753,77 @@ "testssl": [ { "id": "service", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35655,7 +35831,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35663,7 +35839,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35671,7 +35847,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35679,7 +35855,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -35687,7 +35863,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -35695,483 +35871,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "RSA 3072 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "D6C4CF7B646884F48C50C40A7343E934" }, { "id": "cert_serialNumberLen", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "BA2504CE03693B399822253691FE39DA0CDA2FBB" }, { "id": "cert_fingerprintSHA256", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "F6854FC6D6738BD8AA9D77E61C5E2814E921F772BB4D9391FEC1EB52A04A3FB3" }, { "id": "cert", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "admin.pix.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "admin.pix.fr" }, { "id": "cert_subjectAltName", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "certif.pix.fr app.pix.org admin.pix.fr orga.pix.org app.pix.fr pix.fr admin.pix.org certif.pix.org orga.pix.fr pix.org" }, { "id": "cert_trust", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "Ok via SAN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", - "finding": "331 >= 60 days" + "finding": "324 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2023-11-13 23:00" }, { "id": "cert_notAfter", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "2024-11-12 22:59" }, { "id": "cert_extlifeSpan", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", - "finding": "1702779155" + "finding": "1703384025" }, { "id": "HSTS_time", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -36179,7 +36355,7 @@ }, { "id": "heartbleed", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -36188,7 +36364,7 @@ }, { "id": "CCS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -36197,7 +36373,7 @@ }, { "id": "ticketbleed", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -36206,7 +36382,7 @@ }, { "id": "ROBOT", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -36215,7 +36391,7 @@ }, { "id": "secure_renego", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -36223,7 +36399,7 @@ }, { "id": "secure_client_renego", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -36232,7 +36408,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -36241,7 +36417,7 @@ }, { "id": "BREACH", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -36250,7 +36426,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -36259,14 +36435,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -36275,7 +36451,7 @@ }, { "id": "FREAK", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -36284,7 +36460,7 @@ }, { "id": "DROWN", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -36293,7 +36469,7 @@ }, { "id": "DROWN_hint", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -36302,7 +36478,7 @@ }, { "id": "LOGJAM", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -36311,7 +36487,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -36320,7 +36496,7 @@ }, { "id": "BEAST", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -36329,7 +36505,7 @@ }, { "id": "LUCKY13", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -36338,7 +36514,7 @@ }, { "id": "winshock", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -36347,7 +36523,7 @@ }, { "id": "RC4", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -36356,325 +36532,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "app.pix.fr/185.179.148.158", + "ip": "app.pix.fr/185.231.167.158", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "60" } ], "thirdparties": { @@ -36693,7 +36869,7 @@ }, { "type": "unknown", - "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=750738&h=2&m=11&s=53&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=efd5a76d8414051e&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=jgx5pv&pf_net=0&pf_srv=93&pf_tfr=1&pf_dm1=618&pf_dm2=510&pf_onl=1" + "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=292741&h=2&m=13&s=1&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=6edccee983531362&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=o9UEJ9&pf_net=0&pf_srv=109&pf_tfr=1&pf_dm1=669&pf_dm2=568&pf_onl=1" } ], "cookies": [ @@ -36702,7 +36878,7 @@ "value": "fr-FR", "domain": ".pix.fr", "path": "/", - "expires": 1734315111.96484, + "expires": 1734919980.325653, "size": 11, "httpOnly": false, "secure": false, @@ -36714,10 +36890,10 @@ }, { "name": "visit_baleen_ACM-655d43", - "value": "q8QlAktHqTNBC-r0rLFwP0V6UK1QOXe8pgwUNItIjPwUZm71lXZSs57XvXY8xkFp8UJ9fz48ZHfps-mEENuBXBOYJyrq-XJyQmMp6eZSHxlIP261hD3l9ir3OF1f67K3Dtcs_2t8kxf-8VfCkLCjnnQgYW_rIGjP1NC0vTqGQdrO_x4d-4IRAN1XyZYYyuVCDNTB10funya0VkyL3tka8cA_Y-0tBAdu2L0CpmfPQEghDHfVpftFduFykXdnMvsDbtFcSIY96ljl05PFIaI2cA", + "value": "Ia-L8kRtHsJkYtNoNDjXo_mYwSGpkAQBtg5S4ZW4eBD9uM4uARrXmBCrkP4HN9dzzR5UY0yw7VCBWXT_ZCgZ0xZ4woFtuLIyC_xUf1Zu8hQOMVv6AEdHVB2t38aOSLWOW5LTpTtT-_VtU3UcW2IB2W6sDapJxwyxRWWQrv1JiBYf8yhPuZpq6pflJ4HMKj1axJbO0K7xOEGjImR9fgCIEaYDouweC_pndGmcZqIjmd48n_88sL3_NMW9u9rbfm_bfF7aCkNYitbhiJGd2VxIWA", "domain": ".pix.fr", "path": "/", - "expires": 1702780010.932763, + "expires": 1703384879.21329, "size": 301, "httpOnly": false, "secure": false, @@ -36734,25 +36910,25 @@ "content-encoding": "gzip", "content-security-policy-report-only": "style-src 'self' 'unsafe-inline'; img-src 'self' https: data:; font-src 'self'; frame-src *.pix.fr data:; connect-src 'self' analytics.pix.fr; script-src 'self' analytics.pix.fr 'sha256-zzl6AXEYNbODqut4N1s48ebXWb9C1EcejDmXsYvw5uQ='; report-uri https://pix-report-csp-production.osc-secnum-fr1.scalingo.io", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 02:11:50 GMT", - "etag": "W/\"657c5f54-103a\"", - "expires": "Sun, 17 Dec 2023 02:11:49 GMT", - "last-modified": "Fri, 15 Dec 2023 14:14:44 GMT", + "date": "Sun, 24 Dec 2023 02:12:59 GMT", + "etag": "W/\"65845add-106d\"", + "expires": "Sun, 24 Dec 2023 02:12:58 GMT", + "last-modified": "Thu, 21 Dec 2023 15:33:49 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "87587e12ab2a659c02e618512a4bc757", + "x-request-id": "5b5f683a4176b2b41576b0e706651ee4", "x-robots-tag": "noindex", - "x-varnish": "865834830", + "x-varnish": "131414922", "x-xss-protection": "1" }, "endpoints": [ { "hostname": "app.pix.fr", - "ip": "185.179.148.158", + "ip": "185.231.167.158", "geoip": { "continent": { "code": "EU", @@ -36808,7 +36984,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.122.95", + "ip": "142.251.163.95", "geoip": { "continent": { "code": "NA", @@ -37017,7 +37193,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:09:48", + "@generated": "Sun, 24 Dec 2023 02:08:16", "site": [ { "@name": "https://app.pix.fr", @@ -37115,73 +37291,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "app.pix.fr.", "matched-at": "app.pix.fr", - "timestamp": "2023-12-17T02:13:58.853272395Z", + "extracted-results": [ + "pix-app.baleen.cshield.net." + ], + "timestamp": "2023-12-24T02:15:09.130938691Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "app.pix.fr.", "matched-at": "app.pix.fr", - "extracted-results": [ - "pix-app.baleen.cshield.net." - ], - "timestamp": "2023-12-17T02:13:58.854997864Z", + "timestamp": "2023-12-24T02:15:09.184224393Z", "matcher-status": true }, { @@ -37221,7 +37397,7 @@ "1; mode=block" ], "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:10.162283764Z", + "timestamp": "2023-12-24T02:15:20.56484114Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37248,7 +37424,192 @@ "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:32.700443279Z", + "timestamp": "2023-12-24T02:15:43.531861756Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://app.pix.fr", + "matched-at": "https://app.pix.fr", + "ip": "185.179.148.158", + "timestamp": "2023-12-24T02:15:52.187709394Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://app.pix.fr", + "matched-at": "https://app.pix.fr", + "ip": "185.179.148.158", + "timestamp": "2023-12-24T02:15:52.18775587Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://app.pix.fr", + "matched-at": "https://app.pix.fr", + "ip": "185.179.148.158", + "timestamp": "2023-12-24T02:15:52.18777151Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://app.pix.fr", + "matched-at": "https://app.pix.fr", + "ip": "185.179.148.158", + "timestamp": "2023-12-24T02:15:52.187784263Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://app.pix.fr", + "matched-at": "https://app.pix.fr", + "ip": "185.179.148.158", + "timestamp": "2023-12-24T02:15:52.187796937Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37285,7 +37646,7 @@ "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563702238Z", + "timestamp": "2023-12-24T02:15:52.187818367Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37322,193 +37683,39 @@ "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563758603Z", + "timestamp": "2023-12-24T02:15:52.187841069Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://app.pix.fr", - "matched-at": "https://app.pix.fr", - "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563775254Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://app.pix.fr", - "matched-at": "https://app.pix.fr", - "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563788178Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://app.pix.fr", - "matched-at": "https://app.pix.fr", - "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563801222Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://app.pix.fr", - "matched-at": "https://app.pix.fr", - "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563817533Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "TLS Version - Detect", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "pdteam", + "pussycat0x" ], "tags": [ - "misconfig", - "headers", - "generic" + "ssl", + "tls" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://app.pix.fr", - "matched-at": "https://app.pix.fr", + "type": "ssl", + "host": "app.pix.fr", + "matched-at": "app.pix.fr:443", + "extracted-results": [ + "tls12" + ], "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:14:41.563853859Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", + "timestamp": "2023-12-24T02:17:56.458876792Z", "matcher-status": true }, { @@ -37522,7 +37729,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -37537,7 +37745,7 @@ "DHIMYOTIS" ], "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:16:45.047924016Z", + "timestamp": "2023-12-24T02:17:56.913988393Z", "matcher-status": true }, { @@ -37551,7 +37759,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -37563,19 +37772,19 @@ "host": "app.pix.fr", "matched-at": "app.pix.fr:443", "extracted-results": [ - "certif.pix.fr", "pix.fr", + "admin.pix.org", + "orga.pix.fr", "pix.org", + "certif.pix.fr", "app.pix.fr", - "admin.pix.org", + "orga.pix.org", "certif.pix.org", - "orga.pix.fr", "app.pix.org", - "admin.pix.fr", - "orga.pix.org" + "admin.pix.fr" ], "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:16:45.048050442Z", + "timestamp": "2023-12-24T02:17:56.914093519Z", "matcher-status": true }, { @@ -37590,37 +37799,8 @@ "pussycat0x" ], "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "app.pix.fr", - "matched-at": "app.pix.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:16:47.184747697Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -37635,7 +37815,7 @@ "tls13" ], "ip": "185.179.148.158", - "timestamp": "2023-12-17T02:16:48.076448688Z", + "timestamp": "2023-12-24T02:17:57.338826053Z", "matcher-status": true } ], @@ -37643,7 +37823,7 @@ { "requestedUrl": "https://app.pix.fr/", "finalUrl": "https://app.pix.fr/", - "fetchTime": "2023-12-17T02:10:02.543Z", + "fetchTime": "2023-12-24T02:08:29.985Z", "runWarnings": [], "categories": { "performance": { @@ -37654,7 +37834,7 @@ "snapshot" ], "id": "performance", - "score": 0.8777816772460938 + "score": 0.9048181533813476 }, "accessibility": { "title": "Accessibility", @@ -37706,53 +37886,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9600, + "numericValue": 8587, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1884, - "firstMeaningfulPaint": 5025, - "largestContentfulPaint": 2108, - "interactive": 9600, - "speedIndex": 2573, - "totalBlockingTime": 693, - "maxPotentialFID": 297, + "firstContentfulPaint": 1750, + "firstMeaningfulPaint": 5035, + "largestContentfulPaint": 1889, + "interactive": 8587, + "speedIndex": 2442, + "totalBlockingTime": 548, + "maxPotentialFID": 230, "cumulativeLayoutShift": 0.05769547356499566, "cumulativeLayoutShiftMainFrame": 0.05769547356499566, "totalCumulativeLayoutShift": 0.05769547356499566, "observedTimeOrigin": 0, - "observedTimeOriginTs": 305679810, + "observedTimeOriginTs": 249416284, "observedNavigationStart": 0, - "observedNavigationStartTs": 305679810, - "observedFirstPaint": 379, - "observedFirstPaintTs": 306059082, - "observedFirstContentfulPaint": 379, - "observedFirstContentfulPaintTs": 306059082, - "observedFirstContentfulPaintAllFrames": 379, - "observedFirstContentfulPaintAllFramesTs": 306059082, - "observedFirstMeaningfulPaint": 1231, - "observedFirstMeaningfulPaintTs": 306910502, - "observedLargestContentfulPaint": 379, - "observedLargestContentfulPaintTs": 306059082, - "observedLargestContentfulPaintAllFrames": 379, - "observedLargestContentfulPaintAllFramesTs": 306059082, - "observedTraceEnd": 3627, - "observedTraceEndTs": 309306797, - "observedLoad": 1247, - "observedLoadTs": 306927220, - "observedDomContentLoaded": 843, - "observedDomContentLoadedTs": 306522875, + "observedNavigationStartTs": 249416284, + "observedFirstPaint": 382, + "observedFirstPaintTs": 249797849, + "observedFirstContentfulPaint": 382, + "observedFirstContentfulPaintTs": 249797849, + "observedFirstContentfulPaintAllFrames": 382, + "observedFirstContentfulPaintAllFramesTs": 249797849, + "observedFirstMeaningfulPaint": 1197, + "observedFirstMeaningfulPaintTs": 250612821, + "observedLargestContentfulPaint": 382, + "observedLargestContentfulPaintTs": 249797849, + "observedLargestContentfulPaintAllFrames": 382, + "observedLargestContentfulPaintAllFramesTs": 249797849, + "observedTraceEnd": 3563, + "observedTraceEndTs": 252979487, + "observedLoad": 1231, + "observedLoadTs": 250647329, + "observedDomContentLoaded": 831, + "observedDomContentLoadedTs": 250247775, "observedCumulativeLayoutShift": 0.05769547356499566, "observedCumulativeLayoutShiftMainFrame": 0.05769547356499566, "observedTotalCumulativeLayoutShift": 0.05769547356499566, - "observedFirstVisualChange": 391, - "observedFirstVisualChangeTs": 306070810, - "observedLastVisualChange": 1241, - "observedLastVisualChangeTs": 306920810, - "observedSpeedIndex": 1142, - "observedSpeedIndexTs": 306821893 + "observedFirstVisualChange": 390, + "observedFirstVisualChangeTs": 249806284, + "observedLastVisualChange": 1207, + "observedLastVisualChangeTs": 250623284, + "observedSpeedIndex": 1110, + "observedSpeedIndexTs": 250526645 }, { "lcpInvalidated": false @@ -37774,19 +37954,19 @@ "numScripts": 4, "numStylesheets": 4, "numFonts": 4, - "numTasks": 446, - "numTasksOver10ms": 7, + "numTasks": 438, + "numTasksOver10ms": 5, "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.917999999999999, - "throughput": 23469700.83756119, - "maxRtt": 84.94200000000001, - "maxServerLatency": 13.34299999999999, - "totalByteWeight": 1689352, - "totalTaskTime": 380.8829999999995, - "mainDocumentTransferSize": 2088 + "rtt": 6.378, + "throughput": 18863488.01989204, + "maxRtt": 85.107, + "maxServerLatency": 15.545999999999992, + "totalByteWeight": 1547603, + "totalTaskTime": 293.4769999999997, + "mainDocumentTransferSize": 2087 } ] } @@ -37894,7 +38074,7 @@ "cookiesCount": 2, "trackersGrade": "C", "trackersCount": 3, - "lighthouse_performance": 0.8777816772460938, + "lighthouse_performance": 0.9048181533813476, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -37919,7 +38099,7 @@ "http": { "url": "https://audioconf.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:37:33 GMT", + "end_time": "Sun, 24 Dec 2023 01:34:24 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -37927,17 +38107,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:37:32 GMT", - "ETag": "W/\"6fb6-Gzfftw/lzH5jyG055hZnQvHO6zQ\"", - "Set-Cookie": "connect.sid=s%3Ao5DhXnSJhImoFqx05odoUiOsh_8Nwy0u.R%2FSBwA381BJ3L3bc5EbaOKUVa53R0ypj2jaT5BiVUQ4; Path=/; Expires=Sun, 17 Dec 2023 01:42:32 GMT; HttpOnly; SameSite=Lax, sc-sticky-session=c7rctCX4gRqbcKmdmMCqZcYzZWevCTZyLl2Vece1COPMLBQKqR8W/O831obYd5D2ZyFHP4pzLrSZ/KgtUbs51w==; Expires=Mon, 18-Dec-23 01:37:32 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Date": "Sun, 24 Dec 2023 01:34:23 GMT", + "ETag": "W/\"6f93-mGPaOdMcqtmxGUOyCcrOsLuhFyc\"", + "Set-Cookie": "connect.sid=s%3ASc9aW-pIj4tzBy6sZJTPgP7XYAwP1oVl.TglT2kd7OeJiGHkdjfHxhuZkbnVOgoaQtqWy%2F5b5L4M; Path=/; Expires=Sun, 24 Dec 2023 01:39:23 GMT; HttpOnly; SameSite=Lax, sc-sticky-session=9Luic4jiL7hdloySDHN1h2vKrkZ+Utuj18UznG94j2T2mjU9tyUI6bvYMdlsE1DJC4NHSNqv3RLuTAhjcm+kNw==; Expires=Mon, 25-Dec-23 01:34:23 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Powered-By": "Express", - "X-Request-ID": "8abf85d3-6e91-46d8-83d7-708c28fbe386" + "X-Request-ID": "5f745031-0ddc-4b49-8d2e-f3dbba5d84c2" }, - "scan_id": 45536881, + "scan_id": 45752281, "score": 35, - "start_time": "Sun, 17 Dec 2023 01:37:29 GMT", + "start_time": "Sun, 24 Dec 2023 01:34:20 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -37977,7 +38157,7 @@ "data": { "connect.sid": { "domain": "audioconf.numerique.gouv.fr", - "expires": 1702777352, + "expires": 1703381963, "httponly": true, "max-age": null, "path": "/", @@ -37987,7 +38167,7 @@ }, "sc-sticky-session": { "domain": "audioconf.numerique.gouv.fr", - "expires": 1702863453, + "expires": 1703468064, "httponly": true, "max-age": null, "path": "/", @@ -38144,15 +38324,15 @@ "slack_compatible:4124784183", "slack_compatible:3529617075" ], - "last_check_at": "2023-12-17T02:29:26Z", - "next_check_at": "2023-12-17T02:31:25Z", + "last_check_at": "2023-12-24T02:30:18Z", + "next_check_at": "2023-12-24T02:32:17Z", "mute_until": null, "favicon_url": "https://audioconf.numerique.gouv.fr/static/images/favicon/favicon-32x32.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:13:32Z", + "tested_at": "2023-12-24T02:16:22Z", "expires_at": "2024-03-13T13:33:17Z", "valid": true, "error": null @@ -38161,11 +38341,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 111, - "connection": 110, - "handshake": 116, - "response": 128, - "total": 466 + "namelookup": 118, + "connection": 118, + "handshake": 122, + "response": 133, + "total": 492 } }, "uptimeGrade": "A", @@ -38198,77 +38378,77 @@ "testssl": [ { "id": "service", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38276,7 +38456,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38284,7 +38464,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38292,7 +38472,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38300,7 +38480,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38308,7 +38488,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38316,511 +38496,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702779433" + "finding": "1703384339" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -38828,7 +39008,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -38837,7 +39017,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -38846,7 +39026,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -38855,7 +39035,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -38864,7 +39044,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -38872,7 +39052,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -38881,7 +39061,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -38890,7 +39070,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -38899,7 +39079,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -38908,14 +39088,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -38924,7 +39104,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -38933,7 +39113,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38942,7 +39122,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38951,7 +39131,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38960,7 +39140,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38969,7 +39149,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -38978,7 +39158,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -38987,7 +39167,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -38996,7 +39176,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -39005,392 +39185,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39398,7 +39578,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39406,7 +39586,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39414,7 +39594,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39422,7 +39602,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -39430,7 +39610,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -39438,511 +39618,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702779491" + "finding": "1703384397" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -39950,7 +40130,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -39959,7 +40139,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -39968,7 +40148,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -39977,7 +40157,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -39986,7 +40166,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -39994,7 +40174,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -40003,7 +40183,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -40012,7 +40192,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -40021,7 +40201,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -40030,14 +40210,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -40046,7 +40226,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -40055,7 +40235,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -40064,7 +40244,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -40073,7 +40253,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -40082,7 +40262,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -40091,7 +40271,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -40100,7 +40280,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -40109,7 +40289,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -40118,7 +40298,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -40127,392 +40307,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40520,7 +40700,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40528,7 +40708,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40536,7 +40716,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40544,7 +40724,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40552,7 +40732,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40560,511 +40740,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702779549" + "finding": "1703384457" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -41072,7 +41252,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -41081,7 +41261,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -41090,7 +41270,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -41099,7 +41279,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -41108,7 +41288,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -41116,7 +41296,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -41125,7 +41305,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -41134,7 +41314,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -41143,7 +41323,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -41152,14 +41332,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -41168,7 +41348,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -41177,7 +41357,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41186,7 +41366,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41195,7 +41375,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41204,7 +41384,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41213,7 +41393,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -41222,7 +41402,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -41231,7 +41411,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -41240,7 +41420,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -41249,392 +41429,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41642,7 +41822,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41650,7 +41830,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41658,7 +41838,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41666,7 +41846,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -41674,7 +41854,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -41682,511 +41862,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702779608" + "finding": "1703384517" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -42194,7 +42374,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -42203,7 +42383,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -42212,7 +42392,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -42221,7 +42401,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -42230,7 +42410,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -42238,7 +42418,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -42247,7 +42427,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -42256,7 +42436,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -42265,7 +42445,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -42274,14 +42454,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -42290,7 +42470,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -42299,7 +42479,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -42308,7 +42488,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -42317,7 +42497,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -42326,7 +42506,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -42335,7 +42515,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -42344,7 +42524,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -42353,7 +42533,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -42362,7 +42542,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -42371,325 +42551,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "239" + "finding": "240" } ], "thirdparties": { @@ -42697,10 +42877,10 @@ "cookies": [ { "name": "sc-sticky-session", - "value": "c7rctCX4gRqbcKmdmMCqZWh9/+B+06OjSDS6Gj61wBNqZBARX0YuLAKMTR06HLZ/jtOX0Oe6yXakrliyK3AG5w==", + "value": "9Luic4jiL7hdloySDHN1h2vKrkZ+Utuj18UznG94j2T2mjU9tyUI6bvYMdlsE1DJC4NHSNqv3RLuTAhjcm+kNw==", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1702865771.04825, + "expires": 1703470678.895923, "size": 105, "httpOnly": true, "secure": true, @@ -42712,11 +42892,11 @@ }, { "name": "connect.sid", - "value": "s%3AL1m5W51_E1z3kzbAiCsgAQb2FwEZYISq.kWXceJ4%2FpyLhs32jJQDwZNHcFXqOT8tOh0BZkzzRD1I", + "value": "s%3ArZOHWZeJQ_ca-biAacNEDnGTxyjUvjzZ.U1DJqilcmSYKEXjO91LEIcvo4km4S%2FxQibnfY6%2BVUWg", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1702779670.547703, - "size": 93, + "expires": 1703384578.493119, + "size": 95, "httpOnly": true, "secure": false, "session": false, @@ -42729,17 +42909,17 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 02:16:10 GMT", - "etag": "W/\"6fb6-Gzfftw/lzH5jyG055hZnQvHO6zQ\"", - "set-cookie": "connect.sid=s%3AL1m5W51_E1z3kzbAiCsgAQb2FwEZYISq.kWXceJ4%2FpyLhs32jJQDwZNHcFXqOT8tOh0BZkzzRD1I; Path=/; Expires=Sun, 17 Dec 2023 02:21:10 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=c7rctCX4gRqbcKmdmMCqZWh9/+B+06OjSDS6Gj61wBNqZBARX0YuLAKMTR06HLZ/jtOX0Oe6yXakrliyK3AG5w==; Expires=Mon, 18-Dec-23 02:16:10 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "date": "Sun, 24 Dec 2023 02:17:58 GMT", + "etag": "W/\"6f93-mGPaOdMcqtmxGUOyCcrOsLuhFyc\"", + "set-cookie": "connect.sid=s%3ArZOHWZeJQ_ca-biAacNEDnGTxyjUvjzZ.U1DJqilcmSYKEXjO91LEIcvo4km4S%2FxQibnfY6%2BVUWg; Path=/; Expires=Sun, 24 Dec 2023 02:22:58 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=9Luic4jiL7hdloySDHN1h2vKrkZ+Utuj18UznG94j2T2mjU9tyUI6bvYMdlsE1DJC4NHSNqv3RLuTAhjcm+kNw==; Expires=Mon, 25-Dec-23 02:17:58 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-powered-by": "Express", - "x-request-id": "578958b0-0e09-4a69-abea-e98546d441b1" + "x-request-id": "dc5c2514-4b97-4ba2-81e9-358078186cf2" }, "endpoints": [ { "hostname": "audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -42906,7 +43086,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:15:28", + "@generated": "Sun, 24 Dec 2023 02:17:18", "site": [ { "@name": "https://audioconf.numerique.gouv.fr", @@ -43060,23 +43240,22 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -43086,36 +43265,33 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "audioconf.numerique.gouv.fr.", - "matched-at": "_dmarc.audioconf.numerique.gouv.fr", - "extracted-results": [ - "\"v=DMARC1;p=none;\"" - ], - "timestamp": "2023-12-17T02:21:39.367714553Z", + "matched-at": "audioconf.numerique.gouv.fr", + "timestamp": "2023-12-24T02:23:28.122705453Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -43131,27 +43307,28 @@ "type": "dns", "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", - "timestamp": "2023-12-17T02:21:39.377088727Z", + "extracted-results": [ + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." + ], + "timestamp": "2023-12-24T02:23:28.14721203Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -43167,31 +43344,30 @@ "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", "extracted-results": [ - "\"brevo-code:a81f60a1d1446c0fcefcca0c1371196f\"", - "\"google-site-verification=sN9DZBskBX8uJrv-EdTEv4isrRfVLmoHavHB9vaM95Q\"", - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:spf.sendinblue.com ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T02:21:40.27135511Z", + "timestamp": "2023-12-24T02:23:28.271891895Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -43201,34 +43377,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "audioconf.numerique.gouv.fr.", - "matched-at": "audioconf.numerique.gouv.fr", + "matched-at": "_dmarc.audioconf.numerique.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T02:21:40.3906492Z", + "timestamp": "2023-12-24T02:23:28.283750211Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -43244,10 +43423,11 @@ "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"google-site-verification=sN9DZBskBX8uJrv-EdTEv4isrRfVLmoHavHB9vaM95Q\"", + "\"brevo-code:a81f60a1d1446c0fcefcca0c1371196f\"", + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:spf.sendinblue.com ~all\"" ], - "timestamp": "2023-12-17T02:21:40.454305841Z", + "timestamp": "2023-12-24T02:23:29.119394058Z", "matcher-status": true }, { @@ -43275,8 +43455,8 @@ "extracted-results": [ "GET,HEAD" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:21:47.51684118Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:23:36.13408698Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43314,8 +43494,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:21:52.895385467Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:23:41.514114073Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43341,8 +43521,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:20.371338233Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:09.112319547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43374,12 +43554,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960150447Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677039743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43411,12 +43591,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960208335Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677084146Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43448,12 +43628,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960224656Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677095327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43485,12 +43665,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960237269Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677104413Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43522,12 +43702,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960249332Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.67711353Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43559,12 +43739,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960263067Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677121996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43596,12 +43776,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960276382Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677138006Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43637,8 +43817,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960289356Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.67715096Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43674,8 +43854,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960301699Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677162692Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43711,8 +43891,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:29.960329481Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:18.677175636Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43751,8 +43931,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:22:56.056123258Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:24:45.116309371Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: audioconf.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr/'", "matcher-status": true }, @@ -43767,7 +43947,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -43781,8 +43962,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:28:38.831485578Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:30:27.83470295Z", "matcher-status": true }, { @@ -43796,7 +43977,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -43810,8 +43992,8 @@ "extracted-results": [ "audioconf.numerique.gouv.fr" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:28:38.831640086Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:30:27.834832472Z", "matcher-status": true }, { @@ -43826,7 +44008,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -43840,8 +44023,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:28:40.547756397Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:30:29.522600119Z", "matcher-status": true }, { @@ -43856,7 +44039,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -43870,8 +44054,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T02:28:41.108497328Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T02:30:29.743451911Z", "matcher-status": true } ], @@ -43879,7 +44063,7 @@ { "requestedUrl": "https://audioconf.numerique.gouv.fr/", "finalUrl": "https://audioconf.numerique.gouv.fr/", - "fetchTime": "2023-12-17T02:15:42.471Z", + "fetchTime": "2023-12-24T02:17:32.352Z", "runWarnings": [], "categories": { "performance": { @@ -43942,53 +44126,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1806, + "numericValue": 1958, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1356, - "firstMeaningfulPaint": 1806, - "largestContentfulPaint": 1656, - "interactive": 1806, - "speedIndex": 1716, + "firstContentfulPaint": 1508, + "firstMeaningfulPaint": 1958, + "largestContentfulPaint": 1808, + "interactive": 1958, + "speedIndex": 1733, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 233119438, + "observedTimeOriginTs": 192022993, "observedNavigationStart": 0, - "observedNavigationStartTs": 233119438, - "observedFirstPaint": 734, - "observedFirstPaintTs": 233853298, - "observedFirstContentfulPaint": 734, - "observedFirstContentfulPaintTs": 233853298, - "observedFirstContentfulPaintAllFrames": 734, - "observedFirstContentfulPaintAllFramesTs": 233853298, - "observedFirstMeaningfulPaint": 926, - "observedFirstMeaningfulPaintTs": 234045582, - "observedLargestContentfulPaint": 829, - "observedLargestContentfulPaintTs": 233948346, - "observedLargestContentfulPaintAllFrames": 829, - "observedLargestContentfulPaintAllFramesTs": 233948346, - "observedTraceEnd": 3229, - "observedTraceEndTs": 236348136, - "observedLoad": 913, - "observedLoadTs": 234032856, - "observedDomContentLoaded": 714, - "observedDomContentLoadedTs": 233833775, + "observedNavigationStartTs": 192022993, + "observedFirstPaint": 649, + "observedFirstPaintTs": 192671772, + "observedFirstContentfulPaint": 649, + "observedFirstContentfulPaintTs": 192671772, + "observedFirstContentfulPaintAllFrames": 649, + "observedFirstContentfulPaintAllFramesTs": 192671772, + "observedFirstMeaningfulPaint": 859, + "observedFirstMeaningfulPaintTs": 192882060, + "observedLargestContentfulPaint": 761, + "observedLargestContentfulPaintTs": 192784074, + "observedLargestContentfulPaintAllFrames": 761, + "observedLargestContentfulPaintAllFramesTs": 192784074, + "observedTraceEnd": 3159, + "observedTraceEndTs": 195182026, + "observedLoad": 845, + "observedLoadTs": 192867517, + "observedDomContentLoaded": 647, + "observedDomContentLoadedTs": 192670280, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 704, - "observedFirstVisualChangeTs": 233823438, - "observedLastVisualChange": 937, - "observedLastVisualChangeTs": 234056438, - "observedSpeedIndex": 775, - "observedSpeedIndexTs": 233893977 + "observedFirstVisualChange": 652, + "observedFirstVisualChangeTs": 192674993, + "observedLastVisualChange": 869, + "observedLastVisualChangeTs": 192891993, + "observedSpeedIndex": 717, + "observedSpeedIndexTs": 192739623 }, { "lcpInvalidated": false @@ -44011,18 +44195,18 @@ "numStylesheets": 3, "numFonts": 3, "numTasks": 430, - "numTasksOver10ms": 4, - "numTasksOver25ms": 0, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.648, - "throughput": 4257869.2054779185, - "maxRtt": 100.648, - "maxServerLatency": 6.367000000000004, - "totalByteWeight": 167686, - "totalTaskTime": 137.60599999999994, - "mainDocumentTransferSize": 5280 + "rtt": 100.912, + "throughput": 6275967.6063808715, + "maxRtt": 100.912, + "maxServerLatency": 7.748999999999995, + "totalByteWeight": 167775, + "totalTaskTime": 171.0249999999998, + "mainDocumentTransferSize": 5305 } ] } @@ -44116,7 +44300,7 @@ "http": { "url": "https://beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 00:44:18 GMT", + "end_time": "Sun, 24 Dec 2023 00:40:13 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -44124,16 +44308,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 00:44:17 GMT", - "ETag": "W/\"657dfea9-9afb\"", - "Last-Modified": "Sat, 16 Dec 2023 19:46:49 GMT", + "Date": "Sun, 24 Dec 2023 00:40:12 GMT", + "ETag": "W/\"65871dc3-9b1f\"", + "Last-Modified": "Sat, 23 Dec 2023 17:49:55 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "ed9c0b43-d09f-4db7-b39a-a29abf5026f9" + "X-Request-ID": "a7ffb71f-20b8-4adc-886c-62f613f06b6e" }, - "scan_id": 45535555, + "scan_id": 45750815, "score": 40, - "start_time": "Sun, 17 Dec 2023 00:44:15 GMT", + "start_time": "Sun, 24 Dec 2023 00:40:09 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -44318,15 +44502,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:30:18Z", - "next_check_at": "2023-12-17T02:35:17Z", + "last_check_at": "2023-12-24T02:25:47Z", + "next_check_at": "2023-12-24T02:30:46Z", "mute_until": null, "favicon_url": "https://beta.gouv.fr/assets/images/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T01:55:30Z", + "tested_at": "2023-12-24T02:10:53Z", "expires_at": "2024-02-18T07:27:11Z", "valid": true, "error": null @@ -44335,11 +44519,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 196, - "connection": 158, - "handshake": 167, - "response": 162, - "total": 682 + "namelookup": 116, + "connection": 125, + "handshake": 132, + "response": 127, + "total": 501 } }, "uptimeGrade": "A", @@ -44717,7 +44901,7 @@ "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -44920,7 +45104,7 @@ "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702779916" + "finding": "1703384616" }, { "id": "HSTS_time", @@ -45678,7 +45862,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -45825,7 +46009,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -46021,14 +46205,14 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702779975" + "finding": "1703384671" }, { "id": "HSTS_time", @@ -46591,7 +46775,7 @@ "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "121" + "finding": "111" } ], "thirdparties": { @@ -46599,10 +46783,10 @@ "cookies": [ { "name": "_pk_id.1.968e", - "value": "c6e8438aad111497.1702779854.", + "value": "ec687203e281127c.1703384560.", "domain": "beta.gouv.fr", "path": "/", - "expires": 1736735054, + "expires": 1737339760, "size": 41, "httpOnly": false, "secure": false, @@ -46617,7 +46801,7 @@ "value": "1", "domain": "beta.gouv.fr", "path": "/", - "expires": 1702781654, + "expires": 1703386359, "size": 15, "httpOnly": false, "secure": false, @@ -46632,7 +46816,7 @@ "value": "1", "domain": "beta.gouv.fr", "path": "/", - "expires": 1702781654, + "expires": 1703386359, "size": 16, "httpOnly": false, "secure": false, @@ -46644,10 +46828,10 @@ }, { "name": "_pk_id.21.968e", - "value": "ed617b82f906294f.1702779854.", + "value": "c036fa4e933b8061.1703384560.", "domain": "beta.gouv.fr", "path": "/", - "expires": 1736735054, + "expires": 1737339760, "size": 42, "httpOnly": false, "secure": false, @@ -46661,11 +46845,11 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 02:24:13 GMT", - "etag": "W/\"657dfea9-9afb\"", - "last-modified": "Sat, 16 Dec 2023 19:46:49 GMT", + "date": "Sun, 24 Dec 2023 02:22:39 GMT", + "etag": "W/\"65871dc3-9b1f\"", + "last-modified": "Sat, 23 Dec 2023 17:49:55 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "e2cbc651-5c82-4de6-ba9a-6dbd3804f5b7" + "x-request-id": "4ae8b2bd-ea97-42eb-9a5a-589eec14b8ca" }, "endpoints": [ { @@ -46774,6 +46958,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -46856,24 +47058,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "pwa", "name": "PWA", @@ -46915,7 +47099,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:23:32", + "@generated": "Sun, 24 Dec 2023 02:21:59", "site": [ { "@name": "https://beta-gouv-fr-budget.netlify.app", @@ -47117,51 +47301,11 @@ "host": "beta.gouv.fr.", "matched-at": "beta.gouv.fr", "extracted-results": [ - "5 mx2.ovh.net.", "1 mx1.ovh.net.", + "5 mx2.ovh.net.", "100 mxb.ovh.net." ], - "timestamp": "2023-12-17T02:27:45.567676264Z", - "matcher-status": true - }, - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "beta.gouv.fr.", - "matched-at": "_dmarc.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2023-12-17T02:27:45.628316135Z", + "timestamp": "2023-12-24T02:25:54.572051251Z", "matcher-status": true }, { @@ -47197,7 +47341,7 @@ "ns18.ovh.net.", "dns18.ovh.net." ], - "timestamp": "2023-12-17T02:27:45.638081886Z", + "timestamp": "2023-12-24T02:25:54.723193995Z", "matcher-status": true }, { @@ -47232,7 +47376,7 @@ "type": "dns", "host": "beta.gouv.fr.", "matched-at": "beta.gouv.fr", - "timestamp": "2023-12-17T02:27:45.657848181Z", + "timestamp": "2023-12-24T02:25:54.738044468Z", "matcher-status": true }, { @@ -47268,17 +47412,57 @@ "host": "beta.gouv.fr.", "matched-at": "beta.gouv.fr", "extracted-results": [ + "\"Sendinblue-code:1e9473206dde93a169d3acf07bec0adf\"", + "\"Sendinblue-code:98107153cf48b6ee7f14ab7d0a1ab7b5\"", "\"google-site-verification=Mo4Mbev37H1GkeCJtasIGj320ipsKn0mKUl4KyrvFBM\"", - "\"google-site-verification=ejIpUG1rg69LP1NhluAU5YoR4HrV2avM5FvNuIwLSRY\"", - "\"MS=4A732B260FFD4F901CAE36FB0D99DED7FB8CDC12\"", - "\"Sendinblue-code:8929780161d193b814fa4fa4958461f3\"", "\"google-site-verification=lfIzZXA-NeXZJYKhXJEpi89tvcAk4VsX2vOciP0ougo\"", - "\"Sendinblue-code:98107153cf48b6ee7f14ab7d0a1ab7b5\"", - "\"Sendinblue-code:1e9473206dde93a169d3acf07bec0adf\"", "\"v=spf1 include:spf.sendinblue.com include:mx.ovh.com include:sendgrid.net include:spf.mailjet.com include:spf.tipimail.com include:servers.mcsv.net ~all\"", + "\"MS=4A732B260FFD4F901CAE36FB0D99DED7FB8CDC12\"", + "\"google-site-verification=ejIpUG1rg69LP1NhluAU5YoR4HrV2avM5FvNuIwLSRY\"", + "\"Sendinblue-code:8929780161d193b814fa4fa4958461f3\"", "\"sendinblue-code:de106244f818fc1674ecb675e73f2d50\"" ], - "timestamp": "2023-12-17T02:27:46.546404732Z", + "timestamp": "2023-12-24T02:25:54.73952758Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "beta.gouv.fr.", + "matched-at": "_dmarc.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2023-12-24T02:25:55.648080953Z", "matcher-status": true }, { @@ -47317,7 +47501,7 @@ "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:27:59.065681734Z", + "timestamp": "2023-12-24T02:26:05.787397874Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47352,7 +47536,7 @@ "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/admin/index.html", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:31.85971975Z", + "timestamp": "2023-12-24T02:26:33.849468264Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/admin/index.html'", "matcher-status": true }, @@ -47384,12 +47568,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854754823Z", + "timestamp": "2023-12-24T02:26:37.265796992Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47421,12 +47605,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854805417Z", + "timestamp": "2023-12-24T02:26:37.265844309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47458,12 +47642,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854818141Z", + "timestamp": "2023-12-24T02:26:37.265857554Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47495,12 +47679,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854834511Z", + "timestamp": "2023-12-24T02:26:37.265872933Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47532,12 +47716,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854848748Z", + "timestamp": "2023-12-24T02:26:37.265886338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47569,12 +47753,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854861652Z", + "timestamp": "2023-12-24T02:26:37.265900865Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47606,12 +47790,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854875017Z", + "timestamp": "2023-12-24T02:26:37.265916414Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47643,12 +47827,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.85488702Z", + "timestamp": "2023-12-24T02:26:37.265928486Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47680,12 +47864,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854899132Z", + "timestamp": "2023-12-24T02:26:37.26594119Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47717,12 +47901,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:35.854910824Z", + "timestamp": "2023-12-24T02:26:37.265955517Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47764,8 +47948,8 @@ "extracted-results": [ "69e439be-1350-422a-baa9-ff64796a83cd" ], - "ip": "20.190.155.2", - "timestamp": "2023-12-17T02:28:37.173787167Z", + "ip": "20.190.190.132", + "timestamp": "2023-12-24T02:26:38.641482298Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/beta.gouv.fr/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -47808,7 +47992,7 @@ "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/Guardfile", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:28:38.605784184Z", + "timestamp": "2023-12-24T02:26:39.591622162Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/Guardfile'", "matcher-status": true }, @@ -47846,61 +48030,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "2024-02-24T18:10:37Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547329328Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", + "extractor-name": "registrationDate", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "DINSIC ISN" + "2016-02-24T18:10:37Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547373771Z", + "timestamp": "2023-12-24T02:26:47.032445606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47938,15 +48076,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "+33.681349243" + "2023-10-19T13:36:32.326787Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547391935Z", + "timestamp": "2023-12-24T02:26:47.032487183Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47984,18 +48122,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "registrantName", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "39 quai Andre Citroen", - "Paris", - "75015", - "FR" + "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547408025Z", + "timestamp": "2023-12-24T02:26:47.032497713Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48042,145 +48177,7 @@ "dns18.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547423825Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "false" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547438903Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrationDate", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "2016-02-24T18:10:37Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547452648Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "2023-10-19T13:36:32.326787Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547466685Z", + "timestamp": "2023-12-24T02:26:47.032507701Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48218,15 +48215,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "status", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "swscdmldpsaea7q26su0@y.o-w-o.info" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.54748062Z", + "timestamp": "2023-12-24T02:26:47.032516838Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48264,15 +48261,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "expirationDate", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "FR" + "2024-02-24T18:10:37Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547495158Z", + "timestamp": "2023-12-24T02:26:47.032525604Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48310,15 +48307,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantOrg", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "active" + "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547512851Z", + "timestamp": "2023-12-24T02:26:47.032536044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48356,15 +48353,202 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantEmail", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "DINSIC ISN" + "swscdmldpsaea7q26su0@y.o-w-o.info" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T02:26:47.032551773Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantPhone", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "+33.681349243" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T02:26:47.032565419Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantAddress", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "39 quai Andre Citroen", + "Paris", + "75015", + "FR" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T02:26:47.032577762Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T02:28:47.547645408Z", + "timestamp": "2023-12-24T02:26:47.032594212Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "secureDNS", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "false" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T02:26:47.032760242Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48404,7 +48588,7 @@ "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/", "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:29:02.055730159Z", + "timestamp": "2023-12-24T02:26:58.941738378Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/'", "matcher-status": true }, @@ -48419,7 +48603,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -48434,7 +48619,7 @@ "Let's Encrypt" ], "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:32:04.837162972Z", + "timestamp": "2023-12-24T02:29:58.186864081Z", "matcher-status": true }, { @@ -48448,7 +48633,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -48463,7 +48649,7 @@ "beta.gouv.fr" ], "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:32:04.837278016Z", + "timestamp": "2023-12-24T02:29:58.18698182Z", "matcher-status": true }, { @@ -48478,7 +48664,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -48493,7 +48680,7 @@ "tls12" ], "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:32:06.605437733Z", + "timestamp": "2023-12-24T02:29:59.53666998Z", "matcher-status": true }, { @@ -48508,7 +48695,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -48523,7 +48711,7 @@ "tls13" ], "ip": "5.104.101.30", - "timestamp": "2023-12-17T02:32:06.85797534Z", + "timestamp": "2023-12-24T02:29:59.735476726Z", "matcher-status": true } ], @@ -48531,7 +48719,7 @@ { "requestedUrl": "https://beta.gouv.fr/", "finalUrl": "https://beta.gouv.fr/", - "fetchTime": "2023-12-17T02:23:46.940Z", + "fetchTime": "2023-12-24T02:22:13.989Z", "runWarnings": [], "categories": { "performance": { @@ -48594,53 +48782,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1850, + "numericValue": 1882, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1548, - "firstMeaningfulPaint": 1548, - "largestContentfulPaint": 1855, - "interactive": 1850, - "speedIndex": 1896, - "totalBlockingTime": 91, - "maxPotentialFID": 141, + "firstContentfulPaint": 1656, + "firstMeaningfulPaint": 1656, + "largestContentfulPaint": 1881, + "interactive": 1882, + "speedIndex": 1990, + "totalBlockingTime": 22, + "maxPotentialFID": 94, "cumulativeLayoutShift": 0.0035968424479166663, "cumulativeLayoutShiftMainFrame": 0.0035968424479166663, "totalCumulativeLayoutShift": 0.0035968424479166663, "observedTimeOrigin": 0, - "observedTimeOriginTs": 413766790, + "observedTimeOriginTs": 399827860, "observedNavigationStart": 0, - "observedNavigationStartTs": 413766790, - "observedFirstPaint": 801, - "observedFirstPaintTs": 414567634, - "observedFirstContentfulPaint": 801, - "observedFirstContentfulPaintTs": 414567634, - "observedFirstContentfulPaintAllFrames": 801, - "observedFirstContentfulPaintAllFramesTs": 414567634, - "observedFirstMeaningfulPaint": 801, - "observedFirstMeaningfulPaintTs": 414567634, - "observedLargestContentfulPaint": 801, - "observedLargestContentfulPaintTs": 414567634, - "observedLargestContentfulPaintAllFrames": 801, - "observedLargestContentfulPaintAllFramesTs": 414567634, - "observedTraceEnd": 3508, - "observedTraceEndTs": 417274998, - "observedLoad": 1199, - "observedLoadTs": 414965783, - "observedDomContentLoaded": 853, - "observedDomContentLoadedTs": 414620069, + "observedNavigationStartTs": 399827860, + "observedFirstPaint": 672, + "observedFirstPaintTs": 400500126, + "observedFirstContentfulPaint": 672, + "observedFirstContentfulPaintTs": 400500126, + "observedFirstContentfulPaintAllFrames": 672, + "observedFirstContentfulPaintAllFramesTs": 400500126, + "observedFirstMeaningfulPaint": 672, + "observedFirstMeaningfulPaintTs": 400500126, + "observedLargestContentfulPaint": 672, + "observedLargestContentfulPaintTs": 400500126, + "observedLargestContentfulPaintAllFrames": 672, + "observedLargestContentfulPaintAllFramesTs": 400500126, + "observedTraceEnd": 3305, + "observedTraceEndTs": 403132476, + "observedLoad": 997, + "observedLoadTs": 400825230, + "observedDomContentLoaded": 707, + "observedDomContentLoadedTs": 400535138, "observedCumulativeLayoutShift": 0.0035968424479166663, "observedCumulativeLayoutShiftMainFrame": 0.0035968424479166663, "observedTotalCumulativeLayoutShift": 0.0035968424479166663, - "observedFirstVisualChange": 799, - "observedFirstVisualChangeTs": 414565790, - "observedLastVisualChange": 1149, - "observedLastVisualChangeTs": 414915790, - "observedSpeedIndex": 814, - "observedSpeedIndexTs": 414580749 + "observedFirstVisualChange": 672, + "observedFirstVisualChangeTs": 400499860, + "observedLastVisualChange": 1006, + "observedLastVisualChangeTs": 400833860, + "observedSpeedIndex": 686, + "observedSpeedIndexTs": 400513979 }, { "lcpInvalidated": false @@ -48658,23 +48846,23 @@ "type": "debugdata", "items": [ { - "numRequests": 45, + "numRequests": 46, "numScripts": 3, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1226, - "numTasksOver10ms": 2, - "numTasksOver25ms": 2, + "numTasks": 1201, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.393, - "throughput": 8852144.80592075, - "maxRtt": 103.03999999999999, - "maxServerLatency": 18.55600000000001, - "totalByteWeight": 482630, - "totalTaskTime": 212.64000000000004, - "mainDocumentTransferSize": 8220 + "rtt": 80.654, + "throughput": 14266188.910638956, + "maxRtt": 86.564, + "maxServerLatency": 67.243, + "totalByteWeight": 483144, + "totalTaskTime": 226.17000000000024, + "mainDocumentTransferSize": 8152 } ] } @@ -48772,7 +48960,7 @@ "http": { "url": "https://blog.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:27:43 GMT", + "end_time": "Sun, 24 Dec 2023 02:29:43 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -48780,16 +48968,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 02:27:42 GMT", - "ETag": "W/\"657dfe2c-669b\"", - "Last-Modified": "Sat, 16 Dec 2023 19:44:44 GMT", + "Date": "Sun, 24 Dec 2023 02:29:42 GMT", + "ETag": "W/\"6586a8a3-669b\"", + "Last-Modified": "Sat, 23 Dec 2023 09:30:11 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "53a23e94-e224-4fdf-9d57-3a79be20d4af" + "X-Request-ID": "9e3c0e54-be6c-44c6-bdaa-4ccf69ed3e02" }, - "scan_id": 45537864, + "scan_id": 45753219, "score": 40, - "start_time": "Sun, 17 Dec 2023 02:27:40 GMT", + "start_time": "Sun, 24 Dec 2023 02:29:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -48974,15 +49162,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:38:06Z", - "next_check_at": "2023-12-17T02:43:04Z", + "last_check_at": "2023-12-24T02:41:56Z", + "next_check_at": "2023-12-24T02:46:55Z", "mute_until": null, "favicon_url": "https://blog.beta.gouv.fr/assets/images/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:13:13Z", + "tested_at": "2023-12-24T02:37:01Z", "expires_at": "2024-02-18T07:36:08Z", "valid": true, "error": null @@ -48991,11 +49179,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 162, - "connection": 165, - "handshake": 147, - "response": 140, - "total": 615 + "namelookup": 124, + "connection": 122, + "handshake": 128, + "response": 123, + "total": 497 } }, "uptimeGrade": "A", @@ -49028,77 +49216,77 @@ "testssl": [ { "id": "service", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49106,7 +49294,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49114,7 +49302,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49122,7 +49310,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49130,7 +49318,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -49138,7 +49326,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -49146,497 +49334,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702780137" + "finding": "1703385062" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -49644,7 +49832,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -49653,7 +49841,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -49662,7 +49850,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -49671,7 +49859,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -49680,7 +49868,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -49688,7 +49876,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -49697,7 +49885,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -49706,7 +49894,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -49715,7 +49903,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -49724,14 +49912,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -49740,7 +49928,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -49749,7 +49937,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49758,7 +49946,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49767,7 +49955,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49776,7 +49964,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49785,7 +49973,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -49794,7 +49982,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -49803,7 +49991,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -49812,7 +50000,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -49821,315 +50009,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" @@ -50481,7 +50669,7 @@ "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -50684,7 +50872,7 @@ "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702780191" + "finding": "1703385121" }, { "id": "HSTS_time", @@ -51244,77 +51432,77 @@ }, { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51322,7 +51510,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51330,7 +51518,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51338,7 +51526,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51346,7 +51534,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51354,7 +51542,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51362,497 +51550,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702780246" + "finding": "1703385180" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -51860,7 +52048,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -51869,7 +52057,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -51878,7 +52066,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -51887,7 +52075,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -51896,7 +52084,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -51904,7 +52092,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -51913,7 +52101,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -51922,7 +52110,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -51931,7 +52119,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -51940,14 +52128,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -51956,7 +52144,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -51965,7 +52153,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51974,7 +52162,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51983,7 +52171,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -51992,7 +52180,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -52001,7 +52189,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -52010,7 +52198,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -52019,7 +52207,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -52028,7 +52216,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -52037,392 +52225,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52430,7 +52618,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52438,7 +52626,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52446,7 +52634,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52454,7 +52642,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52462,7 +52650,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52470,497 +52658,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702780300" + "finding": "1703385238" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -52968,7 +53156,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -52977,7 +53165,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -52986,7 +53174,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -52995,7 +53183,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -53004,7 +53192,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -53012,7 +53200,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -53021,7 +53209,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -53030,7 +53218,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -53039,7 +53227,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -53048,14 +53236,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -53064,7 +53252,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -53073,7 +53261,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -53082,7 +53270,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -53091,7 +53279,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -53100,7 +53288,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -53109,7 +53297,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -53118,7 +53306,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -53127,7 +53315,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -53136,7 +53324,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -53145,325 +53333,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "239" } ], "thirdparties": { @@ -53491,7 +53679,7 @@ "value": "1", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1702781895, + "expires": 1703386817, "size": 16, "httpOnly": false, "secure": false, @@ -53503,10 +53691,10 @@ }, { "name": "_pk_id.69.9a49", - "value": "480c1d958b388fe3.1702780096.", + "value": "7ec2b6ffbba4bab7.1703385018.", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1736735296, + "expires": 1737340218, "size": 42, "httpOnly": false, "secure": false, @@ -53520,16 +53708,16 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 02:28:15 GMT", - "etag": "W/\"657dfe2c-669b\"", - "last-modified": "Sat, 16 Dec 2023 19:44:44 GMT", + "date": "Sun, 24 Dec 2023 02:30:17 GMT", + "etag": "W/\"6586a8a3-669b\"", + "last-modified": "Sat, 23 Dec 2023 09:30:11 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "e756cc7d-d3ea-4b9b-a6bb-ad5eb5c0a339" + "x-request-id": "5101369a-5f95-4f98-bcf6-4772d209fa0b" }, "endpoints": [ { "hostname": "blog.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -53585,7 +53773,7 @@ }, { "hostname": "avatars3.githubusercontent.com", - "ip": "185.199.109.133", + "ip": "185.199.108.133", "geoip": { "continent": { "code": "NA", @@ -53780,7 +53968,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:27:15", + "@generated": "Sun, 24 Dec 2023 02:29:14", "site": [ { "@name": "https://blog.beta.gouv.fr", @@ -53920,73 +54108,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "blog.beta.gouv.fr.", "matched-at": "blog.beta.gouv.fr", - "timestamp": "2023-12-17T02:33:03.693948384Z", + "extracted-results": [ + "betagouv-blog.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T02:35:27.923866701Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "blog.beta.gouv.fr.", "matched-at": "blog.beta.gouv.fr", - "extracted-results": [ - "betagouv-blog.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T02:33:03.811540137Z", + "timestamp": "2023-12-24T02:35:28.017667568Z", "matcher-status": true }, { @@ -54024,8 +54212,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:14.439030251Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:35:42.418580983Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54059,8 +54247,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr/admin/index.html", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:41.32135911Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:14.992991797Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr/admin/index.html'", "matcher-status": true }, @@ -54092,12 +54280,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577156873Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.014824568Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54129,12 +54317,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577210393Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.014870604Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54166,12 +54354,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577226162Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.014887325Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54203,12 +54391,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577238065Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.014902393Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54240,12 +54428,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577250718Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.01528738Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54277,12 +54465,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577398281Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.01530899Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54318,8 +54506,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577424459Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.01532507Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54351,12 +54539,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577443475Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.015340428Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54388,12 +54576,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577461599Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.015355897Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54425,12 +54613,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:33:44.577479993Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:19.015371376Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54469,8 +54657,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:34:06.363372452Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:36:45.846469097Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: blog.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr/'", "matcher-status": true }, @@ -54485,7 +54673,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -54499,8 +54688,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:39:45.251517004Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:42:28.440517164Z", "matcher-status": true }, { @@ -54514,7 +54703,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -54528,8 +54718,8 @@ "extracted-results": [ "blog.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:39:45.251638991Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:42:28.440621789Z", "matcher-status": true }, { @@ -54544,7 +54734,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -54558,8 +54749,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:39:46.831307322Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:42:29.94230013Z", "matcher-status": true }, { @@ -54574,7 +54765,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -54588,8 +54780,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T02:39:47.007309077Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T02:42:30.156057513Z", "matcher-status": true } ], @@ -54597,7 +54789,7 @@ { "requestedUrl": "https://blog.beta.gouv.fr/", "finalUrl": "https://blog.beta.gouv.fr/", - "fetchTime": "2023-12-17T02:27:29.727Z", + "fetchTime": "2023-12-24T02:29:28.747Z", "runWarnings": [], "categories": { "performance": { @@ -54608,7 +54800,7 @@ "snapshot" ], "id": "performance", - "score": 0.7319549560546875 + "score": 0.7317941665649415 }, "accessibility": { "title": "Accessibility", @@ -54660,53 +54852,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4814, + "numericValue": 4996, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1373, - "firstMeaningfulPaint": 4814, - "largestContentfulPaint": 7797, - "interactive": 4814, - "speedIndex": 1373, - "totalBlockingTime": 66, - "maxPotentialFID": 116, - "cumulativeLayoutShift": 0.022456988440619576, - "cumulativeLayoutShiftMainFrame": 0.022456988440619576, - "totalCumulativeLayoutShift": 0.022456988440619576, + "firstContentfulPaint": 1504, + "firstMeaningfulPaint": 4996, + "largestContentfulPaint": 5494, + "interactive": 4996, + "speedIndex": 1623, + "totalBlockingTime": 51, + "maxPotentialFID": 101, + "cumulativeLayoutShift": 0.02487007098727756, + "cumulativeLayoutShiftMainFrame": 0.02487007098727756, + "totalCumulativeLayoutShift": 0.02487007098727756, "observedTimeOrigin": 0, - "observedTimeOriginTs": 201003695, + "observedTimeOriginTs": 238173407, "observedNavigationStart": 0, - "observedNavigationStartTs": 201003695, - "observedFirstPaint": 408, - "observedFirstPaintTs": 201411203, - "observedFirstContentfulPaint": 408, - "observedFirstContentfulPaintTs": 201411203, - "observedFirstContentfulPaintAllFrames": 408, - "observedFirstContentfulPaintAllFramesTs": 201411203, - "observedFirstMeaningfulPaint": 853, - "observedFirstMeaningfulPaintTs": 201857061, - "observedLargestContentfulPaint": 853, - "observedLargestContentfulPaintTs": 201857061, - "observedLargestContentfulPaintAllFrames": 853, - "observedLargestContentfulPaintAllFramesTs": 201857061, - "observedTraceEnd": 3148, - "observedTraceEndTs": 204152179, - "observedLoad": 840, - "observedLoadTs": 201844044, - "observedDomContentLoaded": 600, - "observedDomContentLoadedTs": 201603797, - "observedCumulativeLayoutShift": 0.022456988440619576, - "observedCumulativeLayoutShiftMainFrame": 0.022456988440619576, - "observedTotalCumulativeLayoutShift": 0.022456988440619576, - "observedFirstVisualChange": 388, - "observedFirstVisualChangeTs": 201391695, - "observedLastVisualChange": 904, - "observedLastVisualChangeTs": 201907695, - "observedSpeedIndex": 521, - "observedSpeedIndexTs": 201524939 + "observedNavigationStartTs": 238173407, + "observedFirstPaint": 499, + "observedFirstPaintTs": 238672398, + "observedFirstContentfulPaint": 499, + "observedFirstContentfulPaintTs": 238672398, + "observedFirstContentfulPaintAllFrames": 499, + "observedFirstContentfulPaintAllFramesTs": 238672398, + "observedFirstMeaningfulPaint": 1073, + "observedFirstMeaningfulPaintTs": 239246455, + "observedLargestContentfulPaint": 978, + "observedLargestContentfulPaintTs": 239151735, + "observedLargestContentfulPaintAllFrames": 978, + "observedLargestContentfulPaintAllFramesTs": 239151735, + "observedTraceEnd": 3374, + "observedTraceEndTs": 241547644, + "observedLoad": 1060, + "observedLoadTs": 239233717, + "observedDomContentLoaded": 760, + "observedDomContentLoadedTs": 238933040, + "observedCumulativeLayoutShift": 0.02487007098727756, + "observedCumulativeLayoutShiftMainFrame": 0.02487007098727756, + "observedTotalCumulativeLayoutShift": 0.02487007098727756, + "observedFirstVisualChange": 483, + "observedFirstVisualChangeTs": 238656407, + "observedLastVisualChange": 1117, + "observedLastVisualChangeTs": 239290407, + "observedSpeedIndex": 640, + "observedSpeedIndexTs": 238813114 }, { "lcpInvalidated": false @@ -54728,19 +54920,19 @@ "numScripts": 2, "numStylesheets": 2, "numFonts": 4, - "numTasks": 389, + "numTasks": 385, "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.492, - "throughput": 47988383.77542853, - "maxRtt": 80.94, - "maxServerLatency": 154.948, - "totalByteWeight": 2453904, - "totalTaskTime": 118.67500000000008, - "mainDocumentTransferSize": 7714 + "rtt": 1.617, + "throughput": 38086140.956517436, + "maxRtt": 103.054, + "maxServerLatency": 206.49499999999995, + "totalByteWeight": 2454747, + "totalTaskTime": 126.45400000000012, + "mainDocumentTransferSize": 7713 } ] } @@ -54804,7 +54996,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.7319549560546875, + "lighthouse_performance": 0.7317941665649415, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -54830,7 +55022,7 @@ "http": { "url": "https://camino.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:39:34 GMT", + "end_time": "Sun, 24 Dec 2023 01:44:19 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -54841,9 +55033,9 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'none'; script-src 'self' https://stats.data.gouv.fr 'sha256-quOgp+M4pH4TUco5DwHuTMyTY9AY+DOk4jkIMuGgSJs='; style-src 'self'; font-src 'self'; object-src 'self'; frame-src 'self'; connect-src 'self' sentry.incubateur.net https://stats.data.gouv.fr; img-src data: 'self' tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org tile.openstreetmap.fr a.tile.openstreetmap.fr b.tile.openstreetmap.fr c.tile.openstreetmap.fr geoservices.brgm.fr wxs.ign.fr datacarto.geoguyane.fr gisdata.cerema.fr services.data.shom.fr; base-uri 'none'; form-action 'self'; frame-ancestors 'none';", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 01:39:33 GMT", + "Date": "Sun, 24 Dec 2023 01:44:18 GMT", "Etag": "W/\"65689627-550\"", - "Expires": "Sun, 17 Dec 2023 01:39:33 GMT", + "Expires": "Sun, 24 Dec 2023 01:44:18 GMT", "Last-Modified": "Thu, 30 Nov 2023 14:03:19 GMT", "Referrer-Policy": "same-origin", "Server": "nginx/1.23.4", @@ -54853,9 +55045,9 @@ "X-Frame-Options": "DENY", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 45536913, + "scan_id": 45752403, "score": 120, - "start_time": "Sun, 17 Dec 2023 01:39:30 GMT", + "start_time": "Sun, 24 Dec 2023 01:44:15 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -54891,21 +55083,21 @@ "'self'" ], "img-src": [ - "gisdata.cerema.fr", - "c.tile.openstreetmap.org", - "geoservices.brgm.fr", - "wxs.ign.fr", - "b.tile.openstreetmap.fr", - "datacarto.geoguyane.fr", - "a.tile.openstreetmap.fr", - "services.data.shom.fr", "'self'", + "tile.openstreetmap.fr", "a.tile.openstreetmap.org", + "b.tile.openstreetmap.org", + "datacarto.geoguyane.fr", + "gisdata.cerema.fr", + "b.tile.openstreetmap.fr", + "wxs.ign.fr", "c.tile.openstreetmap.fr", - "data:", + "a.tile.openstreetmap.fr", "tile.openstreetmap.org", - "tile.openstreetmap.fr", - "b.tile.openstreetmap.org" + "geoservices.brgm.fr", + "c.tile.openstreetmap.org", + "services.data.shom.fr", + "data:" ], "object-src": [ "'self'" @@ -55104,15 +55296,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:46:02Z", - "next_check_at": "2023-12-17T02:51:00Z", + "last_check_at": "2023-12-24T02:46:57Z", + "next_check_at": "2023-12-24T02:51:55Z", "mute_until": null, "favicon_url": "https://camino.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:21:12Z", + "tested_at": "2023-12-24T02:46:58Z", "expires_at": "2024-02-06T06:08:23Z", "valid": true, "error": null @@ -55121,11 +55313,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 151, - "connection": 130, - "handshake": 152, - "response": 135, - "total": 569 + "namelookup": 142, + "connection": 142, + "handshake": 163, + "response": 150, + "total": 597 } }, "uptimeGrade": "A", @@ -55144,52 +55336,46 @@ "version": "9.2p1 Debian 2+deb12u1", "vulnerabilities": [ { - "cvss": "7.5", "id": "SSV:92579", - "is_exploit": "true", - "type": "seebug" - }, - { + "type": "seebug", "cvss": "7.5", - "id": "PRION:CVE-2023-38408", - "is_exploit": "false", - "type": "prion" + "is_exploit": "true" }, { + "id": "PRION:CVE-2023-38408", + "type": "prion", "cvss": "7.5", - "id": "PRION:CVE-2023-28531", - "is_exploit": "false", - "type": "prion" + "is_exploit": "false" }, { + "id": "PRION:CVE-2023-28531", + "type": "prion", "cvss": "7.5", - "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true", - "type": "githubexploit" + "is_exploit": "false" }, { + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "type": "githubexploit", "cvss": "7.5", - "id": "CVE-2023-28531", - "is_exploit": "false", - "type": "cve" + "is_exploit": "true" }, { - "cvss": "7.5", "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "cvss": "7.5", + "is_exploit": "true" }, { - "cvss": "7.5", "id": "1337DAY-ID-26576", - "is_exploit": "true", - "type": "zdt" + "type": "zdt", + "cvss": "7.5", + "is_exploit": "true" }, { - "cvss": "0.0", "id": "PACKETSTORM:140261", - "is_exploit": "true", - "type": "packetstorm" + "type": "packetstorm", + "cvss": "0.0", + "is_exploit": "true" } ] } @@ -55598,7 +55784,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "OK", - "finding": "51 >= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", @@ -55808,7 +55994,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "1702780874" + "finding": "1703385725" }, { "id": "HSTS_time", @@ -56420,7 +56606,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "59" } ], "thirdparties": { @@ -56481,9 +56667,9 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'none'; script-src 'self' https://stats.data.gouv.fr 'sha256-quOgp+M4pH4TUco5DwHuTMyTY9AY+DOk4jkIMuGgSJs='; style-src 'self'; font-src 'self'; object-src 'self'; frame-src 'self'; connect-src 'self' sentry.incubateur.net https://stats.data.gouv.fr; img-src data: 'self' tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org tile.openstreetmap.fr a.tile.openstreetmap.fr b.tile.openstreetmap.fr c.tile.openstreetmap.fr geoservices.brgm.fr wxs.ign.fr datacarto.geoguyane.fr gisdata.cerema.fr services.data.shom.fr; base-uri 'none'; form-action 'self'; frame-ancestors 'none';", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 02:40:13 GMT", + "date": "Sun, 24 Dec 2023 02:41:06 GMT", "etag": "W/\"65689627-550\"", - "expires": "Sun, 17 Dec 2023 02:40:13 GMT", + "expires": "Sun, 24 Dec 2023 02:41:06 GMT", "last-modified": "Thu, 30 Nov 2023 14:03:19 GMT", "referrer-policy": "same-origin", "server": "nginx/1.23.4", @@ -56861,7 +57047,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:39:32", + "@generated": "Sun, 24 Dec 2023 02:40:25", "site": [ { "@name": "https://camino.beta.gouv.fr", @@ -56979,46 +57165,6 @@ ] }, "nuclei": [ - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "camino.beta.gouv.fr.", - "matched-at": "camino.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-17T02:42:21.578616948Z", - "matcher-status": true - }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -57051,24 +57197,28 @@ "type": "dns", "host": "camino.beta.gouv.fr.", "matched-at": "camino.beta.gouv.fr", - "timestamp": "2023-12-17T02:42:21.585396582Z", + "timestamp": "2023-12-24T02:43:14.778119259Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -57084,10 +57234,10 @@ "host": "camino.beta.gouv.fr.", "matched-at": "camino.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T02:42:21.657914116Z", + "timestamp": "2023-12-24T02:43:14.86164663Z", "matcher-status": true }, { @@ -57126,7 +57276,43 @@ "\"google-site-verification=FOPR91m7L5qsKnQmfVh7JgGByfygT-tYvzY7ZDPtSSg\"", "\"v=spf1 include:_spf.mailjet.com include:_spf.alwaysdata.com ?all\"" ], - "timestamp": "2023-12-17T02:42:21.736327107Z", + "timestamp": "2023-12-24T02:43:15.776418864Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "camino.beta.gouv.fr.", + "matched-at": "camino.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2023-12-24T02:43:16.17014581Z", "matcher-status": true }, { @@ -57166,7 +57352,7 @@ "1; mode=block" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:42:33.578144853Z", + "timestamp": "2023-12-24T02:43:26.769259755Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57198,7 +57384,7 @@ "nginx/1.23.4" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:42:33.58109654Z", + "timestamp": "2023-12-24T02:43:26.77237515Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57225,7 +57411,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:42:56.549795324Z", + "timestamp": "2023-12-24T02:43:50.106456148Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57257,12 +57443,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.561920022Z", + "timestamp": "2023-12-24T02:43:58.998527563Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57294,12 +57480,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.561971487Z", + "timestamp": "2023-12-24T02:43:58.998574721Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57331,12 +57517,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.561985133Z", + "timestamp": "2023-12-24T02:43:58.998593396Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57368,12 +57554,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.562002906Z", + "timestamp": "2023-12-24T02:43:58.998610077Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57405,12 +57591,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.562017513Z", + "timestamp": "2023-12-24T02:43:58.998624484Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57442,12 +57628,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:05.562033142Z", + "timestamp": "2023-12-24T02:43:58.998640133Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57475,7 +57661,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr/robots.txt", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:15.129028163Z", + "timestamp": "2023-12-24T02:44:08.669035545Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -57515,7 +57701,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr/", "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:28.032616863Z", + "timestamp": "2023-12-24T02:44:21.755262879Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: camino.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr/'", "matcher-status": true }, @@ -57565,7 +57751,7 @@ "SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u1" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:48.432344453Z", + "timestamp": "2023-12-24T02:44:41.994251087Z", "matcher-status": true }, { @@ -57579,7 +57765,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -57594,7 +57781,7 @@ "Let's Encrypt" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:50.094272005Z", + "timestamp": "2023-12-24T02:44:43.707293889Z", "matcher-status": true }, { @@ -57608,7 +57795,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -57623,7 +57811,7 @@ "camino.beta.gouv.fr" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:50.094371049Z", + "timestamp": "2023-12-24T02:44:43.707404706Z", "matcher-status": true }, { @@ -57638,7 +57826,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -57653,7 +57842,7 @@ "tls12" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:51.702227421Z", + "timestamp": "2023-12-24T02:44:45.957981997Z", "matcher-status": true }, { @@ -57668,7 +57857,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -57683,7 +57873,7 @@ "tls13" ], "ip": "91.134.91.128", - "timestamp": "2023-12-17T02:43:51.921490259Z", + "timestamp": "2023-12-24T02:44:46.168070675Z", "matcher-status": true } ], @@ -57691,7 +57881,7 @@ { "requestedUrl": "https://camino.beta.gouv.fr/", "finalUrl": "https://camino.beta.gouv.fr/", - "fetchTime": "2023-12-17T02:39:46.927Z", + "fetchTime": "2023-12-24T02:40:39.731Z", "runWarnings": [], "categories": { "performance": { @@ -57702,7 +57892,7 @@ "snapshot" ], "id": "performance", - "score": 0.9387981414794921 + "score": 0.9386659622192383 }, "accessibility": { "title": "Accessibility", @@ -57754,53 +57944,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8105, + "numericValue": 8618, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3995, - "firstMeaningfulPaint": 4072, - "largestContentfulPaint": 7992, - "interactive": 8105, - "speedIndex": 6061, - "totalBlockingTime": 1067, - "maxPotentialFID": 1327, + "firstContentfulPaint": 4105, + "firstMeaningfulPaint": 4181, + "largestContentfulPaint": 8125, + "interactive": 8618, + "speedIndex": 6335, + "totalBlockingTime": 1101, + "maxPotentialFID": 1350, "cumulativeLayoutShift": 0.6660446853637696, "cumulativeLayoutShiftMainFrame": 0.6660446853637696, "totalCumulativeLayoutShift": 0.6660446853637696, "observedTimeOrigin": 0, - "observedTimeOriginTs": 324632623, + "observedTimeOriginTs": 303410603, "observedNavigationStart": 0, - "observedNavigationStartTs": 324632623, - "observedFirstPaint": 560, - "observedFirstPaintTs": 325192320, - "observedFirstContentfulPaint": 1335, - "observedFirstContentfulPaintTs": 325967847, - "observedFirstContentfulPaintAllFrames": 1335, - "observedFirstContentfulPaintAllFramesTs": 325967847, - "observedFirstMeaningfulPaint": 1335, - "observedFirstMeaningfulPaintTs": 325967847, - "observedLargestContentfulPaint": 1977, - "observedLargestContentfulPaintTs": 326609716, - "observedLargestContentfulPaintAllFrames": 1977, - "observedLargestContentfulPaintAllFramesTs": 326609716, - "observedTraceEnd": 4952, - "observedTraceEndTs": 329584471, - "observedLoad": 1969, - "observedLoadTs": 326601816, - "observedDomContentLoaded": 814, - "observedDomContentLoadedTs": 325447030, + "observedNavigationStartTs": 303410603, + "observedFirstPaint": 476, + "observedFirstPaintTs": 303886875, + "observedFirstContentfulPaint": 1310, + "observedFirstContentfulPaintTs": 304720163, + "observedFirstContentfulPaintAllFrames": 1310, + "observedFirstContentfulPaintAllFramesTs": 304720163, + "observedFirstMeaningfulPaint": 1310, + "observedFirstMeaningfulPaintTs": 304720163, + "observedLargestContentfulPaint": 2016, + "observedLargestContentfulPaintTs": 305426754, + "observedLargestContentfulPaintAllFrames": 2016, + "observedLargestContentfulPaintAllFramesTs": 305426754, + "observedTraceEnd": 5015, + "observedTraceEndTs": 308425391, + "observedLoad": 1998, + "observedLoadTs": 305408929, + "observedDomContentLoaded": 816, + "observedDomContentLoadedTs": 304226869, "observedCumulativeLayoutShift": 0.6660446853637696, "observedCumulativeLayoutShiftMainFrame": 0.6660446853637696, "observedTotalCumulativeLayoutShift": 0.6660446853637696, - "observedFirstVisualChange": 1337, - "observedFirstVisualChangeTs": 325969623, - "observedLastVisualChange": 2670, - "observedLastVisualChangeTs": 327302623, - "observedSpeedIndex": 1851, - "observedSpeedIndexTs": 326484107 + "observedFirstVisualChange": 1310, + "observedFirstVisualChangeTs": 304720603, + "observedLastVisualChange": 2743, + "observedLastVisualChangeTs": 306153603, + "observedSpeedIndex": 1865, + "observedSpeedIndexTs": 305275289 }, { "lcpInvalidated": false @@ -57822,18 +58012,18 @@ "numScripts": 4, "numStylesheets": 2, "numFonts": 4, - "numTasks": 1074, - "numTasksOver10ms": 11, + "numTasks": 1065, + "numTasksOver10ms": 13, "numTasksOver25ms": 7, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver50ms": 4, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 81.04799999999999, - "throughput": 15919086.171591941, - "maxRtt": 87.869, - "maxServerLatency": 82.60699999999999, - "totalByteWeight": 1369450, - "totalTaskTime": 864.8549999999984, + "rtt": 80.949, + "throughput": 15399236.069227753, + "maxRtt": 82.931, + "maxServerLatency": 82.39500000000002, + "totalByteWeight": 1370143, + "totalTaskTime": 937.9039999999973, "mainDocumentTransferSize": 1585 } ] @@ -57943,7 +58133,7 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 12, - "lighthouse_performance": 0.9387981414794921, + "lighthouse_performance": 0.9386659622192383, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -57969,7 +58159,7 @@ "http": { "url": "https://carbure.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:54:56 GMT", + "end_time": "Sun, 24 Dec 2023 01:57:59 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -57981,19 +58171,19 @@ "Content-Security-Policy": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr", "Content-Type": "text/html; charset=\"utf-8\"", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:54:55 GMT", - "ETag": "\"657c2985-2bb\"", - "Last-Modified": "Fri, 15 Dec 2023 11:25:09 GMT", + "Date": "Sun, 24 Dec 2023 01:57:58 GMT", + "ETag": "\"6583f853-2bb\"", + "Last-Modified": "Thu, 21 Dec 2023 09:33:23 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "becbe5c1-3423-4b40-92f8-e0a40e925eb7" + "X-Request-ID": "bf7358ec-9d56-4b27-a4d4-83da8a5e9797" }, - "scan_id": 45537114, + "scan_id": 45752599, "score": 110, - "start_time": "Sun, 17 Dec 2023 01:54:52 GMT", + "start_time": "Sun, 24 Dec 2023 01:57:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -58006,8 +58196,8 @@ "output": { "data": { "default-src": [ - "stats.beta.gouv.fr", "'self'", + "stats.beta.gouv.fr", "metabase.carbure.beta.gouv.fr" ] }, @@ -58196,15 +58386,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T02:52:09Z", - "next_check_at": "2023-12-17T02:57:07Z", + "last_check_at": "2023-12-24T02:49:14Z", + "next_check_at": "2023-12-24T02:54:11Z", "mute_until": null, "favicon_url": "https://carbure.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:27:16Z", + "tested_at": "2023-12-24T02:49:15Z", "expires_at": "2024-02-09T12:21:09Z", "valid": true, "error": null @@ -58213,11 +58403,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 213, - "connection": 125, - "handshake": 130, - "response": 128, - "total": 597 + "namelookup": 171, + "connection": 141, + "handshake": 149, + "response": 154, + "total": 615 } }, "uptimeGrade": "B", @@ -58595,7 +58785,7 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", @@ -58756,7 +58946,7 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702781098" + "finding": "1703385804" }, { "id": "HSTS_time", @@ -59542,7 +59732,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -59689,7 +59879,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", @@ -59850,7 +60040,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702781196" + "finding": "1703385861" }, { "id": "HSTS_time", @@ -60441,12 +60631,28 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "200" + "finding": "119" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "csrftoken", + "value": "wfv7c7NJZa0QppFfKhc7o0SWS58rkeCn", + "domain": "carbure.beta.gouv.fr", + "path": "/", + "expires": 1734835338.418372, + "size": 41, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "Strict", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "cache-control": "max-age=60, public", "content-encoding": "gzip", @@ -60454,21 +60660,30 @@ "content-security-policy": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr", "content-type": "text/html; charset=\"utf-8\"", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 02:43:20 GMT", - "etag": "\"657c2985-2bb\"", - "last-modified": "Fri, 15 Dec 2023 11:25:09 GMT", + "date": "Sun, 24 Dec 2023 02:42:17 GMT", + "etag": "\"6583f853-2bb\"", + "last-modified": "Thu, 21 Dec 2023 09:33:23 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "5c83ddb8-4cbb-44b9-832b-1ef0257bab2f" + "x-request-id": "e025ed4b-6909-4a1a-8f54-5ddda8215478" }, "endpoints": [ { "hostname": "carbure.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -60500,10 +60715,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -60518,7 +60736,28 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } } ] @@ -60665,7 +60904,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:42:37", + "@generated": "Sun, 24 Dec 2023 02:41:35", "site": [ { "@name": "https://carbure.beta.gouv.fr", @@ -60756,58 +60995,22 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "carbure.beta.gouv.fr.", - "matched-at": "carbure.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T02:48:27.035602606Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -60823,11 +61026,7 @@ "type": "dns", "host": "carbure.beta.gouv.fr.", "matched-at": "carbure.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"Sendinblue-code:07db1fc27102305f5a6e93cc26fc4775\"" - ], - "timestamp": "2023-12-17T02:48:27.035914178Z", + "timestamp": "2023-12-24T02:45:51.296045722Z", "matcher-status": true }, { @@ -60867,7 +61066,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T02:48:27.315158319Z", + "timestamp": "2023-12-24T02:45:51.334060309Z", "matcher-status": true }, { @@ -60904,30 +61103,66 @@ "host": "carbure.beta.gouv.fr.", "matched-at": "carbure.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T02:48:28.034867593Z", + "timestamp": "2023-12-24T02:45:52.248239474Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "carbure.beta.gouv.fr.", + "matched-at": "carbure.beta.gouv.fr", + "extracted-results": [ + "\"Sendinblue-code:07db1fc27102305f5a6e93cc26fc4775\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + ], + "timestamp": "2023-12-24T02:45:52.320622031Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -60942,7 +61177,11 @@ "type": "dns", "host": "carbure.beta.gouv.fr.", "matched-at": "carbure.beta.gouv.fr", - "timestamp": "2023-12-17T02:48:28.036013111Z", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2023-12-24T02:45:53.334824555Z", "matcher-status": true }, { @@ -60971,7 +61210,7 @@ "GET, HEAD" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:48:38.685973441Z", + "timestamp": "2023-12-24T02:45:59.486079838Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -60998,7 +61237,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:23.465237699Z", + "timestamp": "2023-12-24T02:46:31.317710461Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61035,7 +61274,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:38.823311139Z", + "timestamp": "2023-12-24T02:46:41.890854526Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61072,7 +61311,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:38.82337082Z", + "timestamp": "2023-12-24T02:46:41.890902245Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61109,7 +61348,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:38.823404062Z", + "timestamp": "2023-12-24T02:46:41.890917694Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61146,7 +61385,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:38.823420443Z", + "timestamp": "2023-12-24T02:46:41.890933814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61183,7 +61422,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:38.8234757Z", + "timestamp": "2023-12-24T02:46:41.89094801Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61211,7 +61450,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr/robots.txt", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:49:55.368456427Z", + "timestamp": "2023-12-24T02:46:53.374145256Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -61251,7 +61490,7 @@ "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr/", "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:50:17.336803272Z", + "timestamp": "2023-12-24T02:47:08.618256143Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: carbure.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr/'", "matcher-status": true }, @@ -61266,7 +61505,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -61281,7 +61521,7 @@ "Let's Encrypt" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:53:29.940867793Z", + "timestamp": "2023-12-24T02:50:11.508146552Z", "matcher-status": true }, { @@ -61295,7 +61535,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -61310,7 +61551,7 @@ "carbure.beta.gouv.fr" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:53:29.940984421Z", + "timestamp": "2023-12-24T02:50:11.50827404Z", "matcher-status": true }, { @@ -61325,7 +61566,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -61340,7 +61582,7 @@ "tls12" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:53:32.865809961Z", + "timestamp": "2023-12-24T02:50:13.469913733Z", "matcher-status": true }, { @@ -61355,7 +61597,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -61370,7 +61613,7 @@ "tls13" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T02:53:33.181573566Z", + "timestamp": "2023-12-24T02:50:13.686154858Z", "matcher-status": true } ], @@ -61378,7 +61621,7 @@ { "requestedUrl": "https://carbure.beta.gouv.fr/", "finalUrl": "https://carbure.beta.gouv.fr/", - "fetchTime": "2023-12-17T02:42:52.537Z", + "fetchTime": "2023-12-24T02:41:49.039Z", "runWarnings": [], "categories": { "performance": { @@ -61441,53 +61684,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 768, + "numericValue": 1514, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 768, - "firstMeaningfulPaint": 768, - "largestContentfulPaint": 3344, - "interactive": 768, - "speedIndex": 2417, + "firstContentfulPaint": 764, + "firstMeaningfulPaint": 1514, + "largestContentfulPaint": 3464, + "interactive": 1514, + "speedIndex": 1813, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.1100960144466824, - "cumulativeLayoutShiftMainFrame": 0.1100960144466824, - "totalCumulativeLayoutShift": 0.1100960144466824, + "cumulativeLayoutShift": 0.10860371843973796, + "cumulativeLayoutShiftMainFrame": 0.10860371843973796, + "totalCumulativeLayoutShift": 0.10860371843973796, "observedTimeOrigin": 0, - "observedTimeOriginTs": 236282848, + "observedTimeOriginTs": 201630230, "observedNavigationStart": 0, - "observedNavigationStartTs": 236282848, - "observedFirstPaint": 190, - "observedFirstPaintTs": 236473310, - "observedFirstContentfulPaint": 832, - "observedFirstContentfulPaintTs": 237115122, - "observedFirstContentfulPaintAllFrames": 832, - "observedFirstContentfulPaintAllFramesTs": 237115122, - "observedFirstMeaningfulPaint": 1535, - "observedFirstMeaningfulPaintTs": 237817897, - "observedLargestContentfulPaint": 1225, - "observedLargestContentfulPaintTs": 237507672, - "observedLargestContentfulPaintAllFrames": 1225, - "observedLargestContentfulPaintAllFramesTs": 237507672, - "observedTraceEnd": 4078, - "observedTraceEndTs": 240360843, - "observedLoad": 1756, - "observedLoadTs": 238038744, + "observedNavigationStartTs": 201630230, + "observedFirstPaint": 123, + "observedFirstPaintTs": 201752924, + "observedFirstContentfulPaint": 485, + "observedFirstContentfulPaintTs": 202115059, + "observedFirstContentfulPaintAllFrames": 485, + "observedFirstContentfulPaintAllFramesTs": 202115059, + "observedFirstMeaningfulPaint": 1341, + "observedFirstMeaningfulPaintTs": 202970834, + "observedLargestContentfulPaint": 742, + "observedLargestContentfulPaintTs": 202371828, + "observedLargestContentfulPaintAllFrames": 742, + "observedLargestContentfulPaintAllFramesTs": 202371828, + "observedTraceEnd": 3643, + "observedTraceEndTs": 205273571, + "observedLoad": 1327, + "observedLoadTs": 202957203, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 236283398, - "observedCumulativeLayoutShift": 0.1100960144466824, - "observedCumulativeLayoutShiftMainFrame": 0.1100960144466824, - "observedTotalCumulativeLayoutShift": 0.1100960144466824, - "observedFirstVisualChange": 1057, - "observedFirstVisualChangeTs": 237339848, - "observedLastVisualChange": 1807, - "observedLastVisualChangeTs": 238089848, - "observedSpeedIndex": 1548, - "observedSpeedIndexTs": 237831153 + "observedDomContentLoadedTs": 201630884, + "observedCumulativeLayoutShift": 0.10860371843973796, + "observedCumulativeLayoutShiftMainFrame": 0.10860371843973796, + "observedTotalCumulativeLayoutShift": 0.10860371843973796, + "observedFirstVisualChange": 678, + "observedFirstVisualChangeTs": 202308230, + "observedLastVisualChange": 1361, + "observedLastVisualChangeTs": 202991230, + "observedSpeedIndex": 1119, + "observedSpeedIndexTs": 202749056 }, { "lcpInvalidated": false @@ -61509,19 +61752,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 16, + "numTasks": 28, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.71699999999998, - "throughput": 5970828.08447402, - "maxRtt": 150.202, - "maxServerLatency": 13.887, - "totalByteWeight": 795296, - "totalTaskTime": 2.22, - "mainDocumentTransferSize": 821 + "rtt": 101.389, + "throughput": 12108252.030201517, + "maxRtt": 104.858, + "maxServerLatency": 13.729, + "totalByteWeight": 796620, + "totalTaskTime": 4.529999999999999, + "mainDocumentTransferSize": 822 } ] } @@ -61619,8 +61862,8 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-02-09T12:21:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, "lighthouse_performance": 1, @@ -61656,30 +61899,30 @@ "http": { "url": "https://cartobio.agencebio.org", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:51:14 GMT", + "end_time": "Sun, 24 Dec 2023 02:54:16 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "836bdcef88df67b5-SJC", + "CF-RAY": "83a58eff4e48ce34-SJC", "Cache-Control": "no-cache", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:51:13 GMT", + "Date": "Sun, 24 Dec 2023 02:54:15 GMT", "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8ugJufrHUkegSQMg0kGtdyEV%2FWmH08CZVtel06ae4m7tkamyNVDnQVhJ%2BaSAbf6nZ4eBXapME7rxa1mObzmpL1ZDOwmH%2BrjNJon60OZ%2FsQaUvkN%2Be%2Bvte4cgiu9htLKDhFSHkdDZluMQE28Cvl91%2BEU6P1C8\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=7LkQS3wlQw5v8WirlKZWKLkpef9es%2FxGch272uEK0Krhyw33BW7pgBxolSWIW1mN25GXDORzCsQF26MA0pkKTmfZWKvWaXRrBvdqdaHWlklhYB20ouSlOH0TC2eRQI7gv0HOYORib7RYgOz0xecAI32107%2BD\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Fri, 15 Dec 2023 10:22:52 GMT", + "last-modified": "Tue, 19 Dec 2023 09:01:57 GMT", "vary": "Accept-Encoding" }, - "scan_id": 45538342, + "scan_id": 45753821, "score": 20, - "start_time": "Sun, 17 Dec 2023 02:51:11 GMT", + "start_time": "Sun, 24 Dec 2023 02:54:13 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -61891,77 +62134,77 @@ "testssl": [ { "id": "service", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -61969,7 +62212,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -61977,7 +62220,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -61985,7 +62228,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -61993,7 +62236,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -62001,7 +62244,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -62009,525 +62252,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFjDCCA3SgAwIBAgINAgO8UKMnU/CRgCLt8TANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjAwODEzMDAwMDQyWhcNMjcwOTMwMDAwMDQyWjBGMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzETMBEGA1UEAxMKR1RTIENBIDFQNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALOC8CSMvy2Hr7LZp676yrpE1ls+/rL3smUW3N4Q6E8tEFhaKIaHoe5qs6DZdU9/oVIBi1WoSlsGSMg2EiWrifnyI1+dYGX5XNq+OuhcbX2c0IQYhTDNTpvsPNiz4ZbU88ULZduPsHTL9h7zePGslcXdc8MxiIGvdKpv/QzjBZXwxRBPZWP6oK/GGD3Fod+XedcFibMwsHSuPZIQa4wVd90LBFf7gQPd6iI01eVWsvDEjUGxwwLbYuyA0P921IbkBBq2tgwrYnF92a/Z8V76wB7KoBlcVfCA0SoMB4aQnzXjKCtb7yPIox2kozru/oPcgkwlsE3FUa2em9NbhMIaWukCAwEAAaOCAXYwggFyMA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQU1fyeDd8eyt0Il5duK8VfxSv17LgwHwYDVR0jBBgwFoAU5K8rJnEaK0gnhS9SZizv8IkTcT4waAYIKwYBBQUHAQEEXDBaMCYGCCsGAQUFBzABhhpodHRwOi8vb2NzcC5wa2kuZ29vZy9ndHNyMTAwBggrBgEFBQcwAoYkaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzcjEuZGVyMDQGA1UdHwQtMCswKaAnoCWGI2h0dHA6Ly9jcmwucGtpLmdvb2cvZ3RzcjEvZ3RzcjEuY3JsME0GA1UdIARGMEQwOAYKKwYBBAHWeQIFAzAqMCgGCCsGAQUFBwIBFhxodHRwczovL3BraS5nb29nL3JlcG9zaXRvcnkvMAgGBmeBDAECATANBgkqhkiG9w0BAQsFAAOCAgEAbGMn7iPf5VJoTYFmkYXffWXlWzcxCCayB12avrHKAbmtv5139lEd15jFC0mhe6HX02jlRA+LujbdQoJ30o3d9T/768gHmJPuWtC1Pd5LHC2MTex+jHv+TkD98LSzWQIQUVzjwCv9twZIUX4JXj8P3Kf+l+d5xQ5EiXjFaVkpoJo6SDYpppSTVS24R7XplrWfB82mqz4yisCGg8XBQcifLzWODcAHeuGsyWW1y4qn3XHYYWU5hKwyPvd6NvFWn1epQW1akKfbOup1gAxjC2l0bwdMFfM3KKUZpG719iDNY7J+xCsJdYna0Twuck82GqGeRNDNm6YjCD+XoaeeWqX3CZStXXZdKFbRGmZRUQd73j2wyO8weiQtvrizhvZL9/C1T//Oxvn2PyonCA8JPiNax+NCLXo25D2YlmA5mOrR22Mq63gJsU4hs463zj6S8ZVcpDnQwCvIUxX10i+CzQZ0Z5mQdzcKly3FHB700FvpFePqAgnIE9cTcGW/+4ibWiW+dwnhp2pOEXW5Hk3xABtqZnmOw27YbaIiom0F+yzy8VDloNHYnzV9/HCrWSoC8b6w0/H4zRK5aiWQW+OFIOb12stAHBk0IANhd7p/SA9JCynr52Fkx2PRR+sc4e6URu85c8zuTyuN3PtYp7NlIJmVuftVb9eWbpQ99HqSjmMd320=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "1702781561" + "finding": "1703386545" }, { "id": "HSTS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -62535,7 +62778,7 @@ }, { "id": "heartbleed", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -62544,7 +62787,7 @@ }, { "id": "CCS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -62553,7 +62796,7 @@ }, { "id": "ticketbleed", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -62562,7 +62805,7 @@ }, { "id": "ROBOT", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -62571,7 +62814,7 @@ }, { "id": "secure_renego", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -62579,7 +62822,7 @@ }, { "id": "secure_client_renego", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -62588,7 +62831,7 @@ }, { "id": "CRIME_TLS", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -62597,7 +62840,7 @@ }, { "id": "BREACH", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -62606,7 +62849,7 @@ }, { "id": "POODLE_SSL", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -62615,14 +62858,14 @@ }, { "id": "fallback_SCSV", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -62631,7 +62874,7 @@ }, { "id": "FREAK", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -62640,7 +62883,7 @@ }, { "id": "DROWN", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -62649,7 +62892,7 @@ }, { "id": "DROWN_hint", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -62658,7 +62901,7 @@ }, { "id": "LOGJAM", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -62667,7 +62910,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -62676,7 +62919,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -62685,7 +62928,7 @@ }, { "id": "BEAST", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -62694,7 +62937,7 @@ }, { "id": "LUCKY13", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -62703,7 +62946,7 @@ }, { "id": "winshock", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -62712,7 +62955,7 @@ }, { "id": "RC4", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -62721,413 +62964,413 @@ }, { "id": "clientsimulation-android_60", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "cartobio.agencebio.org/104.21.16.54", + "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63135,7 +63378,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63143,7 +63386,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63151,7 +63394,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -63159,7 +63402,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -63167,7 +63410,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -63175,525 +63418,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "1702781623" + "finding": "1703386605" }, { "id": "HSTS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -63701,7 +63944,7 @@ }, { "id": "heartbleed", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -63710,7 +63953,7 @@ }, { "id": "CCS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -63719,7 +63962,7 @@ }, { "id": "ticketbleed", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -63728,7 +63971,7 @@ }, { "id": "ROBOT", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -63737,7 +63980,7 @@ }, { "id": "secure_renego", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -63745,7 +63988,7 @@ }, { "id": "secure_client_renego", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -63754,7 +63997,7 @@ }, { "id": "CRIME_TLS", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -63763,7 +64006,7 @@ }, { "id": "BREACH", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -63772,7 +64015,7 @@ }, { "id": "POODLE_SSL", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -63781,14 +64024,14 @@ }, { "id": "fallback_SCSV", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -63797,7 +64040,7 @@ }, { "id": "FREAK", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -63806,7 +64049,7 @@ }, { "id": "DROWN", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -63815,7 +64058,7 @@ }, { "id": "DROWN_hint", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -63824,7 +64067,7 @@ }, { "id": "LOGJAM", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -63833,7 +64076,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -63842,7 +64085,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -63851,7 +64094,7 @@ }, { "id": "BEAST", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -63860,7 +64103,7 @@ }, { "id": "LUCKY13", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -63869,7 +64112,7 @@ }, { "id": "winshock", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -63878,7 +64121,7 @@ }, { "id": "RC4", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -63887,350 +64130,354 @@ }, { "id": "clientsimulation-android_60", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "cartobio.agencebio.org/172.67.210.31", + "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "125" + "finding": "122" } ], "thirdparties": { "trackers": [ + { + "type": "unknown", + "url": "https://sentry.incubateur.net/api/90/envelope/?sentry_key=2e5de9895ddd4a18bb8865f0ddae39e3&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.86.0" + }, { "type": "unknown", "url": "https://sentry.incubateur.net/api/90/envelope/?sentry_key=2e5de9895ddd4a18bb8865f0ddae39e3&sentry_version=7&sentry_client=sentry.javascript.vue%2F7.86.0" @@ -64242,7 +64489,7 @@ "value": "1", "domain": "cartobio.agencebio.org", "path": "/", - "expires": 1702783309, + "expires": 1703388291, "size": 16, "httpOnly": false, "secure": false, @@ -64254,10 +64501,10 @@ }, { "name": "_pk_id.58.3e0d", - "value": "28561a289461ce30.1702781509.", + "value": "9c2fdc84a9fd5f73.1703386492.", "domain": "cartobio.agencebio.org", "path": "/", - "expires": 1736736709, + "expires": 1737341692, "size": 42, "httpOnly": false, "secure": false, @@ -64272,14 +64519,14 @@ "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "no-cache", "cf-cache-status": "DYNAMIC", - "cf-ray": "836bddcbdfc26360-ORD", + "cf-ray": "83a58fdc5aca2276-ORD", "content-encoding": "br", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 02:51:48 GMT", + "date": "Sun, 24 Dec 2023 02:54:50 GMT", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Fri, 15 Dec 2023 10:22:52 GMT", + "last-modified": "Tue, 19 Dec 2023 09:01:57 GMT", "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=AZzej67cHaGmZlBo%2B%2B2i3mcX4ggDLfi%2F%2FuQ%2B0eiOeiMvebyVc11nhbGfTGxRaPDKIhbwoZQIl6r9DSVyIOmEb2B3ja3I1JFgtCBdHxN%2FGMcgJ2aRunR3KwOALQSpAen48lyYV%2FdmI0S9\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=QSkwFlPImj2TchEqcTuVib8z32JK1TfoAiiqahhu4KqPDfxQUH%2BSeY6EvtuaN0HHdgZhpbOhTnceahMJtiSUj6%2Fx%2FW7SXJbQAQDce%2BXOOaGpgiTNJdvAusiXbaWyvu9Le1z5Ec4mNozu\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "server": "cloudflare", "vary": "Accept-Encoding" }, @@ -64585,7 +64832,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:50:45", + "@generated": "Sun, 24 Dec 2023 02:53:47", "site": [ { "@name": "https://cartobio.agencebio.org", @@ -64791,7 +65038,7 @@ "type": "dns", "host": "cartobio.agencebio.org.", "matched-at": "cartobio.agencebio.org", - "timestamp": "2023-12-17T02:55:21.490008031Z", + "timestamp": "2023-12-24T02:58:23.358573647Z", "matcher-status": true }, { @@ -64817,7 +65064,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:46.855930736Z", + "timestamp": "2023-12-24T02:58:48.746173317Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64849,12 +65096,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655447836Z", + "timestamp": "2023-12-24T02:58:54.908377675Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64886,12 +65133,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655494413Z", + "timestamp": "2023-12-24T02:58:54.908420966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64923,12 +65170,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655509852Z", + "timestamp": "2023-12-24T02:58:54.908432026Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64960,12 +65207,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655523608Z", + "timestamp": "2023-12-24T02:58:54.908443287Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64997,12 +65244,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655535991Z", + "timestamp": "2023-12-24T02:58:54.908459388Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65034,12 +65281,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655547562Z", + "timestamp": "2023-12-24T02:58:54.908472432Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65071,12 +65318,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655559435Z", + "timestamp": "2023-12-24T02:58:54.908481178Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65108,12 +65355,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.65557276Z", + "timestamp": "2023-12-24T02:58:54.908491528Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65145,12 +65392,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655585193Z", + "timestamp": "2023-12-24T02:58:54.908539968Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65182,12 +65429,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655597295Z", + "timestamp": "2023-12-24T02:58:54.908557892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65219,12 +65466,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:55:52.655608867Z", + "timestamp": "2023-12-24T02:58:54.908571247Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65263,7 +65510,7 @@ "path": "images/" }, "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:56:04.597127737Z", + "timestamp": "2023-12-24T02:59:06.82654366Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/favicon.ico'", "matcher-status": true }, @@ -65303,7 +65550,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org/", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:56:06.533412841Z", + "timestamp": "2023-12-24T02:59:08.782004279Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cartobio.agencebio.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/'", "matcher-status": true }, @@ -65343,53 +65590,56 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org/", "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:56:06.533458767Z", + "timestamp": "2023-12-24T02:59:08.782040216Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cartobio.agencebio.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "TLS Version - Detect", "author": [ - "lingtren" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "Google Trust Services LLC" + "tls10" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.415552458Z", + "timestamp": "2023-12-24T03:02:02.763013802Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -65399,111 +65649,112 @@ "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "agencebio.org", - "*.agencebio.org" + "Google Trust Services LLC" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.41569847Z", + "timestamp": "2023-12-24T03:02:02.763504278Z", "matcher-status": true }, { - "template": "ssl/wildcard-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/wildcard-tls", - "template-id": "wildcard-tls", - "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", "info": { - "name": "Wildcard TLS Certificate", + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", "author": [ - "lucky0x0d" + "righettod", + "forgedhallpass" ], "tags": [ "ssl", - "wildcard", "tls" ], - "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" + "https://ssl-config.mozilla.org/#config=intermediate" ], "severity": "info", "metadata": { - "max-request": 1 - } + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" }, "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "CN: agencebio.org", - " SAN: [agencebio.org *.agencebio.org]" + "tls10" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.41575697Z", + "timestamp": "2023-12-24T03:02:02.763631899Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "tls10" + "agencebio.org", + "*.agencebio.org" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.416261628Z", + "timestamp": "2023-12-24T03:02:02.763826614Z", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/wildcard-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/wildcard-tls", + "template-id": "wildcard-tls", + "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "Wildcard TLS Certificate", "author": [ - "righettod", - "forgedhallpass" + "lucky0x0d" ], "tags": [ - "ssl" + "ssl", + "wildcard", + "tls" ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" + "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" ], "severity": "info", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 1 + } }, "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "tls10" + " SAN: [agencebio.org *.agencebio.org]", + "CN: agencebio.org" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.416323682Z", + "timestamp": "2023-12-24T03:02:02.76386734Z", "matcher-status": true }, { @@ -65539,43 +65790,7 @@ "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.416551925Z", - "matcher-status": true - }, - { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", - "info": { - "name": "Weak Cipher Suites Detection", - "author": [ - "pussycat0x" - ], - "tags": [ - "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" - ], - "severity": "low", - "metadata": { - "max-request": 4 - } - }, - "matcher-name": "tls-1.1", - "type": "ssl", - "host": "cartobio.agencebio.org", - "matched-at": "cartobio.agencebio.org:443", - "extracted-results": [ - "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" - ], - "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.444408968Z", + "timestamp": "2023-12-24T03:02:02.763670063Z", "matcher-status": true }, { @@ -65590,7 +65805,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -65605,7 +65821,7 @@ "tls11" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.446624406Z", + "timestamp": "2023-12-24T03:02:02.790100255Z", "matcher-status": true }, { @@ -65620,7 +65836,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -65640,7 +65857,43 @@ "tls11" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.44752855Z", + "timestamp": "2023-12-24T03:02:02.7926071Z", + "matcher-status": true + }, + { + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "info": { + "name": "Weak Cipher Suites Detection", + "author": [ + "pussycat0x" + ], + "tags": [ + "ssl", + "tls", + "misconfig" + ], + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", + "metadata": { + "max-request": 4 + } + }, + "matcher-name": "tls-1.1", + "type": "ssl", + "host": "cartobio.agencebio.org", + "matched-at": "cartobio.agencebio.org:443", + "extracted-results": [ + "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + ], + "ip": "104.21.16.54", + "timestamp": "2023-12-24T03:02:02.793115325Z", "matcher-status": true }, { @@ -65655,7 +65908,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -65670,7 +65924,7 @@ "tls12" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.469998142Z", + "timestamp": "2023-12-24T03:02:02.816771802Z", "matcher-status": true }, { @@ -65685,7 +65939,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -65700,7 +65955,7 @@ "tls13" ], "ip": "104.21.16.54", - "timestamp": "2023-12-17T02:59:00.493686378Z", + "timestamp": "2023-12-24T03:02:02.839202112Z", "matcher-status": true } ], @@ -65708,7 +65963,7 @@ { "requestedUrl": "https://cartobio.agencebio.org/", "finalUrl": "https://cartobio.agencebio.org/", - "fetchTime": "2023-12-17T02:50:59.964Z", + "fetchTime": "2023-12-24T02:54:02.184Z", "runWarnings": [], "categories": { "performance": { @@ -65771,53 +66026,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3435, + "numericValue": 3593, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3018, - "firstMeaningfulPaint": 3114, - "largestContentfulPaint": 3339, - "interactive": 3435, - "speedIndex": 3491, - "totalBlockingTime": 71, - "maxPotentialFID": 192, - "cumulativeLayoutShift": 0.06962037489149306, - "cumulativeLayoutShiftMainFrame": 0.06962037489149306, - "totalCumulativeLayoutShift": 0.06962037489149306, + "firstContentfulPaint": 3023, + "firstMeaningfulPaint": 3158, + "largestContentfulPaint": 3383, + "interactive": 3593, + "speedIndex": 3655, + "totalBlockingTime": 110, + "maxPotentialFID": 270, + "cumulativeLayoutShift": 0.06410612360636395, + "cumulativeLayoutShiftMainFrame": 0.06410612360636395, + "totalCumulativeLayoutShift": 0.06410612360636395, "observedTimeOrigin": 0, - "observedTimeOriginTs": 440467908, + "observedTimeOriginTs": 1431125249, "observedNavigationStart": 0, - "observedNavigationStartTs": 440467908, - "observedFirstPaint": 966, - "observedFirstPaintTs": 441433569, - "observedFirstContentfulPaint": 966, - "observedFirstContentfulPaintTs": 441433569, - "observedFirstContentfulPaintAllFrames": 966, - "observedFirstContentfulPaintAllFramesTs": 441433569, - "observedFirstMeaningfulPaint": 966, - "observedFirstMeaningfulPaintTs": 441433569, - "observedLargestContentfulPaint": 966, - "observedLargestContentfulPaintTs": 441433569, - "observedLargestContentfulPaintAllFrames": 966, - "observedLargestContentfulPaintAllFramesTs": 441433569, - "observedTraceEnd": 4899, - "observedTraceEndTs": 445366484, - "observedLoad": 2592, - "observedLoadTs": 443059567, - "observedDomContentLoaded": 954, - "observedDomContentLoadedTs": 441422059, - "observedCumulativeLayoutShift": 0.06962037489149306, - "observedCumulativeLayoutShiftMainFrame": 0.06962037489149306, - "observedTotalCumulativeLayoutShift": 0.06962037489149306, - "observedFirstVisualChange": 964, - "observedFirstVisualChangeTs": 441431908, - "observedLastVisualChange": 1497, - "observedLastVisualChangeTs": 441964908, - "observedSpeedIndex": 1011, - "observedSpeedIndexTs": 441479340 + "observedNavigationStartTs": 1431125249, + "observedFirstPaint": 1042, + "observedFirstPaintTs": 1432167441, + "observedFirstContentfulPaint": 1042, + "observedFirstContentfulPaintTs": 1432167441, + "observedFirstContentfulPaintAllFrames": 1042, + "observedFirstContentfulPaintAllFramesTs": 1432167441, + "observedFirstMeaningfulPaint": 1042, + "observedFirstMeaningfulPaintTs": 1432167441, + "observedLargestContentfulPaint": 1042, + "observedLargestContentfulPaintTs": 1432167441, + "observedLargestContentfulPaintAllFrames": 1042, + "observedLargestContentfulPaintAllFramesTs": 1432167441, + "observedTraceEnd": 3882, + "observedTraceEndTs": 1435007232, + "observedLoad": 1572, + "observedLoadTs": 1432696776, + "observedDomContentLoaded": 1030, + "observedDomContentLoadedTs": 1432155041, + "observedCumulativeLayoutShift": 0.06410612360636395, + "observedCumulativeLayoutShiftMainFrame": 0.06410612360636395, + "observedTotalCumulativeLayoutShift": 0.06410612360636395, + "observedFirstVisualChange": 1050, + "observedFirstVisualChangeTs": 1432175249, + "observedLastVisualChange": 1600, + "observedLastVisualChangeTs": 1432725249, + "observedSpeedIndex": 1100, + "observedSpeedIndexTs": 1432225042 }, { "lcpInvalidated": false @@ -65839,19 +66094,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 874, - "numTasksOver10ms": 2, + "numTasks": 846, + "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.1579999999999995, - "throughput": 51229515.54783386, - "maxRtt": 99.81500000000001, - "maxServerLatency": 318.39199999999994, - "totalByteWeight": 828266, - "totalTaskTime": 223.4899999999975, - "mainDocumentTransferSize": 935 + "rtt": 2.8099999999999987, + "throughput": 48402390.67075197, + "maxRtt": 99.59700000000001, + "maxServerLatency": 322.962, + "totalByteWeight": 830101, + "totalTaskTime": 275.54299999999756, + "mainDocumentTransferSize": 929 } ] } @@ -65961,7 +66216,7 @@ "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "B", - "trackersCount": 1, + "trackersCount": 2, "lighthouse_performance": 1, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.89, @@ -65991,7 +66246,7 @@ "http": { "url": "https://catalogue.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:56:02 GMT", + "end_time": "Sun, 24 Dec 2023 02:56:43 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -65999,17 +66254,17 @@ "Cache-Control": "max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:56:01 GMT", - "ETag": "W/\"2a4-18c566712b7\"", - "Last-Modified": "Mon, 11 Dec 2023 01:04:04 GMT", + "Date": "Sun, 24 Dec 2023 02:56:41 GMT", + "ETag": "W/\"2a4-18c86cb4f68\"", + "Last-Modified": "Wed, 20 Dec 2023 10:35:20 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Origin" }, - "scan_id": 45538418, + "scan_id": 45753904, "score": 35, - "start_time": "Sun, 17 Dec 2023 02:55:57 GMT", + "start_time": "Sun, 24 Dec 2023 02:56:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -66180,7 +66435,7 @@ "url": "https://catalogue.apprentissage.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 100, + "uptime": 99.977, "down": false, "down_since": null, "error": null, @@ -66200,15 +66455,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T03:07:10Z", - "next_check_at": "2023-12-17T03:12:08Z", + "last_check_at": "2023-12-24T03:08:18Z", + "next_check_at": "2023-12-24T03:13:16Z", "mute_until": null, "favicon_url": "https://catalogue-apprentissage.intercariforef.org/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:47:18Z", + "tested_at": "2023-12-24T03:03:19Z", "expires_at": "2024-02-03T07:38:02Z", "valid": true, "error": null @@ -66216,12 +66471,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 249, + "redirect": 335, "namelookup": 16, - "connection": 38, - "handshake": 45, - "response": 46, - "total": 393 + "connection": 54, + "handshake": 60, + "response": 64, + "total": 529 } }, "uptimeGrade": "A", @@ -66601,7 +66856,7 @@ "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", @@ -66804,7 +67059,7 @@ "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "1702781839" + "finding": "1703386677" }, { "id": "HSTS", @@ -67371,7 +67626,7 @@ }, { "type": "unknown", - "url": "https://catalogue-apprentissage.intercariforef.org/static/js/main.47bc60fb.js" + "url": "https://catalogue-apprentissage.intercariforef.org/static/js/main.b5c91f45.js" }, { "type": "unknown", @@ -67447,9 +67702,9 @@ "cache-control": "max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 02:56:34 GMT", - "etag": "W/\"2a4-18c566712b7\"", - "last-modified": "Mon, 11 Dec 2023 01:04:04 GMT", + "date": "Sun, 24 Dec 2023 02:57:14 GMT", + "etag": "W/\"2a4-18c86cb4f68\"", + "last-modified": "Wed, 20 Dec 2023 10:35:20 GMT", "server": "nginx", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Origin" @@ -67600,7 +67855,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 02:55:31", + "@generated": "Sun, 24 Dec 2023 02:56:13", "site": [ { "@name": "https://catalogue.apprentissage.beta.gouv.fr", @@ -67715,7 +67970,7 @@ { "requestedUrl": "https://catalogue.apprentissage.beta.gouv.fr/", "finalUrl": "https://catalogue-apprentissage.intercariforef.org/", - "fetchTime": "2023-12-17T02:55:46.070Z", + "fetchTime": "2023-12-24T02:56:27.568Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://catalogue.apprentissage.beta.gouv.fr/) was redirected to https://catalogue-apprentissage.intercariforef.org/. Try testing the second URL directly." ], @@ -67780,53 +68035,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5519, + "numericValue": 4324, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2758, - "firstMeaningfulPaint": 2758, - "largestContentfulPaint": 5526, - "interactive": 5519, - "speedIndex": 4678, - "totalBlockingTime": 1292, - "maxPotentialFID": 1076, - "cumulativeLayoutShift": 0.1872912610371908, - "cumulativeLayoutShiftMainFrame": 0.1872912610371908, - "totalCumulativeLayoutShift": 0.1872912610371908, + "firstContentfulPaint": 2581, + "firstMeaningfulPaint": 2581, + "largestContentfulPaint": 5207, + "interactive": 4324, + "speedIndex": 4361, + "totalBlockingTime": 199, + "maxPotentialFID": 143, + "cumulativeLayoutShift": 0.2666292673746745, + "cumulativeLayoutShiftMainFrame": 0.2666292673746745, + "totalCumulativeLayoutShift": 0.2666292673746745, "observedTimeOrigin": 0, - "observedTimeOriginTs": 331478946, + "observedTimeOriginTs": 285889906, "observedNavigationStart": 0, - "observedNavigationStartTs": 331478946, - "observedFirstPaint": 1694, - "observedFirstPaintTs": 333173007, - "observedFirstContentfulPaint": 1694, - "observedFirstContentfulPaintTs": 333173007, - "observedFirstContentfulPaintAllFrames": 1694, - "observedFirstContentfulPaintAllFramesTs": 333173007, - "observedFirstMeaningfulPaint": 1694, - "observedFirstMeaningfulPaintTs": 333173007, - "observedLargestContentfulPaint": 1694, - "observedLargestContentfulPaintTs": 333173007, - "observedLargestContentfulPaintAllFrames": 1694, - "observedLargestContentfulPaintAllFramesTs": 333173007, - "observedTraceEnd": 4267, - "observedTraceEndTs": 335745576, - "observedLoad": 1273, - "observedLoadTs": 332751474, - "observedDomContentLoaded": 1266, - "observedDomContentLoadedTs": 332744803, - "observedCumulativeLayoutShift": 0.1872912610371908, - "observedCumulativeLayoutShiftMainFrame": 0.1872912610371908, - "observedTotalCumulativeLayoutShift": 0.1872912610371908, - "observedFirstVisualChange": 1707, - "observedFirstVisualChangeTs": 333185946, - "observedLastVisualChange": 2241, - "observedLastVisualChangeTs": 333719946, - "observedSpeedIndex": 1742, - "observedSpeedIndexTs": 333221337 + "observedNavigationStartTs": 285889906, + "observedFirstPaint": 1623, + "observedFirstPaintTs": 287512603, + "observedFirstContentfulPaint": 1623, + "observedFirstContentfulPaintTs": 287512603, + "observedFirstContentfulPaintAllFrames": 1623, + "observedFirstContentfulPaintAllFramesTs": 287512603, + "observedFirstMeaningfulPaint": 1623, + "observedFirstMeaningfulPaintTs": 287512603, + "observedLargestContentfulPaint": 1623, + "observedLargestContentfulPaintTs": 287512603, + "observedLargestContentfulPaintAllFrames": 1623, + "observedLargestContentfulPaintAllFramesTs": 287512603, + "observedTraceEnd": 4177, + "observedTraceEndTs": 290066907, + "observedLoad": 1253, + "observedLoadTs": 287142843, + "observedDomContentLoaded": 1249, + "observedDomContentLoadedTs": 287139192, + "observedCumulativeLayoutShift": 0.2666292673746745, + "observedCumulativeLayoutShiftMainFrame": 0.2666292673746745, + "observedTotalCumulativeLayoutShift": 0.2666292673746745, + "observedFirstVisualChange": 1631, + "observedFirstVisualChangeTs": 287520906, + "observedLastVisualChange": 1748, + "observedLastVisualChangeTs": 287637906, + "observedSpeedIndex": 1666, + "observedSpeedIndexTs": 287555664 }, { "lcpInvalidated": false @@ -67848,18 +68103,18 @@ "numScripts": 7, "numStylesheets": 2, "numFonts": 2, - "numTasks": 247, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasks": 258, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 83.857, - "throughput": 11978669.01850799, - "maxRtt": 88.86399999999999, - "maxServerLatency": 127.149, - "totalByteWeight": 801471, - "totalTaskTime": 508.53899999999976, + "rtt": 84.089, + "throughput": 11885230.19738874, + "maxRtt": 88.707, + "maxServerLatency": 125.40599999999998, + "totalByteWeight": 801913, + "totalTaskTime": 180.04599999999985, "mainDocumentTransferSize": 660 } ] @@ -67945,7 +68200,7 @@ "httpGrade": "D", "apdex": 1, "apdexGrade": "A", - "uptime": 100, + "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -67983,28 +68238,28 @@ "http": { "url": "https://connect.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 03:10:08 GMT", + "end_time": "Sun, 24 Dec 2023 03:01:08 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "2378", - "Content-Security-Policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-cr8nhbycHLTnqWNyzMr1Jg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", + "Content-Length": "2364", + "Content-Security-Policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-4vJqelvk33gBo/yRdVCGJQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 03:10:07 GMT", + "Date": "Sun, 24 Dec 2023 03:01:06 GMT", "Referrer-Policy": "same-origin", - "Sozu-Id": "01HHTW17FXQ2XBA85X0VPYGK3W", + "Sozu-Id": "01HJCW9RW5FGRJAAT8RS5V0HMM", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Vary": "Cookie, Accept-Encoding, origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45538639, + "scan_id": 45754052, "score": 115, - "start_time": "Sun, 17 Dec 2023 03:10:04 GMT", + "start_time": "Sun, 24 Dec 2023 03:01:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -68020,8 +68275,8 @@ "'none'" ], "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'self'" + "'self'", + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" @@ -68033,17 +68288,17 @@ "'none'" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", "'self'", - "data:" + "data:", + "https://matomo.inclusion.beta.gouv.fr/" ], "object-src": [ "'none'" ], "script-src": [ "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-cr8nhbychltnqwnyzmr1jg=='", - "'self'" + "'self'", + "'nonce-4vjqelvk33gbo/yrdvcgjq=='" ], "style-src": [ "'self'" @@ -68219,7 +68474,7 @@ "nmap": { "host": "connect.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "986", + "closed_ports": "987", "open_ports": [ { "service": { @@ -68228,13 +68483,6 @@ "vulnerabilities": [] } }, - { - "service": { - "name": "tcpwrapped", - "id": "179", - "vulnerabilities": [] - } - }, { "service": { "name": "https", @@ -68330,70 +68578,70 @@ "testssl": [ { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68401,7 +68649,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68409,7 +68657,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68417,7 +68665,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68425,7 +68673,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -68433,7 +68681,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -68441,574 +68689,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702782728" + "finding": "1703386943" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-LHb1wrrJyc2hKgsUNe9Bqg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-EMXUnSur0bDPdVfZRrwoLg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -69016,7 +69264,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -69025,7 +69273,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -69034,7 +69282,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -69043,7 +69291,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -69052,7 +69300,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -69060,7 +69308,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -69069,7 +69317,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -69078,7 +69326,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -69087,7 +69335,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -69096,14 +69344,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -69112,7 +69360,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -69121,7 +69369,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -69130,7 +69378,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -69139,7 +69387,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -69148,7 +69396,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -69157,7 +69405,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -69166,7 +69414,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -69175,7 +69423,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -69184,7 +69432,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -69193,385 +69441,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69579,7 +69827,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69587,7 +69835,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69595,7 +69843,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69603,7 +69851,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -69611,7 +69859,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -69619,574 +69867,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702782830" + "finding": "1703387003" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-0JzAWkSpIHDR7PBMnCwAMQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-ZL7ELIan2nQ3+gE+3yN0LA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -70194,7 +70442,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -70203,7 +70451,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -70212,7 +70460,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -70221,7 +70469,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -70230,7 +70478,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -70238,7 +70486,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -70247,7 +70495,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -70256,7 +70504,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -70265,7 +70513,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -70274,14 +70522,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -70290,7 +70538,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -70299,7 +70547,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -70308,7 +70556,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -70317,7 +70565,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -70326,7 +70574,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -70335,7 +70583,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -70344,7 +70592,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -70353,7 +70601,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -70362,7 +70610,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -70371,385 +70619,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70757,7 +71005,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70765,7 +71013,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70773,7 +71021,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70781,7 +71029,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -70789,7 +71037,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -70797,574 +71045,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702782931" + "finding": "1703387062" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-v2IcZCKBMFsnPu/xwkvhJQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-9017KzmSEi+x2tnz7zvi4Q=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -71372,7 +71620,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -71381,7 +71629,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -71390,7 +71638,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -71399,7 +71647,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -71408,7 +71656,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -71416,7 +71664,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -71425,7 +71673,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -71434,7 +71682,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -71443,7 +71691,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -71452,14 +71700,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -71468,7 +71716,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -71477,7 +71725,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -71486,7 +71734,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -71495,7 +71743,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -71504,7 +71752,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -71513,7 +71761,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -71522,7 +71770,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -71531,7 +71779,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -71540,7 +71788,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -71549,385 +71797,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71935,7 +72183,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71943,7 +72191,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71951,7 +72199,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71959,7 +72207,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -71967,7 +72215,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -71975,574 +72223,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702783033" + "finding": "1703387122" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-jpW05LjAmftZ1ocBKLB4LQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-vrBfkDM/WNSHhD7v7/ld8Q=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -72550,7 +72798,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -72559,7 +72807,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -72568,7 +72816,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -72577,7 +72825,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -72586,7 +72834,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -72594,7 +72842,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -72603,7 +72851,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -72612,7 +72860,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -72621,7 +72869,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -72630,14 +72878,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -72646,7 +72894,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -72655,7 +72903,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -72664,7 +72912,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -72673,7 +72921,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -72682,7 +72930,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -72691,7 +72939,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -72700,7 +72948,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -72709,7 +72957,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -72718,7 +72966,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -72727,385 +72975,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73113,7 +73361,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73121,7 +73369,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73129,7 +73377,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73137,7 +73385,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -73145,7 +73393,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -73153,574 +73401,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702783135" + "finding": "1703387180" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-vON0nN801hFcHnVcjxoC2g=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-dKe1KEvGANP4uw77S5RyOw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -73728,7 +73976,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -73737,7 +73985,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -73746,7 +73994,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -73755,7 +74003,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -73764,7 +74012,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -73772,7 +74020,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -73781,7 +74029,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -73790,7 +74038,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -73799,7 +74047,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -73808,14 +74056,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -73824,7 +74072,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -73833,7 +74081,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -73842,7 +74090,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -73851,7 +74099,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -73860,7 +74108,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -73869,7 +74117,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -73878,7 +74126,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -73887,7 +74135,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -73896,7 +74144,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -73905,385 +74153,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74291,7 +74539,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74299,7 +74547,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74307,7 +74555,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74315,7 +74563,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -74323,7 +74571,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -74331,574 +74579,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702783238" + "finding": "1703387239" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-BtR9/L708+OXZYi+lng8pQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-OEUi0Rgq6IfwmSpe7msTGQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -74906,7 +75154,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -74915,7 +75163,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -74924,7 +75172,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -74933,7 +75181,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -74942,7 +75190,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -74950,7 +75198,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -74959,7 +75207,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -74968,7 +75216,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -74977,7 +75225,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -74986,14 +75234,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -75002,7 +75250,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -75011,7 +75259,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -75020,7 +75268,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -75029,7 +75277,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -75038,7 +75286,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -75047,7 +75295,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -75056,7 +75304,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -75065,7 +75313,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -75074,7 +75322,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -75083,385 +75331,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75469,7 +75717,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75477,7 +75725,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75485,7 +75733,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75493,7 +75741,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -75501,7 +75749,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -75509,574 +75757,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1702783340" + "finding": "1703387298" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-BAeD5k3ZK1imomCmWD3+GQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-KANO5QaW+f72mn9g0+rQXA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -76084,7 +76332,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -76093,7 +76341,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -76102,7 +76350,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -76111,7 +76359,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -76120,7 +76368,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -76128,7 +76376,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -76137,7 +76385,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -76146,7 +76394,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -76155,7 +76403,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -76164,14 +76412,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -76180,7 +76428,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -76189,7 +76437,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -76198,7 +76446,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -76207,7 +76455,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -76216,7 +76464,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -76225,7 +76473,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -76234,7 +76482,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -76243,7 +76491,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -76252,7 +76500,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -76261,385 +76509,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76647,7 +76895,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76655,7 +76903,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76663,7 +76911,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76671,7 +76919,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76679,7 +76927,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76687,574 +76935,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702783442" + "finding": "1703387356" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-WfOIMibrXhkF4tosGPn7/g=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-P+C3uK5d915l+/2xwmKgkw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -77262,7 +77510,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -77271,7 +77519,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -77280,7 +77528,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -77289,7 +77537,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -77298,7 +77546,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -77306,7 +77554,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -77315,7 +77563,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -77324,7 +77572,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -77333,7 +77581,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -77342,14 +77590,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -77358,7 +77606,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -77367,7 +77615,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -77376,7 +77624,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -77385,7 +77633,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -77394,7 +77642,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -77403,7 +77651,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -77412,7 +77660,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -77421,7 +77669,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -77430,7 +77678,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -77439,385 +77687,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77825,7 +78073,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77833,7 +78081,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77841,7 +78089,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77849,7 +78097,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -77857,7 +78105,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -77865,574 +78113,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702783546" + "finding": "1703387420" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-bQ++L2Q47S6Mel7ro704qg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-WOgNKk/8GfR669+qNjTSyg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -78440,7 +78688,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -78449,7 +78697,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -78458,7 +78706,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -78467,7 +78715,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -78476,7 +78724,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -78484,7 +78732,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -78493,7 +78741,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -78502,7 +78750,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -78511,7 +78759,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -78520,14 +78768,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -78536,7 +78784,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -78545,7 +78793,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -78554,7 +78802,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -78563,7 +78811,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -78572,7 +78820,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -78581,7 +78829,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -78590,7 +78838,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -78599,7 +78847,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -78608,7 +78856,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -78617,325 +78865,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "932" + "finding": "538" } ], "thirdparties": { @@ -78946,7 +79194,7 @@ "value": "1", "domain": "connect.inclusion.beta.gouv.fr", "path": "/", - "expires": 1702784441, + "expires": 1703388701, "size": 17, "httpOnly": false, "secure": false, @@ -78958,10 +79206,10 @@ }, { "name": "_pk_id.215.73e3", - "value": "a463a8fac1ad1d9b.1702782641.", + "value": "83848d7cec198fe7.1703386902.", "domain": "connect.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736737841, + "expires": 1737342102, "size": 43, "httpOnly": false, "secure": false, @@ -78975,13 +79223,13 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "2373", - "content-security-policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-bukXd+PecC11/VQPAw/aOQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", + "content-length": "2346", + "content-security-policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-WwWqxogFiM/zdTUzxWYiMA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 03:10:39 GMT", + "date": "Sun, 24 Dec 2023 03:01:40 GMT", "referrer-policy": "same-origin", - "sozu-id": "01HHTW27515RTRKF5HMHMWK663", + "sozu-id": "01HJCWASJK4VKCG9HP5H9ARGS3", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Cookie, Accept-Encoding, origin", "x-content-type-options": "nosniff", @@ -78990,7 +79238,7 @@ "endpoints": [ { "hostname": "connect.inclusion.beta.gouv.fr", - "ip": "91.208.207.214", + "ip": "91.208.207.218", "geoip": { "continent": { "code": "EU", @@ -79176,7 +79424,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:09:37", + "@generated": "Sun, 24 Dec 2023 03:00:38", "site": [ { "@name": "https://connect.inclusion.beta.gouv.fr", @@ -79273,46 +79521,6 @@ ] }, "nuclei": [ - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "connect.inclusion.beta.gouv.fr.", - "matched-at": "connect.inclusion.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2023-12-17T03:24:28.737161887Z", - "matcher-status": true - }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -79345,24 +79553,28 @@ "type": "dns", "host": "connect.inclusion.beta.gouv.fr.", "matched-at": "connect.inclusion.beta.gouv.fr", - "timestamp": "2023-12-17T03:24:28.741166478Z", + "timestamp": "2023-12-24T03:14:16.99258083Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -79378,10 +79590,10 @@ "host": "connect.inclusion.beta.gouv.fr.", "matched-at": "connect.inclusion.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T03:24:28.885755121Z", + "timestamp": "2023-12-24T03:14:17.294681515Z", "matcher-status": true }, { @@ -79421,7 +79633,7 @@ "extracted-results": [ "\"v=DMARC1; p=none\"" ], - "timestamp": "2023-12-17T03:24:29.029773916Z", + "timestamp": "2023-12-24T03:14:17.310679393Z", "matcher-status": true }, { @@ -79459,7 +79671,43 @@ "extracted-results": [ "\"v=spf1 include:_spf.alwaysdata.com ~all include:spf.mailjet.com include:_spf.google.com include:mail.zendesk.com ?all\"" ], - "timestamp": "2023-12-17T03:24:29.730576443Z", + "timestamp": "2023-12-24T03:14:18.069351688Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "connect.inclusion.beta.gouv.fr.", + "matched-at": "connect.inclusion.beta.gouv.fr", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2023-12-24T03:14:18.217064211Z", "matcher-status": true }, { @@ -79490,12 +79738,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:25:40.67317493Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:15:00.998931483Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79527,12 +79775,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:25:40.673225353Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:15:00.998972229Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79564,12 +79812,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:25:40.673242244Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:15:00.998989401Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79601,12 +79849,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:25:40.673254647Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:15:00.999004189Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79638,12 +79886,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:25:40.673269495Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:15:00.999018996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79692,8 +79940,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:26:57.44458963Z", + "ip": "91.208.207.214", + "timestamp": "2023-12-24T03:17:30.116460265Z", "matcher-status": true }, { @@ -79707,7 +79955,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -79721,8 +79970,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:27:07.75139984Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:17:39.742870979Z", "matcher-status": true }, { @@ -79736,7 +79985,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -79750,8 +80000,8 @@ "extracted-results": [ "connect.inclusion.beta.gouv.fr" ], - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:27:07.751516787Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:17:39.743000661Z", "matcher-status": true }, { @@ -79766,7 +80016,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -79780,8 +80031,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:27:10.344393813Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:18:49.367751167Z", "matcher-status": true }, { @@ -79796,7 +80047,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -79810,8 +80062,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.42.117.109", - "timestamp": "2023-12-17T03:27:10.657810754Z", + "ip": "91.208.207.218", + "timestamp": "2023-12-24T03:18:49.561320463Z", "matcher-status": true } ], @@ -79819,7 +80071,7 @@ { "requestedUrl": "https://connect.inclusion.beta.gouv.fr/", "finalUrl": "https://connect.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T03:09:51.828Z", + "fetchTime": "2023-12-24T03:00:52.558Z", "runWarnings": [], "categories": { "performance": { @@ -79830,7 +80082,7 @@ "snapshot" ], "id": "performance", - "score": 0.9468221664428711 + "score": 0.9468246459960937 }, "accessibility": { "title": "Accessibility", @@ -79882,53 +80134,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5583, + "numericValue": 5630, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5583, - "firstMeaningfulPaint": 5583, - "largestContentfulPaint": 6797, - "interactive": 5583, - "speedIndex": 5583, + "firstContentfulPaint": 5630, + "firstMeaningfulPaint": 5630, + "largestContentfulPaint": 7160, + "interactive": 5630, + "speedIndex": 5630, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0011465928819444444, "cumulativeLayoutShiftMainFrame": 0.0011465928819444444, "totalCumulativeLayoutShift": 0.0011465928819444444, "observedTimeOrigin": 0, - "observedTimeOriginTs": 336403863, + "observedTimeOriginTs": 432996409, "observedNavigationStart": 0, - "observedNavigationStartTs": 336403863, - "observedFirstPaint": 1160, - "observedFirstPaintTs": 337564164, - "observedFirstContentfulPaint": 1160, - "observedFirstContentfulPaintTs": 337564164, - "observedFirstContentfulPaintAllFrames": 1160, - "observedFirstContentfulPaintAllFramesTs": 337564164, - "observedFirstMeaningfulPaint": 1160, - "observedFirstMeaningfulPaintTs": 337564164, - "observedLargestContentfulPaint": 1264, - "observedLargestContentfulPaintTs": 337667736, - "observedLargestContentfulPaintAllFrames": 1264, - "observedLargestContentfulPaintAllFramesTs": 337667736, - "observedTraceEnd": 4380, - "observedTraceEndTs": 340784144, - "observedLoad": 2072, - "observedLoadTs": 338475849, + "observedNavigationStartTs": 432996409, + "observedFirstPaint": 654, + "observedFirstPaintTs": 433650029, + "observedFirstContentfulPaint": 654, + "observedFirstContentfulPaintTs": 433650029, + "observedFirstContentfulPaintAllFrames": 654, + "observedFirstContentfulPaintAllFramesTs": 433650029, + "observedFirstMeaningfulPaint": 654, + "observedFirstMeaningfulPaintTs": 433650029, + "observedLargestContentfulPaint": 726, + "observedLargestContentfulPaintTs": 433722298, + "observedLargestContentfulPaintAllFrames": 726, + "observedLargestContentfulPaintAllFramesTs": 433722298, + "observedTraceEnd": 3454, + "observedTraceEndTs": 436450725, + "observedLoad": 1145, + "observedLoadTs": 434141163, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 336404420, + "observedDomContentLoadedTs": 432997060, "observedCumulativeLayoutShift": 0.0011465928819444444, "observedCumulativeLayoutShiftMainFrame": 0.0011465928819444444, "observedTotalCumulativeLayoutShift": 0.0011465928819444444, - "observedFirstVisualChange": 1132, - "observedFirstVisualChangeTs": 337535863, - "observedLastVisualChange": 1749, - "observedLastVisualChangeTs": 338152863, - "observedSpeedIndex": 1189, - "observedSpeedIndexTs": 337593329 + "observedFirstVisualChange": 652, + "observedFirstVisualChangeTs": 433648409, + "observedLastVisualChange": 1252, + "observedLastVisualChangeTs": 434248409, + "observedSpeedIndex": 698, + "observedSpeedIndexTs": 433694152 }, { "lcpInvalidated": false @@ -79950,19 +80202,19 @@ "numScripts": 6, "numStylesheets": 2, "numFonts": 3, - "numTasks": 15, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.098, - "throughput": 6952646.400046168, - "maxRtt": 150.90800000000002, - "maxServerLatency": 18.664999999999992, - "totalByteWeight": 1327381, - "totalTaskTime": 5.319999999999999, - "mainDocumentTransferSize": 3141 + "rtt": 80.952, + "throughput": 12749423.697557269, + "maxRtt": 83.06, + "maxServerLatency": 48.384000000000015, + "totalByteWeight": 1327368, + "totalTaskTime": 4.0089999999999995, + "mainDocumentTransferSize": 3128 } ] } @@ -80043,7 +80295,7 @@ "summary": { "httpGrade": "A+", "nmapGrade": "B", - "nmapOpenPortsCount": 14, + "nmapOpenPortsCount": 13, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-20T08:29:00.000Z", @@ -80052,7 +80304,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9468221664428711, + "lighthouse_performance": 0.9468246459960937, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -80081,7 +80333,7 @@ "http": { "url": "https://contrat.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 03:10:45 GMT", + "end_time": "Sun, 24 Dec 2023 03:13:12 GMT", "grade": "A", "hidden": false, "likelihood_indicator": "LOW", @@ -80091,18 +80343,18 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://plausible.io; frame-src 'self'; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; img-src 'self' https://www.notion.so https://jedonnemonavis.numerique.gouv.fr data: https://www.ssa.gov; object-src 'none'; script-src 'self' https://plausible.io https://www.ssa.gov https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 03:10:43 GMT", + "Date": "Sun, 24 Dec 2023 03:13:11 GMT", "Referrer-Policy": "no-referrer-when-downgrade", - "Set-Cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!fnJitNzNAuwWNbNWDPlD0yXzT0UGhiwQ9BmpgrC6aoIwE4/Ejvf5n+OdrkkzbOvQ2Q/divV0Y8p/BT4rUjH3T/VZUEuc; path=/; Httponly; Secure", + "Set-Cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!vrve28fEgF4eQn5WDPlD0yXzT0UGhum1LXK9rc260Sx/pXrwEjidD4ez5v6DPWiH4+siJ225wkvUzbDe9pUGpfxL2UnZ; path=/; Httponly; Secure", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 45538651, + "scan_id": 45754265, "score": 95, - "start_time": "Sun, 17 Dec 2023 03:10:40 GMT", + "start_time": "Sun, 24 Dec 2023 03:13:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -80121,13 +80373,13 @@ "'none'" ], "default-src": [ - "'self'", - "https://plausible.io" + "https://plausible.io", + "'self'" ], "font-src": [ "'self'", - "https:", - "data:" + "data:", + "https:" ], "frame-ancestors": [ "'self'" @@ -80136,27 +80388,27 @@ "'self'" ], "img-src": [ - "'self'", - "https://www.notion.so", "https://jedonnemonavis.numerique.gouv.fr", + "'self'", "data:", + "https://www.notion.so", "https://www.ssa.gov" ], "object-src": [ "'none'" ], "script-src": [ - "https://www.ssa.gov", - "'self'", "https://plausible.io", - "https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js" + "'self'", + "https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js", + "https://www.ssa.gov" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'self'", "'unsafe-inline'", + "'self'", "https:" ], "upgrade-insecure-requests": [ @@ -80364,28 +80616,28 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T03:19:05Z", - "next_check_at": "2023-12-17T03:24:05Z", + "last_check_at": "2023-12-24T03:23:31Z", + "next_check_at": "2023-12-24T03:28:29Z", "mute_until": null, "favicon_url": "https://celia.emploi.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:39:14Z", - "expires_at": "2024-01-06T06:51:39Z", + "tested_at": "2023-12-24T03:03:44Z", + "expires_at": "2024-03-19T07:31:20Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 687, - "namelookup": 14, - "connection": 112, - "handshake": 237, - "response": 137, - "total": 1187 + "redirect": 942, + "namelookup": 41, + "connection": 166, + "handshake": 337, + "response": 189, + "total": 1675 } }, "uptimeGrade": "B", @@ -80618,7 +80870,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -80688,7 +80940,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "0362F5FBFB8F19ACF04E054F80EA249C3A7B" + "finding": "0473D1E697AACE095C94C229EBB88D032663" }, { "id": "cert_serialNumberLen", @@ -80702,21 +80954,21 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "9B03CA58BBFA543B0EBA4E4EF909F10ADDA69508" + "finding": "D3000185A68DA940FEA86F21A4CE24DC67EF7224" }, { "id": "cert_fingerprintSHA256", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "B79B50F639A315A15F3ED451D2C3AF893EC13FFA425583BB23C9208D05B8AAFE" + "finding": "9FCA67A4D28F92BA3905C76ADF10D2B3B11D7657B400317EE48D74A5CFCBFC84" }, { "id": "cert", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFEDCCA/igAwIBAgISBHPR5peqzglclMIp67iNAyZjMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMjAwNzMxMjFaFw0yNDAzMTkwNzMxMjBaMC0xKzApBgNVBAMTImNvbnRyYXQuYXBwcmVudGlzc2FnZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLOtD56xpKcJ2QxxfngSMR2Rn1Jy8PM5zhvExC1Hy9ByfVcHfaTfqq5iUdn3FZ0iFBboTiw2eXOV3mQsICQy03hFuKVGpSvuqqyXkMApvnKpMXlrs+qmi2CVVBoHlxyTl5hGDhMykbB89vqWCP0CDR4uvQ9w05uB/p8dBBQnPrlloXs0YVo1nf3vrOuKiGhnf/jLeRlTit9c8aZonrYezB9JLYLJjvPeuU4HaSVHfdvPAH15hoAMqogINgsIc3Xys+vwEvCFUXuilZCb1qZ96lY8fDlrndIa8XFrSoM4Rn5Uw+DnhO+EnhZOMydIb4hL0KjnsuKzVBx57NzA7ulFnAgMBAAGjggIjMIICHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLT7UO2TUwaW+08NUSLktMRLOskRMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMC0GA1UdEQQmMCSCImNvbnRyYXQuYXBwcmVudGlzc2FnZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYyGWc2lAAAEAwBHMEUCID3vdUvRfDd51FP1gmmGZPshIWDVmQyMSOyZSVsR0MTaAiEAqn+2ukwadxbQhJbNy+oIPHxVRrmdi679Rhm8oBTm6G0AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYyGWc+UAAAEAwBGMEQCIGauADKoaeMGAWDtmnrtloKZoIfjTr0wuBNKua0r3hEOAiAs48UV16UfYWurwbRk2kRYJFYqUVy+ujReHdrDArDqDDANBgkqhkiG9w0BAQsFAAOCAQEAOkyTEGBhUOvd16occHm7fIEx7gfC/KuN2vOm7EeVM9K9GKWbKVmCjvi8VyjFje09h/eig8Aow5TwywLNkT14xpbMYv54ky9HGKflCRoP1BREZx65Y/KNq5dTVHZM+eErFbHTrMgP9JS3GfhsZh5wregpdt/axYtmJra/6XA/BqRM8GgonD4ONT+scXNjMKZiBGqEiSaXrNur3HZ6BKliG7Rjp8d702QH8OeqY0klBSRWUa5qju/OPWXsYI0X6C9PHRbbyQjy91moDhzbQG5/6pk1OAARYNfAoin7qQF7jw0CE7mKDFxIlID7L73mNvCT7nT6vDrePB+QRk1xZzwFvQ==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -80764,22 +81016,22 @@ "id": "cert_expirationStatus", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 30 days (20)" + "severity": "OK", + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "2023-10-08 06:51" + "finding": "2023-12-20 07:31" }, { "id": "cert_notAfter", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", - "severity": "MEDIUM", - "finding": "2024-01-06 06:51" + "severity": "OK", + "finding": "2024-03-19 07:31" }, { "id": "cert_extlifeSpan", @@ -80968,7 +81220,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "1702782747" + "finding": "1703387725" }, { "id": "HSTS", @@ -81141,7 +81393,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B79B50F639A315A15F3ED451D2C3AF893EC13FFA425583BB23C9208D05B8AAFE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9FCA67A4D28F92BA3905C76ADF10D2B3B11D7657B400317EE48D74A5CFCBFC84" }, { "id": "LOGJAM", @@ -81524,7 +81776,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "98" } ], "thirdparties": { @@ -81537,7 +81789,7 @@ "cookies": [ { "name": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS", - "value": "!rAEZ8dEM0j7a4IJWDPlD0yXzT0UGhnu9igH11REBJAV7vnQwy2c3KfJMM41OIlnlaaDUX8GHxarOWwkp037D8pOP1X/T", + "value": "!ptyC9jSaeamml9lWDPlD0yXzT0UGhgJNJvKktKEgn9C6lESpdRsFORYUg7YSRwJX63sWe/w9t+bYbssMySDjl9Xo7fvS", "domain": "celia.emploi.gouv.fr", "path": "/", "expires": -1, @@ -81556,9 +81808,9 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://plausible.io; frame-src 'self'; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; img-src 'self' https://www.notion.so https://jedonnemonavis.numerique.gouv.fr data: https://www.ssa.gov; object-src 'none'; script-src 'self' https://plausible.io https://www.ssa.gov https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 03:11:18 GMT", + "date": "Sun, 24 Dec 2023 03:13:43 GMT", "referrer-policy": "no-referrer-when-downgrade", - "set-cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!rAEZ8dEM0j7a4IJWDPlD0yXzT0UGhnu9igH11REBJAV7vnQwy2c3KfJMM41OIlnlaaDUX8GHxarOWwkp037D8pOP1X/T; path=/; Httponly; Secure", + "set-cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!ptyC9jSaeamml9lWDPlD0yXzT0UGhgJNJvKktKEgn9C6lESpdRsFORYUg7YSRwJX63sWe/w9t+bYbssMySDjl9Xo7fvS; path=/; Httponly; Secure", "strict-transport-security": "max-age=31536000; includeSubDomains", "transfer-encoding": "chunked", "vary": "Accept-Encoding", @@ -81624,19 +81876,19 @@ }, { "hostname": "plausible.io", - "ip": "185.93.1.247", + "ip": "38.32.110.58", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 5308655, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Phoenix", + "en": "Phoenix", + "es": "Phoenix", + "fr": "Phoenix", + "ja": "フェニックス", + "pt-BR": "Phoenix", + "ru": "Финикс", + "zh-CN": "凤凰城" } }, "continent": { @@ -81669,41 +81921,40 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8874, - "longitude": -87.6318, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 33.4475, + "longitude": -112.0866, + "metro_code": 753, + "time_zone": "America/Phoenix" }, "postal": { - "code": "60602" + "code": "85036" }, "registered_country": { - "geoname_id": 3077311, - "is_in_european_union": true, - "iso_code": "CZ", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Tschechien", - "en": "Czechia", - "es": "Chequia", - "fr": "Tchéquie", - "ja": "チェコ共和国", - "pt-BR": "Chéquia", - "ru": "Чехия", - "zh-CN": "捷克" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 5551752, + "iso_code": "AZ", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "de": "Arizona", + "en": "Arizona", + "es": "Arizona", + "fr": "Arizona", + "ja": "アリゾナ州", + "pt-BR": "Arizona", + "ru": "Аризона" } } ] @@ -81742,7 +81993,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:10:15", + "@generated": "Sun, 24 Dec 2023 03:12:41", "site": [ { "@name": "https://contrat.apprentissage.beta.gouv.fr", @@ -81871,7 +82122,7 @@ { "requestedUrl": "https://contrat.apprentissage.beta.gouv.fr/", "finalUrl": "https://celia.emploi.gouv.fr/", - "fetchTime": "2023-12-17T03:10:29.523Z", + "fetchTime": "2023-12-24T03:12:55.288Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://contrat.apprentissage.beta.gouv.fr/) was redirected to https://celia.emploi.gouv.fr/. Try testing the second URL directly." ], @@ -81936,53 +82187,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7691, + "numericValue": 7928, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2717, - "firstMeaningfulPaint": 2717, - "largestContentfulPaint": 2717, - "interactive": 7691, - "speedIndex": 3514, - "totalBlockingTime": 198, - "maxPotentialFID": 445, - "cumulativeLayoutShift": 0.17782976893700939, - "cumulativeLayoutShiftMainFrame": 0.17782976893700939, - "totalCumulativeLayoutShift": 0.17782976893700939, + "firstContentfulPaint": 2896, + "firstMeaningfulPaint": 2896, + "largestContentfulPaint": 3169, + "interactive": 7928, + "speedIndex": 4430, + "totalBlockingTime": 317, + "maxPotentialFID": 471, + "cumulativeLayoutShift": 0.15024017323703012, + "cumulativeLayoutShiftMainFrame": 0.15024017323703012, + "totalCumulativeLayoutShift": 0.15024017323703012, "observedTimeOrigin": 0, - "observedTimeOriginTs": 210587565, + "observedTimeOriginTs": 397789123, "observedNavigationStart": 0, - "observedNavigationStartTs": 210587565, - "observedFirstPaint": 1095, - "observedFirstPaintTs": 211682226, - "observedFirstContentfulPaint": 1095, - "observedFirstContentfulPaintTs": 211682226, - "observedFirstContentfulPaintAllFrames": 1095, - "observedFirstContentfulPaintAllFramesTs": 211682226, - "observedFirstMeaningfulPaint": 1095, - "observedFirstMeaningfulPaintTs": 211682226, - "observedLargestContentfulPaint": 1095, - "observedLargestContentfulPaintTs": 211682226, - "observedLargestContentfulPaintAllFrames": 1095, - "observedLargestContentfulPaintAllFramesTs": 211682226, - "observedTraceEnd": 4211, - "observedTraceEndTs": 214798797, - "observedLoad": 1777, - "observedLoadTs": 212364534, - "observedDomContentLoaded": 1769, - "observedDomContentLoadedTs": 212356810, - "observedCumulativeLayoutShift": 0.17782976893700939, - "observedCumulativeLayoutShiftMainFrame": 0.17782976893700939, - "observedTotalCumulativeLayoutShift": 0.17782976893700939, - "observedFirstVisualChange": 1103, - "observedFirstVisualChangeTs": 211690565, - "observedLastVisualChange": 1920, - "observedLastVisualChangeTs": 212507565, - "observedSpeedIndex": 1427, - "observedSpeedIndexTs": 212014352 + "observedNavigationStartTs": 397789123, + "observedFirstPaint": 1483, + "observedFirstPaintTs": 399271913, + "observedFirstContentfulPaint": 1483, + "observedFirstContentfulPaintTs": 399271913, + "observedFirstContentfulPaintAllFrames": 1483, + "observedFirstContentfulPaintAllFramesTs": 399271913, + "observedFirstMeaningfulPaint": 1483, + "observedFirstMeaningfulPaintTs": 399271913, + "observedLargestContentfulPaint": 1483, + "observedLargestContentfulPaintTs": 399271913, + "observedLargestContentfulPaintAllFrames": 1483, + "observedLargestContentfulPaintAllFramesTs": 399271913, + "observedTraceEnd": 5174, + "observedTraceEndTs": 402963160, + "observedLoad": 2713, + "observedLoadTs": 400501668, + "observedDomContentLoaded": 2705, + "observedDomContentLoadedTs": 400494108, + "observedCumulativeLayoutShift": 0.15024017323703012, + "observedCumulativeLayoutShiftMainFrame": 0.15024017323703012, + "observedTotalCumulativeLayoutShift": 0.15024017323703012, + "observedFirstVisualChange": 1478, + "observedFirstVisualChangeTs": 399267123, + "observedLastVisualChange": 2878, + "observedLastVisualChangeTs": 400667123, + "observedSpeedIndex": 1998, + "observedSpeedIndexTs": 399787008 }, { "lcpInvalidated": false @@ -82004,19 +82255,19 @@ "numScripts": 11, "numStylesheets": 1, "numFonts": 2, - "numTasks": 551, + "numTasks": 564, "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.031000000000006, - "throughput": 8173764.754016677, - "maxRtt": 101.952, - "maxServerLatency": 143.719, - "totalByteWeight": 594448, - "totalTaskTime": 209.83699999999882, - "mainDocumentTransferSize": 13343 + "rtt": 20.081999999999994, + "throughput": 4186305.5349541465, + "maxRtt": 133.934, + "maxServerLatency": 173.49299999999997, + "totalByteWeight": 594902, + "totalTaskTime": 219.5159999999992, + "mainDocumentTransferSize": 13349 } ] } @@ -82025,7 +82276,11 @@ } ], "screenshot": true, - "stats": null, + "stats": { + "grade": "F", + "url": "https://contrat.apprentissage.beta.gouv.fr", + "uri": "stats" + }, "github_repository": { "grade": "A", "url": "https://github.com", @@ -82107,8 +82362,8 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-01-06T06:51:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-03-19T07:31:00.000Z", "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 1, @@ -82124,6 +82379,7 @@ "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.2, "lighthouse_pwaGrade": "E", + "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "B", @@ -82139,7 +82395,7 @@ "http": { "url": "https://chauffage-urbain.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 03:19:05 GMT", + "end_time": "Sun, 24 Dec 2023 03:20:19 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -82148,20 +82404,20 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' https://stats.data.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://cdn.linkedin.oribi.io https://wxs.ign.fr https://api.mapbox.com/;frame-src https://www.youtube.com/;worker-src 'self' blob:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 03:19:03 GMT", - "ETag": "\"tz5khdj57g1r39\"", + "Date": "Sun, 24 Dec 2023 03:20:17 GMT", + "ETag": "\"lx7r4k4dgc1r2t\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", "X-Powered-By": "Next.js", - "X-Request-ID": "25b558e0-ffc6-4e93-8869-61c098513c8e", + "X-Request-ID": "c0f67212-c940-4364-bb3a-fbeb423934cc", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45538747, + "scan_id": 45754440, "score": 100, - "start_time": "Sun, 17 Dec 2023 03:19:00 GMT", + "start_time": "Sun, 24 Dec 2023 03:20:13 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -82177,24 +82433,24 @@ "'self'" ], "connect-src": [ + "https://stats.data.gouv.fr", + "https://api.mapbox.com/", "https://france-chaleur-urbaine.beta.gouv.fr/", + "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", "'self'", - "https://api.mapbox.com/", "https://cdn.linkedin.oribi.io", - "https://openmaptiles.geo.data.gouv.fr", - "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", - "https://stats.data.gouv.fr", "https://openmaptiles.github.io", + "https://api-adresse.data.gouv.fr/", "https://wxs.ign.fr", - "https://api-adresse.data.gouv.fr/" + "https://openmaptiles.geo.data.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ "'self'", - "https:", - "data:" + "data:", + "https:" ], "form-action": [ "'self'" @@ -82207,47 +82463,47 @@ ], "img-src": [ "'self'", - "https:", - "data:" + "data:", + "https:" ], "object-src": [ "'none'" ], "script-src": [ "https://connect.facebook.net", + "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='", + "'sha256-3i33qfpfa/plrn/3rrrc4vjbjmkyiuxwq+zfnhiewmo='", + "https://api.mapbox.com/", "https://snap.licdn.com", + "https://stats.data.gouv.fr", + "https://googleads.g.doubleclick.net", + "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", + "https://static.axept.io", "'self'", - "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", - "https://www.gstatic.com/", - "'sha256-ksltjybi6uoozfn80t6rova1rbbtp9x8qgpgwhmwbpa='", - "https://api.mapbox.com/", - "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", + "https://www.googletagmanager.com", + "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", "https://www.googleadservices.com", - "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", + "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", + "'sha256-ksltjybi6uoozfn80t6rova1rbbtp9x8qgpgwhmwbpa='", "'sha256-pah6kzhwrs47demjxb9x6pfcgghwaf4bz4nckf/bhiu='", - "https://stats.data.gouv.fr", - "https://www.googletagmanager.com", "'sha256-5nusiklxgjie3jiclfpyxyzshtqffzm0jthzyypijte='", - "'sha256-3i33qfpfa/plrn/3rrrc4vjbjmkyiuxwq+zfnhiewmo='", - "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='", - "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", - "https://static.axept.io", - "https://googleads.g.doubleclick.net" + "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", + "https://www.gstatic.com/" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'self'", "'unsafe-inline'", + "'self'", "https:" ], "upgrade-insecure-requests": [ "'none'" ], "worker-src": [ - "'self'", - "blob:" + "blob:", + "'self'" ] }, "http": true, @@ -82435,15 +82691,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T03:29:57Z", - "next_check_at": "2023-12-17T03:34:56Z", + "last_check_at": "2023-12-24T03:30:20Z", + "next_check_at": "2023-12-24T03:35:20Z", "mute_until": null, "favicon_url": "https://france-chaleur-urbaine.beta.gouv.fr/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T03:25:00Z", + "tested_at": "2023-12-24T03:00:28Z", "expires_at": "2024-02-06T06:50:09Z", "valid": true, "error": null @@ -82451,12 +82707,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 360, - "namelookup": 14, - "connection": 114, - "handshake": 136, - "response": 120, - "total": 745 + "redirect": 430, + "namelookup": 6, + "connection": 133, + "handshake": 142, + "response": 140, + "total": 850 } }, "uptimeGrade": "A", @@ -82834,7 +83090,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "51 >= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", @@ -83037,7 +83293,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702783243" + "finding": "1703388119" }, { "id": "HSTS", @@ -83788,7 +84044,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -83935,7 +84191,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "51 >= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", @@ -84138,7 +84394,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702783296" + "finding": "1703388171" }, { "id": "HSTS", @@ -84691,77 +84947,77 @@ }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84769,7 +85025,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84777,7 +85033,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84785,7 +85041,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84793,7 +85049,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -84801,7 +85057,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -84809,483 +85065,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-08 06:50" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-06 06:50" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702783347" + "finding": "1703388223" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -85293,7 +85549,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -85302,7 +85558,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -85311,7 +85567,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -85320,7 +85576,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -85329,7 +85585,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -85337,7 +85593,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -85346,7 +85602,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -85355,7 +85611,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -85364,7 +85620,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -85373,14 +85629,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -85389,7 +85645,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -85398,7 +85654,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -85407,7 +85663,7 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -85416,7 +85672,7 @@ }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -85425,7 +85681,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -85434,7 +85690,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -85443,7 +85699,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -85452,7 +85708,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -85461,7 +85717,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -85470,399 +85726,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85870,7 +86126,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85878,7 +86134,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85886,7 +86142,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85894,7 +86150,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -85902,7 +86158,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -85910,483 +86166,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-08 06:50" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-06 06:50" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702783399" + "finding": "1703388274" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -86394,7 +86650,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -86403,7 +86659,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -86412,7 +86668,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -86421,7 +86677,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -86430,7 +86686,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -86438,7 +86694,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -86447,7 +86703,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -86456,7 +86712,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -86465,7 +86721,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -86474,14 +86730,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -86490,7 +86746,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -86499,7 +86755,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -86508,7 +86764,7 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -86517,7 +86773,7 @@ }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -86526,7 +86782,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -86535,7 +86791,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -86544,7 +86800,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -86553,7 +86809,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -86562,7 +86818,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -86571,332 +86827,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "212" + "finding": "209" } ], "thirdparties": { @@ -86935,7 +87191,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-player.css", + "url": "https://www.youtube.com/s/player/da154528/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -86943,7 +87199,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -86951,7 +87207,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-embed-player.vflset/www-embed-player.js", + "url": "https://www.youtube.com/s/player/da154528/www-embed-player.vflset/www-embed-player.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -86959,7 +87215,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -87031,7 +87287,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -87039,7 +87295,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/1xEiQfu-UCiwbMaFnr-G2Uzcd5udG06umsh6raawdbQ.js", + "url": "https://www.google.com/js/th/sLx6qsRU46GEe0D3YqweyWcV0efz1f9DxDQkuEUxY-c.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -87099,7 +87355,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/generate_204?9R4EZQ", + "url": "https://www.youtube.com/generate_204?w0AL7g", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -87140,7 +87396,7 @@ }, { "name": "__Host-next-auth.csrf-token", - "value": "e4645f25b49020cb37944bfc4298590a6e6594f7b63d9579cc1494df6d090397%7C16d4768e1be8fab8f0285df1fe472a1ffb035278a90c521e6d48187c77f3c05c", + "value": "65df80d3df4cde7d63c947334fcbd6ae0970dc7156ec42679839a0d87ad64fef%7C066dcf69592d0dade00b0f0f13dc049321379ab7f8b20176f1d0cf13cf288953", "domain": "france-chaleur-urbaine.beta.gouv.fr", "path": "/", "expires": -1, @@ -87158,14 +87414,14 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' https://stats.data.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://cdn.linkedin.oribi.io https://wxs.ign.fr https://api.mapbox.com/;frame-src https://www.youtube.com/;worker-src 'self' blob:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 03:19:35 GMT", - "etag": "\"tz5khdj57g1r39\"", + "date": "Sun, 24 Dec 2023 03:20:50 GMT", + "etag": "\"lx7r4k4dgc1r2t\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-powered-by": "Next.js", - "x-request-id": "11be829c-9785-4048-8fce-11e5c23a4eb5", + "x-request-id": "de8f97b1-6540-4177-a0fb-9b0d80e5e3ae", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -87227,13 +87483,15 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.29.229", + "ip": "146.75.37.229", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 4781530, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" } }, "continent": { @@ -87266,13 +87524,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.018, - "longitude": -77.539, + "latitude": 38.9609, + "longitude": -77.3429, "metro_code": 511, "time_zone": "America/New_York" }, "postal": { - "code": "20147" + "code": "20190" }, "registered_country": { "geoname_id": 6252001, @@ -87306,7 +87564,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.251.167.93", + "ip": "172.253.115.93", "geoip": { "continent": { "code": "NA", @@ -87360,250 +87618,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.31.94", - "geoip": { - "city": { - "geoname_id": 4364745, - "names": { - "en": "Oxford", - "ru": "Оксфорд" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 50, - "latitude": 38.6828, - "longitude": -76.1563, - "metro_code": 512, - "time_zone": "America/New_York" - }, - "postal": { - "code": "21654" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4361885, - "iso_code": "MD", - "names": { - "de": "Maryland", - "en": "Maryland", - "es": "Maryland", - "fr": "Maryland", - "ja": "メリーランド州", - "pt-BR": "Maryland", - "ru": "Мэриленд", - "zh-CN": "马里兰州" - } - } - ] - } - }, - { - "hostname": "googleads.g.doubleclick.net", - "ip": "172.253.122.156", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "static.doubleclick.net", - "ip": "142.251.111.149", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "jnn-pa.googleapis.com", - "ip": "172.253.122.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.google.com", - "ip": "172.253.63.104", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -87656,8 +87671,8 @@ } }, { - "hostname": "i.ytimg.com", - "ip": "142.251.16.119", + "hostname": "googleads.g.doubleclick.net", + "ip": "172.253.63.154", "geoip": { "continent": { "code": "NA", @@ -87710,8 +87725,8 @@ } }, { - "hostname": "yt3.ggpht.com", - "ip": "142.251.163.132", + "hostname": "static.doubleclick.net", + "ip": "142.251.163.149", "geoip": { "continent": { "code": "NA", @@ -87764,8 +87779,8 @@ } }, { - "hostname": "api.mapbox.com", - "ip": "18.165.83.107", + "hostname": "jnn-pa.googleapis.com", + "ip": "142.251.16.95", "geoip": { "continent": { "code": "NA", @@ -87818,8 +87833,8 @@ } }, { - "hostname": "www.gstatic.com", - "ip": "172.253.63.94", + "hostname": "www.google.com", + "ip": "172.253.63.99", "geoip": { "continent": { "code": "NA", @@ -87872,20 +87887,14 @@ } }, { - "hostname": "openmaptiles.github.io", - "ip": "185.199.109.153", + "hostname": "i.ytimg.com", + "ip": "142.250.31.119", "geoip": { "city": { - "geoname_id": 5391959, + "geoname_id": 4364745, "names": { - "de": "San Francisco", - "en": "San Francisco", - "es": "San Francisco", - "fr": "San Francisco", - "ja": "サンフランシスコ", - "pt-BR": "São Francisco", - "ru": "Сан-Франциско", - "zh-CN": "旧金山" + "en": "Oxford", + "ru": "Оксфорд" } }, "continent": { @@ -87917,14 +87926,246 @@ } }, "location": { - "accuracy_radius": 20, - "latitude": 37.7642, - "longitude": -122.3993, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "accuracy_radius": 50, + "latitude": 38.6828, + "longitude": -76.1563, + "metro_code": 512, + "time_zone": "America/New_York" }, "postal": { - "code": "94107" + "code": "21654" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4361885, + "iso_code": "MD", + "names": { + "de": "Maryland", + "en": "Maryland", + "es": "Maryland", + "fr": "Maryland", + "ja": "メリーランド州", + "pt-BR": "Maryland", + "ru": "Мэриленд", + "zh-CN": "马里兰州" + } + } + ] + } + }, + { + "hostname": "yt3.ggpht.com", + "ip": "172.253.63.132", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "api.mapbox.com", + "ip": "18.165.83.21", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "www.gstatic.com", + "ip": "142.251.111.94", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "openmaptiles.github.io", + "ip": "185.199.108.153", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 34.0544, + "longitude": -118.244, + "time_zone": "America/Los_Angeles" }, "registered_country": { "geoname_id": 6252001, @@ -87972,7 +88213,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:18:28", + "@generated": "Sun, 24 Dec 2023 03:19:41", "site": [ { "@name": "https://chauffage-urbain.beta.gouv.fr", @@ -88136,7 +88377,7 @@ "type": "dns", "host": "chauffage-urbain.beta.gouv.fr.", "matched-at": "chauffage-urbain.beta.gouv.fr", - "timestamp": "2023-12-17T03:24:41.737275792Z", + "timestamp": "2023-12-24T03:25:55.735840508Z", "matcher-status": true }, { @@ -88171,7 +88412,7 @@ "extracted-results": [ "betagouv-redirections.osc-fr1.scalingo.io." ], - "timestamp": "2023-12-17T03:24:41.834368197Z", + "timestamp": "2023-12-24T03:25:55.87379648Z", "matcher-status": true }, { @@ -88209,8 +88450,8 @@ "type": "http", "host": "https://chauffage-urbain.beta.gouv.fr", "matched-at": "https://chauffage-urbain.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T03:25:45.732168446Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T03:27:00.975774176Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chauffage-urbain.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chauffage-urbain.beta.gouv.fr/'", "matcher-status": true }, @@ -88225,7 +88466,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -88239,8 +88481,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T03:31:24.975923307Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T03:32:40.490291679Z", "matcher-status": true }, { @@ -88254,7 +88496,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -88268,8 +88511,8 @@ "extracted-results": [ "chauffage-urbain.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T03:31:24.976033364Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T03:32:40.490411493Z", "matcher-status": true }, { @@ -88284,7 +88527,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -88298,8 +88542,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T03:31:26.147361882Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T03:32:41.721555686Z", "matcher-status": true }, { @@ -88314,7 +88558,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -88328,8 +88573,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T03:31:26.333753848Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T03:32:41.912605304Z", "matcher-status": true } ], @@ -88337,7 +88582,7 @@ { "requestedUrl": "https://chauffage-urbain.beta.gouv.fr/", "finalUrl": "https://france-chaleur-urbaine.beta.gouv.fr/", - "fetchTime": "2023-12-17T03:18:42.489Z", + "fetchTime": "2023-12-24T03:19:55.328Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://chauffage-urbain.beta.gouv.fr/) was redirected to https://france-chaleur-urbaine.beta.gouv.fr/. Try testing the second URL directly." ], @@ -88402,53 +88647,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 25587, + "numericValue": 25424, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3203, - "firstMeaningfulPaint": 3203, - "largestContentfulPaint": 16195, - "interactive": 25587, - "speedIndex": 11823, - "totalBlockingTime": 1498, - "maxPotentialFID": 303, - "cumulativeLayoutShift": 0.8337536856333414, - "cumulativeLayoutShiftMainFrame": 0.8337536856333414, - "totalCumulativeLayoutShift": 0.8337536856333414, + "firstContentfulPaint": 3181, + "firstMeaningfulPaint": 3181, + "largestContentfulPaint": 15874, + "interactive": 25424, + "speedIndex": 12477, + "totalBlockingTime": 1508, + "maxPotentialFID": 310, + "cumulativeLayoutShift": 0.812059917555915, + "cumulativeLayoutShiftMainFrame": 0.812059917555915, + "totalCumulativeLayoutShift": 0.812059917555915, "observedTimeOrigin": 0, - "observedTimeOriginTs": 217602545, + "observedTimeOriginTs": 263526079, "observedNavigationStart": 0, - "observedNavigationStartTs": 217602545, - "observedFirstPaint": 733, - "observedFirstPaintTs": 218335753, - "observedFirstContentfulPaint": 733, - "observedFirstContentfulPaintTs": 218335753, - "observedFirstContentfulPaintAllFrames": 733, - "observedFirstContentfulPaintAllFramesTs": 218335753, - "observedFirstMeaningfulPaint": 733, - "observedFirstMeaningfulPaintTs": 218335753, - "observedLargestContentfulPaint": 1366, - "observedLargestContentfulPaintTs": 218968540, - "observedLargestContentfulPaintAllFrames": 1366, - "observedLargestContentfulPaintAllFramesTs": 218968540, - "observedTraceEnd": 5845, - "observedTraceEndTs": 223447771, - "observedLoad": 1740, - "observedLoadTs": 219342786, - "observedDomContentLoaded": 1252, - "observedDomContentLoadedTs": 218854342, - "observedCumulativeLayoutShift": 0.8337536856333414, - "observedCumulativeLayoutShiftMainFrame": 0.8337536856333414, - "observedTotalCumulativeLayoutShift": 0.8337536856333414, - "observedFirstVisualChange": 738, - "observedFirstVisualChangeTs": 218340545, - "observedLastVisualChange": 2038, - "observedLastVisualChangeTs": 219640545, - "observedSpeedIndex": 1542, - "observedSpeedIndexTs": 219144567 + "observedNavigationStartTs": 263526079, + "observedFirstPaint": 828, + "observedFirstPaintTs": 264354432, + "observedFirstContentfulPaint": 828, + "observedFirstContentfulPaintTs": 264354432, + "observedFirstContentfulPaintAllFrames": 828, + "observedFirstContentfulPaintAllFramesTs": 264354432, + "observedFirstMeaningfulPaint": 828, + "observedFirstMeaningfulPaintTs": 264354432, + "observedLargestContentfulPaint": 1377, + "observedLargestContentfulPaintTs": 264902974, + "observedLargestContentfulPaintAllFrames": 1377, + "observedLargestContentfulPaintAllFramesTs": 264902974, + "observedTraceEnd": 6153, + "observedTraceEndTs": 269679157, + "observedLoad": 1918, + "observedLoadTs": 265444495, + "observedDomContentLoaded": 1403, + "observedDomContentLoadedTs": 264928694, + "observedCumulativeLayoutShift": 0.812059917555915, + "observedCumulativeLayoutShiftMainFrame": 0.812059917555915, + "observedTotalCumulativeLayoutShift": 0.812059917555915, + "observedFirstVisualChange": 830, + "observedFirstVisualChangeTs": 264356079, + "observedLastVisualChange": 2163, + "observedLastVisualChangeTs": 265689079, + "observedSpeedIndex": 1616, + "observedSpeedIndexTs": 265142394 }, { "lcpInvalidated": false @@ -88470,19 +88715,19 @@ "numScripts": 37, "numStylesheets": 5, "numFonts": 8, - "numTasks": 2945, - "numTasksOver10ms": 31, - "numTasksOver25ms": 16, + "numTasks": 3011, + "numTasksOver10ms": 27, + "numTasksOver25ms": 14, "numTasksOver50ms": 8, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.218, - "throughput": 48582548.03692215, - "maxRtt": 83.42999999999999, - "maxServerLatency": 95.11800000000002, - "totalByteWeight": 4991243, - "totalTaskTime": 1612.4740000000268, - "mainDocumentTransferSize": 18004 + "rtt": 5.192, + "throughput": 49965257.69969026, + "maxRtt": 85.406, + "maxServerLatency": 98.342, + "totalByteWeight": 5028967, + "totalTaskTime": 1574.6640000000077, + "mainDocumentTransferSize": 18014 } ] } @@ -88623,7 +88868,195 @@ "url": "https://classe-a-12.beta.gouv.fr", "category": "startup", "betaId": "classe-a-12", - "http": null, + "http": { + "url": "https://classe-a-12.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 24 Dec 2023 03:38:09 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Length": "938", + "accept-ranges": "bytes", + "age": "0", + "content-encoding": "gzip", + "content-type": "text/html", + "date": "Sun, 24 Dec 2023 03:38:07 GMT", + "etag": "\"8f7-5e774388ab981-gzip\"", + "last-modified": "Tue, 30 Aug 2022 12:07:14 GMT", + "server": "Apache", + "vary": "Accept-Encoding", + "via": "1.1 alproxy" + }, + "scan_id": 45754619, + "score": 20, + "start_time": "Sun, 24 Dec 2023 03:32:36 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 5, + "tests_passed": 7, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://classe-a-12.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://classe-a-12.beta.gouv.fr/", + "https://classe-a-12.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": { "token": "gx4z", "url": "https://classe-a-12.beta.gouv.fr", @@ -88643,32 +89076,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T03:35:43Z", - "next_check_at": "2023-12-17T04:35:12Z", + "last_check_at": "2023-12-24T03:43:17Z", + "next_check_at": "2023-12-24T04:43:05Z", "mute_until": "forever", "favicon_url": "https://classe-a-12.beta.gouv.fr/favicons/favicon-192x192.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T02:36:09Z", + "tested_at": "2023-12-24T03:43:20Z", "expires_at": "2024-02-24T07:34:04Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.875, "timings": { "redirect": 0, - "namelookup": 169, - "connection": 105, - "handshake": 111, - "response": 253, - "total": 638 + "namelookup": 249, + "connection": 139, + "handshake": 145, + "response": 368, + "total": 901 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { "host": "classe-a-12.beta.gouv.fr", @@ -88896,7 +89329,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -89043,7 +89476,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", - "finding": "69 >= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", @@ -89246,14 +89679,14 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "1702785121" + "finding": "1703389153" }, { "id": "HTTP_headerAge", "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "52 seconds" + "finding": "54 seconds" }, { "id": "HSTS", @@ -89809,7 +90242,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "103" } ], "thirdparties": { @@ -89829,7 +90262,7 @@ "value": "1", "domain": "classe-a-12.beta.gouv.fr", "path": "/", - "expires": 1702786886, + "expires": 1703390918, "size": 16, "httpOnly": false, "secure": false, @@ -89841,10 +90274,10 @@ }, { "name": "_pk_id.72.5fc2", - "value": "ea2758a80d1c8714.1702785087.", + "value": "330fa9a9c6794091.1703389118.", "domain": "classe-a-12.beta.gouv.fr", "path": "/", - "expires": 1736740287, + "expires": 1737344318, "size": 42, "httpOnly": false, "secure": false, @@ -89857,11 +90290,11 @@ ], "headers": { "accept-ranges": "bytes", - "age": "1035", + "age": "570", "content-encoding": "br", "content-length": "788", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 03:34:10 GMT", + "date": "Sun, 24 Dec 2023 03:29:06 GMT", "etag": "\"8f7-5e774388ab981-br\"", "last-modified": "Tue, 30 Aug 2022 12:07:14 GMT", "server": "Apache", @@ -89927,7 +90360,7 @@ }, { "hostname": "use.fontawesome.com", - "ip": "172.64.141.13", + "ip": "172.64.140.13", "geoip": { "continent": { "code": "NA", @@ -90100,7 +90533,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:35:45", + "@generated": "Sun, 24 Dec 2023 03:30:45", "site": [ { "@name": "https://classe-a-12.beta.gouv.fr", @@ -90222,7 +90655,7 @@ { "requestedUrl": "https://classe-a-12.beta.gouv.fr/", "finalUrl": "https://classe-a-12.beta.gouv.fr/", - "fetchTime": "2023-12-17T03:36:00.266Z", + "fetchTime": "2023-12-24T03:30:59.579Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete." ], @@ -90235,7 +90668,7 @@ "snapshot" ], "id": "performance", - "score": 0.6125747680664062 + "score": 0.6125143051147461 }, "accessibility": { "title": "Accessibility", @@ -90287,53 +90720,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3666, + "numericValue": 4048, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2374, - "firstMeaningfulPaint": 3666, - "largestContentfulPaint": 5060, - "interactive": 3666, - "speedIndex": 3154, - "totalBlockingTime": 109, - "maxPotentialFID": 106, - "cumulativeLayoutShift": 0.24990216233995227, - "cumulativeLayoutShiftMainFrame": 0.24990216233995227, - "totalCumulativeLayoutShift": 0.24990216233995227, + "firstContentfulPaint": 2819, + "firstMeaningfulPaint": 4048, + "largestContentfulPaint": 5549, + "interactive": 4048, + "speedIndex": 3779, + "totalBlockingTime": 231, + "maxPotentialFID": 199, + "cumulativeLayoutShift": 0.24974060228135855, + "cumulativeLayoutShiftMainFrame": 0.24974060228135855, + "totalCumulativeLayoutShift": 0.24974060228135855, "observedTimeOrigin": 0, - "observedTimeOriginTs": 333277093, + "observedTimeOriginTs": 315155188, "observedNavigationStart": 0, - "observedNavigationStartTs": 333277093, - "observedFirstPaint": 1089, - "observedFirstPaintTs": 334365820, - "observedFirstContentfulPaint": 1089, - "observedFirstContentfulPaintTs": 334365820, - "observedFirstContentfulPaintAllFrames": 1089, - "observedFirstContentfulPaintAllFramesTs": 334365820, - "observedFirstMeaningfulPaint": 1651, - "observedFirstMeaningfulPaintTs": 334927651, - "observedLargestContentfulPaint": 1664, - "observedLargestContentfulPaintTs": 334940939, - "observedLargestContentfulPaintAllFrames": 1664, - "observedLargestContentfulPaintAllFramesTs": 334940939, - "observedTraceEnd": 45014, - "observedTraceEndTs": 378291149, - "observedLoad": 1893, - "observedLoadTs": 335169835, - "observedDomContentLoaded": 1085, - "observedDomContentLoadedTs": 334362482, - "observedCumulativeLayoutShift": 0.24990216233995227, - "observedCumulativeLayoutShiftMainFrame": 0.24990216233995227, - "observedTotalCumulativeLayoutShift": 0.24990216233995227, - "observedFirstVisualChange": 1092, - "observedFirstVisualChangeTs": 334369093, - "observedLastVisualChange": 1659, - "observedLastVisualChangeTs": 334936093, - "observedSpeedIndex": 1225, - "observedSpeedIndexTs": 334501786 + "observedNavigationStartTs": 315155188, + "observedFirstPaint": 1240, + "observedFirstPaintTs": 316394933, + "observedFirstContentfulPaint": 1240, + "observedFirstContentfulPaintTs": 316394933, + "observedFirstContentfulPaintAllFrames": 1240, + "observedFirstContentfulPaintAllFramesTs": 316394933, + "observedFirstMeaningfulPaint": 2021, + "observedFirstMeaningfulPaintTs": 317175877, + "observedLargestContentfulPaint": 2021, + "observedLargestContentfulPaintTs": 317175877, + "observedLargestContentfulPaintAllFrames": 2021, + "observedLargestContentfulPaintAllFramesTs": 317175877, + "observedTraceEnd": 45011, + "observedTraceEndTs": 360166598, + "observedLoad": 2305, + "observedLoadTs": 317460616, + "observedDomContentLoaded": 1238, + "observedDomContentLoadedTs": 316392918, + "observedCumulativeLayoutShift": 0.24974060228135855, + "observedCumulativeLayoutShiftMainFrame": 0.24974060228135855, + "observedTotalCumulativeLayoutShift": 0.24974060228135855, + "observedFirstVisualChange": 1248, + "observedFirstVisualChangeTs": 316403188, + "observedLastVisualChange": 2015, + "observedLastVisualChangeTs": 317170188, + "observedSpeedIndex": 1382, + "observedSpeedIndexTs": 316537171 }, { "lcpInvalidated": false @@ -90355,18 +90788,18 @@ "numScripts": 4, "numStylesheets": 3, "numFonts": 8, - "numTasks": 1210, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, + "numTasks": 1222, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 8.603000000000002, - "throughput": 25913172.613551028, - "maxRtt": 149.518, - "maxServerLatency": 18.311999999999983, - "totalByteWeight": 3079800, - "totalTaskTime": 206.26899999999932, + "rtt": 2.3349999999999995, + "throughput": 21281704.129911125, + "maxRtt": 152.68, + "maxServerLatency": 143.425, + "totalByteWeight": 3080117, + "totalTaskTime": 345.4639999999975, "mainDocumentTransferSize": 934 } ] @@ -90459,8 +90892,9 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "F", + "apdex": 0.875, + "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -90473,7 +90907,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.6125747680664062, + "lighthouse_performance": 0.6125143051147461, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.71, "lighthouse_accessibilityGrade": "B", @@ -90496,7 +90930,250 @@ "url": "https://competencevalidee.pole-emploi.fr", "category": "startup", "betaId": "competence.validee", - "http": null, + "http": { + "url": "https://competencevalidee.pole-emploi.fr", + "algorithm_version": 2, + "end_time": "Sun, 24 Dec 2023 03:38:07 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Cache-Control": "max-age=900", + "Content-Encoding": "gzip", + "Content-Length": "513", + "Content-Type": "text/html", + "Date": "Sun, 24 Dec 2023 03:38:06 GMT", + "Expires": "Sun, 24 Dec 2023 03:53:06 GMT", + "Last-Modified": "Mon, 04 Dec 2023 13:24:00 GMT", + "Set-Cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c39d50487bf67f2a0b70d7a48cbc0ab4b608d525ef5b3f79ed92429ae2c4a9baec49e20a399bf2ba34191ae6c26a3ff886; Path=/; Domain=.candidat.pole-emploi.fr", + "Vary": "Accept-Encoding" + }, + "scan_id": 45754663, + "score": 0, + "start_time": "Sun, 24 Dec 2023 03:37:08 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 7, + "tests_passed": 5, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "BIGipServerPOOL_PROD_HTTP_ERR": { + "domain": "candidat.pole-emploi.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "BIGipServerPOOL_TAS_SDDC_HTTP": { + "domain": "candidat.pole-emploi.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "BIGipServerPOOL_Z1_PROD_MOP_HTTP": { + "domain": "candidat.pole-emploi.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": true + }, + "TS014195a1": { + "domain": ".candidat.pole-emploi.fr", + "expires": null, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + }, + "TS01a771c6": { + "domain": "candidat.pole-emploi.fr", + "expires": null, + "httponly": false, + "max-age": null, + "path": "/", + "port": null, + "samesite": false, + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-without-secure-flag", + "score_description": "Cookies set without using the Secure flag or set over HTTP", + "score_modifier": -20 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://candidat.pole-emploi.fr/competences-validees/", + "redirects": true, + "route": [ + "http://competencevalidee.pole-emploi.fr/", + "https://competencevalidee.pole-emploi.fr/", + "https://candidat.pole-emploi.fr/competences-validees/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://cdn.tagcommander.com/4340/tc_PoleEmploi_24.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "competencevalidee.pole-emploi.fr", @@ -90508,43 +91185,43 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", + "version": "8.2p1 Ubuntu 4ubuntu0.10", "vulnerabilities": [ { - "cvss": "6.8", + "type": "cve", "id": "CVE-2020-15778", - "is_exploit": "false", - "type": "cve" + "cvss": "6.8", + "is_exploit": "false" }, { - "cvss": "6.8", + "type": "githubexploit", "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "is_exploit": "true", - "type": "githubexploit" + "cvss": "6.8", + "is_exploit": "true" }, { - "cvss": "6.8", + "type": "githubexploit", "id": "10213DBE-F683-58BB-B6D3-353173626207", - "is_exploit": "true", - "type": "githubexploit" + "cvss": "6.8", + "is_exploit": "true" }, { - "cvss": "5.0", + "type": "prion", "id": "PRION:CVE-2020-12062", - "is_exploit": "false", - "type": "prion" + "cvss": "5.0", + "is_exploit": "false" }, { - "cvss": "5.0", + "type": "prion", "id": "PRION:CVE-2016-20012", - "is_exploit": "false", - "type": "prion" + "cvss": "5.0", + "is_exploit": "false" }, { - "cvss": "5.0", + "type": "cve", "id": "CVE-2020-12062", - "is_exploit": "false", - "type": "cve" + "cvss": "5.0", + "is_exploit": "false" } ] } @@ -90557,22 +91234,22 @@ "version": "1.17.0", "vulnerabilities": [ { - "cvss": "7.8", + "type": "prion", "id": "PRION:CVE-2019-9513", - "is_exploit": "false", - "type": "prion" + "cvss": "7.8", + "is_exploit": "false" }, { - "cvss": "7.8", + "type": "prion", "id": "PRION:CVE-2019-9511", - "is_exploit": "false", - "type": "prion" + "cvss": "7.8", + "is_exploit": "false" }, { - "cvss": "6.8", + "type": "prion", "id": "PRION:CVE-2019-9516", - "is_exploit": "false", - "type": "prion" + "cvss": "6.8", + "is_exploit": "false" } ] } @@ -90585,22 +91262,22 @@ "version": "1.17.0", "vulnerabilities": [ { - "cvss": "7.8", + "type": "prion", "id": "PRION:CVE-2019-9513", - "is_exploit": "false", - "type": "prion" + "cvss": "7.8", + "is_exploit": "false" }, { - "cvss": "7.8", + "type": "prion", "id": "PRION:CVE-2019-9511", - "is_exploit": "false", - "type": "prion" + "cvss": "7.8", + "is_exploit": "false" }, { - "cvss": "6.8", + "type": "prion", "id": "PRION:CVE-2019-9516", - "is_exploit": "false", - "type": "prion" + "cvss": "6.8", + "is_exploit": "false" } ] } @@ -90958,7 +91635,7 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "222 >= 60 days" + "finding": "215 >= 60 days" }, { "id": "cert_notBefore", @@ -91161,7 +91838,7 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "1702785437" + "finding": "1703389172" }, { "id": "HSTS_time", @@ -91724,7 +92401,7 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "71" + "finding": "72" } ], "thirdparties": { @@ -91747,75 +92424,75 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/servlet/publicationList?applicationId=pn302" + "url": "https://composants-pe-communs.pe-qvr.fr/commun/v1/pe-cookies.js" }, { "type": "unknown", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" + "url": "https://guidances-applicatives.pole-emploi.fr/know/servlet/publicationList?applicationId=pn302" }, { "type": "unknown", - "url": "https://cdn.trustcommander.net/privacy/4340/privacy_v2_25.js" + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq8ygf2za6cx9u23" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/OpenSans-VariableFont_wdth,wght.ceb05254cedfa895b512.ttf" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=388&version=1847960380" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Regular.fc2b5060f7accec5cf74.ttf" }, { "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent/" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Bold.f80816a5455d171f948d.ttf" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/OpenSans-VariableFont_wdth,wght.ceb05254cedfa895b512.ttf" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/marianne.0d621c63e61c8948641b0100e0a2a8c1.svg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Regular.fc2b5060f7accec5cf74.ttf" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Logo-CV-new23.ae99558763c1320280ec1ae927cfaf5a.svg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Bold.f80816a5455d171f948d.ttf" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/hero-illustration.0e312cfeedc0b3a7c24beede6da473d1.svg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/marianne.0d621c63e61c8948641b0100e0a2a8c1.svg" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/check-picture.29676f5553498a1cd869.jpg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Logo-CV-new23.ae99558763c1320280ec1ae927cfaf5a.svg" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/logo-ue.35e0feee318a50ac19cf0c3774bb6fbc.svg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/hero-illustration.0e312cfeedc0b3a7c24beede6da473d1.svg" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/OpenSans-VariableFont_wdth,wght.ceb05254cedfa895b512.ttf" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/check-picture.29676f5553498a1cd869.jpg" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Regular.fc2b5060f7accec5cf74.ttf" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/logo-ue.35e0feee318a50ac19cf0c3774bb6fbc.svg" + "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Bold.f80816a5455d171f948d.ttf" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq8ygf2za6cx9u23" + "url": "https://hd.pe.fr/event?s=475540&idclient=lqixwkvjlevjlc3x" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/OpenSans-VariableFont_wdth,wght.ceb05254cedfa895b512.ttf" + "url": "https://privacy.trustcommander.net/privacy-consent/" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Regular.fc2b5060f7accec5cf74.ttf" + "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/competences-validees/static/media/Roboto-Bold.f80816a5455d171f948d.ttf" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=401&version=1847960380" }, { "type": "google fonts", @@ -91835,24 +92512,28 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/engine?pkgId=388&version=-1244703445" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/engine?pkgId=401&version=841824714" + }, + { + "type": "unknown", + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/data?pkgId=401&applicationLang=fr" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/data?pkgId=388&applicationLang=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/service/modalEmbeddedMessageService/fond.png" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn302&u=c6cnu55k37p&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1702785392555&tl=fr&al=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn302&u=rxnmv55a94k&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1703389127287&tl=fr&al=fr" } ], "cookies": [ { "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAKwAPVqwDuAMwCcIAL5A", + "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAGwB2AMZgATMIAeIAL5A", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736913389, + "expires": 1737517125, "size": 96, "httpOnly": false, "secure": true, @@ -91867,7 +92548,7 @@ "value": "%22exempt%22", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736913389, + "expires": 1737517125, "size": 22, "httpOnly": false, "secure": true, @@ -91879,11 +92560,11 @@ }, { "name": "TCPID", - "value": "123120356292351657857", + "value": "1231203384511243641215", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736740589, - "size": 26, + "expires": 1737344325, + "size": 27, "httpOnly": false, "secure": false, "session": false, @@ -91894,10 +92575,10 @@ }, { "name": "_pcid", - "value": "%7B%22browserId%22%3A%22lq8ygf2za6cx9u23%22%2C%22_t%22%3A%22m5xddwf8%22%7D", + "value": "%7B%22browserId%22%3A%22lqixwkvjlevjlc3x%22%2C%22_t%22%3A%22m67cu27v%22%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736913389, + "expires": 1737517125, "size": 79, "httpOnly": false, "secure": true, @@ -91909,7 +92590,7 @@ }, { "name": "TS014195a1", - "value": "0150c672c3772e77ebbb3dc1806eef304750f678249f7fa7205615c36d1092d5fe66b502e31b7440ca277e7db6711a9f3d3e2105c7", + "value": "0150c672c3385631d27fd5ae860dbcfa83211128e6140b7dee08ee2c229b90298667974895183d2d1634563c1c3c2d7584a02d360a", "domain": ".candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -91942,10 +92623,10 @@ "content-encoding": "gzip", "content-length": "513", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 03:56:28 GMT", - "expires": "Sun, 17 Dec 2023 04:11:28 GMT", + "date": "Sun, 24 Dec 2023 03:38:44 GMT", + "expires": "Sun, 24 Dec 2023 03:53:44 GMT", "last-modified": "Mon, 04 Dec 2023 13:23:59 GMT", - "set-cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3772e77ebbb3dc1806eef304750f678249f7fa7205615c36d1092d5fe66b502e31b7440ca277e7db6711a9f3d3e2105c7; Path=/; Domain=.candidat.pole-emploi.fr", + "set-cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3385631d27fd5ae860dbcfa83211128e6140b7dee08ee2c229b90298667974895183d2d1634563c1c3c2d7584a02d360a; Path=/; Domain=.candidat.pole-emploi.fr", "vary": "Accept-Encoding" }, "endpoints": [ @@ -92164,8 +92845,8 @@ } }, { - "hostname": "guidances-applicatives.pole-emploi.fr", - "ip": "185.215.65.135", + "hostname": "composants-pe-communs.pe-qvr.fr", + "ip": "185.215.66.178", "geoip": { "continent": { "code": "EU", @@ -92220,130 +92901,64 @@ } }, { - "hostname": "tag.aticdn.net", - "ip": "18.160.18.16", + "hostname": "guidances-applicatives.pole-emploi.fr", + "ip": "185.215.65.135", "geoip": { "continent": { - "code": "NA", - "geoname_id": 6255149, + "code": "EU", + "geoname_id": 6255148, "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" } }, "country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } } } }, { - "hostname": "cdn.trustcommander.net", - "ip": "192.229.163.55", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "ru": "Техас", - "zh-CN": "德克萨斯州" - } - } - ] - } - }, - { - "hostname": "hd.pe.fr", - "ip": "18.160.18.3", + "hostname": "tag.aticdn.net", + "ip": "54.230.163.47", "geoip": { "continent": { "code": "NA", @@ -92396,102 +93011,212 @@ } }, { - "hostname": "privacy.trustcommander.net", - "ip": "13.39.212.91", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - }, - { - "hostname": "fonts.gstatic.com", - "ip": "172.253.62.94", + "hostname": "hd.pe.fr", + "ip": "18.160.18.3", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "privacy.trustcommander.net", + "ip": "13.37.40.156", + "geoip": { + "city": { + "geoname_id": 2988507, + "names": { + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 48.8323, + "longitude": 2.4075, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "75001" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "pt-BR": "Ilha de França" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] + } + }, + { + "hostname": "www.pole-emploi.fr", + "ip": "185.215.64.1", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -92652,7 +93377,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:42:21", + "@generated": "Sun, 24 Dec 2023 03:36:43", "site": [ { "@name": "https://competencevalidee.pole-emploi.fr", @@ -92883,7 +93608,7 @@ "extracted-results": [ "1 213.32.73.220." ], - "timestamp": "2023-12-17T03:58:41.219693331Z", + "timestamp": "2023-12-24T03:40:56.51772997Z", "matcher-status": true }, { @@ -92918,7 +93643,7 @@ "type": "dns", "host": "competencevalidee.pole-emploi.fr.", "matched-at": "competencevalidee.pole-emploi.fr", - "timestamp": "2023-12-17T03:58:41.638882481Z", + "timestamp": "2023-12-24T03:40:56.517890162Z", "matcher-status": true }, { @@ -92956,7 +93681,7 @@ "extracted-results": [ "\"v=spf1 include:spf.mailjet.com ?all\"" ], - "timestamp": "2023-12-17T03:58:42.251468875Z", + "timestamp": "2023-12-24T03:40:57.700842936Z", "matcher-status": true }, { @@ -92982,7 +93707,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr", "ip": "51.68.90.157", - "timestamp": "2023-12-17T03:59:29.733431088Z", + "timestamp": "2023-12-24T03:41:43.088482113Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr'", "matcher-status": true }, @@ -93009,7 +93734,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr", "ip": "51.68.90.157", - "timestamp": "2023-12-17T03:59:29.733481862Z", + "timestamp": "2023-12-24T03:41:43.088532477Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr'", "matcher-status": true }, @@ -93037,7 +93762,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr/robots.txt", "ip": "51.68.90.157", - "timestamp": "2023-12-17T03:59:57.69637604Z", + "timestamp": "2023-12-24T03:42:08.820603447Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr/robots.txt'", "matcher-status": true }, @@ -93077,7 +93802,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr/", "ip": "51.68.90.157", - "timestamp": "2023-12-17T04:00:15.058892171Z", + "timestamp": "2023-12-24T03:42:26.475192955Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: competencevalidee.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr/'", "matcher-status": true }, @@ -93124,10 +93849,10 @@ "host": "competencevalidee.pole-emploi.fr:22", "matched-at": "competencevalidee.pole-emploi.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" ], "ip": "51.68.90.157", - "timestamp": "2023-12-17T04:01:15.055104644Z", + "timestamp": "2023-12-24T03:43:17.552271275Z", "matcher-status": true }, { @@ -93141,7 +93866,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -93156,7 +93882,7 @@ "Entrust, Inc." ], "ip": "51.68.90.157", - "timestamp": "2023-12-17T04:01:56.316861411Z", + "timestamp": "2023-12-24T03:44:02.841722221Z", "matcher-status": true }, { @@ -93170,7 +93896,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -93185,7 +93912,7 @@ "competencevalidee.pole-emploi.fr" ], "ip": "51.68.90.157", - "timestamp": "2023-12-17T04:01:56.316989379Z", + "timestamp": "2023-12-24T03:44:02.841855751Z", "matcher-status": true }, { @@ -93200,7 +93927,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -93215,7 +93943,7 @@ "tls12" ], "ip": "51.68.90.157", - "timestamp": "2023-12-17T04:01:59.367146181Z", + "timestamp": "2023-12-24T03:44:06.166310345Z", "matcher-status": true } ], @@ -93223,7 +93951,7 @@ { "requestedUrl": "https://competencevalidee.pole-emploi.fr/", "finalUrl": "https://candidat.pole-emploi.fr/competences-validees/", - "fetchTime": "2023-12-17T03:42:36.127Z", + "fetchTime": "2023-12-24T03:36:57.225Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://competencevalidee.pole-emploi.fr/) was redirected to https://candidat.pole-emploi.fr/competences-validees/. Try testing the second URL directly." ], @@ -93236,7 +93964,7 @@ "snapshot" ], "id": "performance", - "score": 0.8597211837768555 + "score": 0.7925365447998047 }, "accessibility": { "title": "Accessibility", @@ -93288,53 +94016,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7029, + "numericValue": 14668, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3922, - "firstMeaningfulPaint": 4368, - "largestContentfulPaint": 6112, - "interactive": 7029, - "speedIndex": 8344, - "totalBlockingTime": 144, - "maxPotentialFID": 165, - "cumulativeLayoutShift": 0.21175550058152942, - "cumulativeLayoutShiftMainFrame": 0.21175550058152942, - "totalCumulativeLayoutShift": 0.21175550058152942, + "firstContentfulPaint": 3220, + "firstMeaningfulPaint": 8181, + "largestContentfulPaint": 7053, + "interactive": 14668, + "speedIndex": 11325, + "totalBlockingTime": 306, + "maxPotentialFID": 168, + "cumulativeLayoutShift": 0.20718972036573624, + "cumulativeLayoutShiftMainFrame": 0.20718972036573624, + "totalCumulativeLayoutShift": 0.20718972036573624, "observedTimeOrigin": 0, - "observedTimeOriginTs": 310958100, + "observedTimeOriginTs": 202511241, "observedNavigationStart": 0, - "observedNavigationStartTs": 310958100, - "observedFirstPaint": 1720, - "observedFirstPaintTs": 312677999, - "observedFirstContentfulPaint": 1720, - "observedFirstContentfulPaintTs": 312677999, - "observedFirstContentfulPaintAllFrames": 1720, - "observedFirstContentfulPaintAllFramesTs": 312677999, - "observedFirstMeaningfulPaint": 1720, - "observedFirstMeaningfulPaintTs": 312677999, - "observedLargestContentfulPaint": 1720, - "observedLargestContentfulPaintTs": 312677999, - "observedLargestContentfulPaintAllFrames": 1720, - "observedLargestContentfulPaintAllFramesTs": 312677999, - "observedTraceEnd": 4972, - "observedTraceEndTs": 315930255, - "observedLoad": 2665, - "observedLoadTs": 313623287, - "observedDomContentLoaded": 1626, - "observedDomContentLoadedTs": 312583788, - "observedCumulativeLayoutShift": 0.21175550058152942, - "observedCumulativeLayoutShiftMainFrame": 0.21175550058152942, - "observedTotalCumulativeLayoutShift": 0.21175550058152942, - "observedFirstVisualChange": 1729, - "observedFirstVisualChangeTs": 312687100, - "observedLastVisualChange": 2679, - "observedLastVisualChangeTs": 313637100, - "observedSpeedIndex": 1937, - "observedSpeedIndexTs": 312895317 + "observedNavigationStartTs": 202511241, + "observedFirstPaint": 1122, + "observedFirstPaintTs": 203633321, + "observedFirstContentfulPaint": 1122, + "observedFirstContentfulPaintTs": 203633321, + "observedFirstContentfulPaintAllFrames": 1122, + "observedFirstContentfulPaintAllFramesTs": 203633321, + "observedFirstMeaningfulPaint": 1624, + "observedFirstMeaningfulPaintTs": 204135008, + "observedLargestContentfulPaint": 1492, + "observedLargestContentfulPaintTs": 204003354, + "observedLargestContentfulPaintAllFrames": 1492, + "observedLargestContentfulPaintAllFramesTs": 204003354, + "observedTraceEnd": 3995, + "observedTraceEndTs": 206506119, + "observedLoad": 1688, + "observedLoadTs": 204199593, + "observedDomContentLoaded": 1028, + "observedDomContentLoadedTs": 203539385, + "observedCumulativeLayoutShift": 0.20718972036573624, + "observedCumulativeLayoutShiftMainFrame": 0.20718972036573624, + "observedTotalCumulativeLayoutShift": 0.20718972036573624, + "observedFirstVisualChange": 1130, + "observedFirstVisualChangeTs": 203641241, + "observedLastVisualChange": 3547, + "observedLastVisualChangeTs": 206058241, + "observedSpeedIndex": 1977, + "observedSpeedIndexTs": 204487820 }, { "lcpInvalidated": false @@ -93352,22 +94080,22 @@ "type": "debugdata", "items": [ { - "numRequests": 21, + "numRequests": 25, "numScripts": 7, "numStylesheets": 2, - "numFonts": 3, - "numTasks": 733, - "numTasksOver10ms": 6, - "numTasksOver25ms": 2, + "numFonts": 4, + "numTasks": 836, + "numTasksOver10ms": 9, + "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.2989999999999995, - "throughput": 4781142.601103175, - "maxRtt": 95.56899999999999, - "maxServerLatency": 6.449000000000012, - "totalByteWeight": 1784041, - "totalTaskTime": 271.53399999999937, + "rtt": 5.183999999999999, + "throughput": 8518092.761300137, + "maxRtt": 95.66399999999999, + "maxServerLatency": 11.619000000000014, + "totalByteWeight": 2136282, + "totalTaskTime": 369.76899999999773, "mainDocumentTransferSize": 1063 } ] @@ -93469,6 +94197,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "F", "nmapGrade": "E", "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", @@ -93478,9 +94207,9 @@ "cookiesGrade": "E", "cookiesCount": 6, "trackersGrade": "F", - "trackersCount": 27, - "lighthouse_performance": 0.8597211837768555, - "lighthouse_performanceGrade": "A", + "trackersCount": 28, + "lighthouse_performance": 0.7925365447998047, + "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -93508,30 +94237,30 @@ "http": { "url": "https://communaute.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 03:57:26 GMT", + "end_time": "Sun, 24 Dec 2023 03:46:23 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "8133", - "Content-Security-Policy": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-9yeRTfHQXoN7DC5gdSaN5A=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-9yeRTfHQXoN7DC5gdSaN5A=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "Content-Length": "8207", + "Content-Security-Policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-mNBV9KtRaS3OjTpYDvLk2w=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-mNBV9KtRaS3OjTpYDvLk2w=='; default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 03:57:24 GMT", + "Date": "Sun, 24 Dec 2023 03:46:21 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=NFEnqNdW7jwp41JR8DLmI1KjcDartTUC; expires=Sun, 15 Dec 2024 03:57:24 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=tac4gegkmfm4l1xx2aywahby5do0ldjq; expires=Sun, 31 Dec 2023 03:57:24 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HHTYQT4GPK07HZ5MD2X1HCBT", + "Set-Cookie": "csrftoken=rf5uRGXurQKCMzTrideYpaRyQA1dFOog; expires=Sun, 22 Dec 2024 03:46:21 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=9jdps19j76ovb9412qti2kf8p4qjbhzj; expires=Sun, 07 Jan 2024 03:46:21 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HJCYWKG4STRWSP9PCPDM11PM", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45539058, + "scan_id": 45754784, "score": 105, - "start_time": "Sun, 17 Dec 2023 03:47:47 GMT", + "start_time": "Sun, 24 Dec 2023 03:46:18 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -93544,9 +94273,9 @@ "output": { "data": { "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr/", + "*.sentry.io", "'self'", - "*.sentry.io" + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" @@ -93561,30 +94290,30 @@ "https://tally.so" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'self'", "cellar-c2.services.clever-cloud.com", - "data:" + "'self'", + "data:", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src": [ - "https://matomo.inclusion.beta.gouv.fr/", + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "'nonce-9yertfhqxon7dc5gdsan5a=='", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", "https://tally.so", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", + "'self'", + "'nonce-mnbv9ktras3ojtpydvlk2w=='", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src-elem": [ - "https://matomo.inclusion.beta.gouv.fr/", + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "'nonce-9yertfhqxon7dc5gdsan5a=='", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", "https://tally.so", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", + "'self'", + "'nonce-mnbv9ktras3ojtpydvlk2w=='", + "https://matomo.inclusion.beta.gouv.fr/" ], "style-src": [ "'unsafe-inline'", @@ -93637,7 +94366,7 @@ "data": { "csrftoken": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1734235045, + "expires": 1734839182, "httponly": false, "max-age": null, "path": "/", @@ -93647,7 +94376,7 @@ }, "sessionid": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1703995044, + "expires": 1704599181, "httponly": true, "max-age": null, "path": "/", @@ -93820,32 +94549,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T04:10:09Z", - "next_check_at": "2023-12-17T05:09:47Z", + "last_check_at": "2023-12-24T03:21:18Z", + "next_check_at": "2023-12-24T04:20:58Z", "mute_until": null, "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-16T23:11:36Z", + "tested_at": "2023-12-24T00:22:32Z", "expires_at": "2024-02-22T09:10:53Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.9, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 77, - "connection": 74, - "handshake": 80, - "response": 233, - "total": 463 + "namelookup": 140, + "connection": 126, + "handshake": 132, + "response": 240, + "total": 638 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "communaute.inclusion.beta.gouv.fr", @@ -93926,8 +94655,7 @@ }, { "service": { - "name": "http", - "product": "JBoss Enterprise Application Platform", + "name": "cpdlc", "id": "5911", "vulnerabilities": [] } @@ -94306,7 +95034,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", @@ -94544,14 +95272,14 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702785574" + "finding": "1703389713" }, { "id": "HSTS_time", @@ -94635,7 +95363,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fw32I43Ty+btyh6zEwSWpQ=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fw32I43Ty+btyh6zEwSWpQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-NwpsgBLUM3V1S4Mr14d+Lw=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-NwpsgBLUM3V1S4Mr14d+Lw=='; default-src 'self'" }, { "id": "Permissions-Policy", @@ -95153,70 +95881,70 @@ }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95224,7 +95952,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95232,7 +95960,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95240,7 +95968,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95248,7 +95976,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -95256,7 +95984,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -95264,595 +95992,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1702785677" + "finding": "1703389818" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-qWyDUc8uR4sO46TjtM/WWA=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-qWyDUc8uR4sO46TjtM/WWA=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-JpHzj/slOyfVJLoOeIgp2g=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-JpHzj/slOyfVJLoOeIgp2g=='; default-src 'self'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -95860,7 +96588,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -95869,7 +96597,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -95878,7 +96606,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -95887,7 +96615,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -95896,7 +96624,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -95904,7 +96632,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -95913,7 +96641,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -95922,7 +96650,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -95931,7 +96659,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -95940,14 +96668,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -95956,7 +96684,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -95965,7 +96693,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -95974,7 +96702,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -95983,7 +96711,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -95992,7 +96720,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -96001,7 +96729,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -96010,7 +96738,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -96019,7 +96747,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -96028,7 +96756,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -96037,315 +96765,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" @@ -96704,7 +97432,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", @@ -96949,7 +97677,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702785781" + "finding": "1703389921" }, { "id": "HSTS_time", @@ -97033,7 +97761,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-zO6rtZAX2Icy+DMVTM7/ng=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-zO6rtZAX2Icy+DMVTM7/ng=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-DuQhzfuHz1WsO7e76POHEg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-DuQhzfuHz1WsO7e76POHEg=='; default-src 'self'" }, { "id": "Permissions-Policy", @@ -97903,7 +98631,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", @@ -98148,7 +98876,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702785893" + "finding": "1703390025" }, { "id": "HSTS_time", @@ -98232,7 +98960,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-SLv5MgC6vWwnJnrRo1Op9Q=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-SLv5MgC6vWwnJnrRo1Op9Q=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-gNI5zXJCjLnMvbVeSaOMfQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-gNI5zXJCjLnMvbVeSaOMfQ=='; default-src 'self'" }, { "id": "Permissions-Policy", @@ -98750,70 +99478,70 @@ }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98821,7 +99549,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98829,7 +99557,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98837,7 +99565,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98845,7 +99573,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98853,7 +99581,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98861,595 +99589,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702785997" + "finding": "1703390129" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-b8luQcirQPhmQOID5n+UOQ=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-b8luQcirQPhmQOID5n+UOQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-otmMatLyifVxLM41Jih17Q=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-otmMatLyifVxLM41Jih17Q=='; default-src 'self'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -99457,7 +100185,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -99466,7 +100194,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -99475,7 +100203,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -99484,7 +100212,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -99493,7 +100221,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -99501,7 +100229,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -99510,7 +100238,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -99519,7 +100247,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -99528,7 +100256,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -99537,14 +100265,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -99553,7 +100281,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -99562,7 +100290,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99571,7 +100299,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99580,7 +100308,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99589,7 +100317,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99598,7 +100326,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -99607,7 +100335,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -99616,7 +100344,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -99625,7 +100353,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -99634,385 +100362,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -100020,7 +100748,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -100028,7 +100756,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -100036,7 +100764,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -100044,7 +100772,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -100052,7 +100780,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -100060,595 +100788,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702786103" + "finding": "1703390239" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-SltLGb9lx9Pm/xgCu/hogQ=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-SltLGb9lx9Pm/xgCu/hogQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nWaqJca4MEId/egfmgY4HQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nWaqJca4MEId/egfmgY4HQ=='; default-src 'self'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -100656,7 +101384,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -100665,7 +101393,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -100674,7 +101402,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -100683,7 +101411,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -100692,7 +101420,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -100700,7 +101428,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -100709,7 +101437,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -100718,7 +101446,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -100727,7 +101455,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -100736,14 +101464,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -100752,7 +101480,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -100761,7 +101489,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -100770,7 +101498,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -100779,7 +101507,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -100788,7 +101516,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -100797,7 +101525,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -100806,7 +101534,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -100815,7 +101543,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -100824,7 +101552,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -100833,315 +101561,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" @@ -101500,7 +102228,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", @@ -101738,14 +102466,14 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702786208" + "finding": "1703390343" }, { "id": "HSTS_time", @@ -101829,7 +102557,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-VlBn7ZI7+qpPmZ6Z/a0Jlg=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-VlBn7ZI7+qpPmZ6Z/a0Jlg=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-XZYMgLpzJtt6J+jbCe4imQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-XZYMgLpzJtt6J+jbCe4imQ=='; default-src 'self'" }, { "id": "Permissions-Policy", @@ -102347,70 +103075,70 @@ }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -102418,7 +103146,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -102426,7 +103154,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -102434,7 +103162,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -102442,7 +103170,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -102450,7 +103178,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -102458,595 +103186,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702786312" + "finding": "1703390453" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fdOuV0Gsjr+nQfTANb9lvw=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fdOuV0Gsjr+nQfTANb9lvw=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nS/Hx8eadqlpwzUizKwHPg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nS/Hx8eadqlpwzUizKwHPg=='; default-src 'self'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -103054,7 +103782,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -103063,7 +103791,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -103072,7 +103800,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -103081,7 +103809,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -103090,7 +103818,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -103098,7 +103826,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -103107,7 +103835,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -103116,7 +103844,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -103125,7 +103853,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -103134,14 +103862,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -103150,7 +103878,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -103159,7 +103887,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -103168,7 +103896,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -103177,7 +103905,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -103186,7 +103914,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -103195,7 +103923,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -103204,7 +103932,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -103213,7 +103941,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -103222,7 +103950,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -103231,385 +103959,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103617,7 +104345,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103625,7 +104353,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103633,7 +104361,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103641,7 +104369,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -103649,7 +104377,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -103657,595 +104385,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "67 >= 30 days" + "finding": "60 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702786428" + "finding": "1703390562" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-23BLuep0X5uoadAwBsvxXQ=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-23BLuep0X5uoadAwBsvxXQ=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-eXo73RKWVbJ7KrLVz9VJsg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-eXo73RKWVbJ7KrLVz9VJsg=='; default-src 'self'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -104253,7 +104981,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -104262,7 +104990,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -104271,7 +104999,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -104280,7 +105008,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -104289,7 +105017,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -104297,7 +105025,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -104306,7 +105034,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -104315,7 +105043,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -104324,7 +105052,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -104333,14 +105061,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -104349,7 +105077,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -104358,7 +105086,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -104367,7 +105095,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -104376,7 +105104,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -104385,7 +105113,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -104394,7 +105122,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -104403,7 +105131,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -104412,7 +105140,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -104421,7 +105149,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -104430,325 +105158,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "965" + "finding": "961" } ], "thirdparties": { @@ -104793,10 +105521,10 @@ "cookies": [ { "name": "sessionid", - "value": "bmtwwiu1g1uko3krzdsmchroui121khm", + "value": "dgkorwnx0j3r4yekj6pjmvtxf4i83s7t", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1703995071.847028, + "expires": 1704599213.68697, "size": 41, "httpOnly": true, "secure": true, @@ -104811,7 +105539,7 @@ "value": "1", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1702787273, + "expires": 1703391414, "size": 17, "httpOnly": false, "secure": false, @@ -104823,10 +105551,10 @@ }, { "name": "_pk_id.206.a786", - "value": "824eea4223f7d689.1702785473.", + "value": "80f06068a20330d4.1703389615.", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736740673, + "expires": 1737344815, "size": 43, "httpOnly": false, "secure": false, @@ -104838,10 +105566,10 @@ }, { "name": "csrftoken", - "value": "zmbUYpQTvy1CrBgZ17XwIZeaVOFEqFoY", + "value": "BCIbDiHiqcIRl9Aitbqwj4rM8879OXR9", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1734235071.846913, + "expires": 1734839213.686859, "size": 41, "httpOnly": false, "secure": true, @@ -104855,15 +105583,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8115", - "content-security-policy": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-eCz0Rp2BnKGTgOP9h1Ii0A=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-eCz0Rp2BnKGTgOP9h1Ii0A=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "content-length": "8232", + "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-4kvXu1FNy6ldF7iJmiHtCw=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-4kvXu1FNy6ldF7iJmiHtCw=='; default-src 'self'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 03:57:51 GMT", + "date": "Sun, 24 Dec 2023 03:46:53 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=zmbUYpQTvy1CrBgZ17XwIZeaVOFEqFoY; expires=Sun, 15 Dec 2024 03:57:51 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=bmtwwiu1g1uko3krzdsmchroui121khm; expires=Sun, 31 Dec 2023 03:57:51 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HHTYRN0W49035QQ20DS95QW2", + "set-cookie": "csrftoken=BCIbDiHiqcIRl9Aitbqwj4rM8879OXR9; expires=Sun, 22 Dec 2024 03:46:53 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=dgkorwnx0j3r4yekj6pjmvtxf4i83s7t; expires=Sun, 07 Jan 2024 03:46:53 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HJCYXK9SNW0JYY9G4YSJCH49", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -104872,7 +105600,7 @@ "endpoints": [ { "hostname": "communaute.inclusion.beta.gouv.fr", - "ip": "91.208.207.218", + "ip": "46.252.181.104", "geoip": { "continent": { "code": "EU", @@ -104928,18 +105656,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "151.101.201.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5393015, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Santa Clara", + "en": "Santa Clara", + "es": "Santa Clara", + "fr": "Santa Clara", + "ja": "サンタクララ", + "pt-BR": "Santa Clara", + "ru": "Санта-Клара", + "zh-CN": "圣克拉拉" } }, "continent": { @@ -104972,13 +105701,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, + "latitude": 37.3931, + "longitude": -121.962, "metro_code": 807, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "95054" }, "registered_country": { "geoname_id": 6252001, @@ -105068,7 +105797,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.189.202", + "ip": "172.217.12.106", "geoip": { "continent": { "code": "NA", @@ -105353,7 +106082,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 03:47:20", + "@generated": "Sun, 24 Dec 2023 03:45:52", "site": [ { "@name": "https://communaute.inclusion.beta.gouv.fr", @@ -105535,73 +106264,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "communaute.inclusion.beta.gouv.fr.", "matched-at": "communaute.inclusion.beta.gouv.fr", - "extracted-results": [ - "domain.par.clever-cloud.com." - ], - "timestamp": "2023-12-17T04:11:59.76960999Z", + "timestamp": "2023-12-24T04:00:41.683426306Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "communaute.inclusion.beta.gouv.fr.", "matched-at": "communaute.inclusion.beta.gouv.fr", - "timestamp": "2023-12-17T04:12:00.209337253Z", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2023-12-24T04:00:41.686884359Z", "matcher-status": true }, { @@ -105629,8 +106358,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:12:16.708549147Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:00:58.587562756Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105668,8 +106397,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:12:28.643688158Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:01:11.098782792Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105695,8 +106424,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:13:40.581982525Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:02:28.131358532Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105728,12 +106457,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:09.106814238Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:00.055919364Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105765,12 +106494,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:09.106865543Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:00.055966172Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105802,12 +106531,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:09.106877185Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:00.055981932Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105839,12 +106568,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:09.106887123Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:00.055996509Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105871,8 +106600,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/robots.txt", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:34.803471098Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:28.967551013Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -105899,8 +106628,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/robots.txt", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:34.837884258Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:29.09088743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -105939,8 +106668,8 @@ "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", "https://tally.so/widgets/embed.js" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:14:50.034430465Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:03:46.791375217Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: communaute.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -105979,8 +106708,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/", - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:15:10.1639454Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:04:09.689484119Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: communaute.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -106029,8 +106758,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:16:54.657271216Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:05:31.094829768Z", "matcher-status": true }, { @@ -106044,7 +106773,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -106058,8 +106788,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:17:02.712548885Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:05:40.467806878Z", "matcher-status": true }, { @@ -106073,7 +106803,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -106087,8 +106818,8 @@ "extracted-results": [ "communaute.inclusion.beta.gouv.fr" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:17:02.712694927Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:05:40.467923637Z", "matcher-status": true }, { @@ -106103,7 +106834,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -106117,8 +106849,8 @@ "extracted-results": [ "tls12" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:17:04.974516632Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:05:42.838495454Z", "matcher-status": true }, { @@ -106133,7 +106865,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -106147,8 +106880,8 @@ "extracted-results": [ "tls13" ], - "ip": "46.252.181.103", - "timestamp": "2023-12-17T04:17:05.288313293Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T04:05:43.151666634Z", "matcher-status": true } ], @@ -106156,7 +106889,7 @@ { "requestedUrl": "https://communaute.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T03:47:34.916Z", + "fetchTime": "2023-12-24T03:46:06.440Z", "runWarnings": [], "categories": { "performance": { @@ -106167,7 +106900,7 @@ "snapshot" ], "id": "performance", - "score": 0.8441551208496094 + "score": 0.8441394805908203 }, "accessibility": { "title": "Accessibility", @@ -106219,53 +106952,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7492, + "numericValue": 7502, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7492, - "firstMeaningfulPaint": 7492, - "largestContentfulPaint": 9827, - "interactive": 7492, - "speedIndex": 7492, + "firstContentfulPaint": 7502, + "firstMeaningfulPaint": 7502, + "largestContentfulPaint": 9839, + "interactive": 7502, + "speedIndex": 7502, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.005506114959716797, - "cumulativeLayoutShiftMainFrame": 0.005506114959716797, - "totalCumulativeLayoutShift": 0.005506114959716797, + "cumulativeLayoutShift": 0.0057958204481336805, + "cumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "totalCumulativeLayoutShift": 0.0057958204481336805, "observedTimeOrigin": 0, - "observedTimeOriginTs": 376867579, + "observedTimeOriginTs": 451524399, "observedNavigationStart": 0, - "observedNavigationStartTs": 376867579, - "observedFirstPaint": 1031, - "observedFirstPaintTs": 377899024, - "observedFirstContentfulPaint": 1031, - "observedFirstContentfulPaintTs": 377899024, - "observedFirstContentfulPaintAllFrames": 1031, - "observedFirstContentfulPaintAllFramesTs": 377899024, - "observedFirstMeaningfulPaint": 1031, - "observedFirstMeaningfulPaintTs": 377899024, - "observedLargestContentfulPaint": 1031, - "observedLargestContentfulPaintTs": 377899024, - "observedLargestContentfulPaintAllFrames": 1031, - "observedLargestContentfulPaintAllFramesTs": 377899024, - "observedTraceEnd": 4912, - "observedTraceEndTs": 381779391, - "observedLoad": 1681, - "observedLoadTs": 378548405, + "observedNavigationStartTs": 451524399, + "observedFirstPaint": 1015, + "observedFirstPaintTs": 452539390, + "observedFirstContentfulPaint": 1015, + "observedFirstContentfulPaintTs": 452539390, + "observedFirstContentfulPaintAllFrames": 1015, + "observedFirstContentfulPaintAllFramesTs": 452539390, + "observedFirstMeaningfulPaint": 1015, + "observedFirstMeaningfulPaintTs": 452539390, + "observedLargestContentfulPaint": 1015, + "observedLargestContentfulPaintTs": 452539390, + "observedLargestContentfulPaintAllFrames": 1015, + "observedLargestContentfulPaintAllFramesTs": 452539390, + "observedTraceEnd": 4709, + "observedTraceEndTs": 456233673, + "observedLoad": 1628, + "observedLoadTs": 453152722, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 376868156, - "observedCumulativeLayoutShift": 0.005506114959716797, - "observedCumulativeLayoutShiftMainFrame": 0.005506114959716797, - "observedTotalCumulativeLayoutShift": 0.005506114959716797, - "observedFirstVisualChange": 1033, - "observedFirstVisualChangeTs": 377900579, - "observedLastVisualChange": 2317, - "observedLastVisualChangeTs": 379184579, - "observedSpeedIndex": 1086, - "observedSpeedIndexTs": 377953215 + "observedDomContentLoadedTs": 451524927, + "observedCumulativeLayoutShift": 0.0057958204481336805, + "observedCumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "observedTotalCumulativeLayoutShift": 0.0057958204481336805, + "observedFirstVisualChange": 1024, + "observedFirstVisualChangeTs": 452548399, + "observedLastVisualChange": 2107, + "observedLastVisualChangeTs": 453631399, + "observedSpeedIndex": 1072, + "observedSpeedIndexTs": 452596229 }, { "lcpInvalidated": false @@ -106287,19 +107020,19 @@ "numScripts": 15, "numStylesheets": 5, "numFonts": 4, - "numTasks": 15, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.3359999999999994, - "throughput": 8175996.388919236, - "maxRtt": 150.71900000000002, - "maxServerLatency": 18.810999999999993, - "totalByteWeight": 1865652, - "totalTaskTime": 4.321000000000001, - "mainDocumentTransferSize": 10258 + "rtt": 0.6999999999999993, + "throughput": 8893515.828937722, + "maxRtt": 150.436, + "maxServerLatency": 18.45399999999995, + "totalByteWeight": 1865734, + "totalTaskTime": 4.462000000000001, + "mainDocumentTransferSize": 10304 } ] } @@ -106395,8 +107128,8 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.9, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", @@ -106409,7 +107142,7 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 5, - "lighthouse_performance": 0.8441551208496094, + "lighthouse_performance": 0.8441394805908203, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -106435,7 +107168,7 @@ "http": { "url": "https://covoiturage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:01:00 GMT", + "end_time": "Sun, 24 Dec 2023 02:01:34 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -106443,18 +107176,18 @@ "Connection": "keep-alive", "Content-Length": "28233", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 02:00:58 GMT", + "Date": "Sun, 24 Dec 2023 02:01:32 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "accept-ranges": "bytes", "etag": "\"5ad9c97badc3ae653af08619380f7976\"", "last-modified": "Fri, 01 Dec 2023 14:50:21 GMT", - "x-amz-id-2": "tx9d54447a9c2943bda9697-00657e565a", - "x-amz-request-id": "tx9d54447a9c2943bda9697-00657e565a", + "x-amz-id-2": "txf097db7865d84f5b83efc-00658790fc", + "x-amz-request-id": "txf097db7865d84f5b83efc-00658790fc", "x-amz-version-id": "1701442221832352" }, - "scan_id": 45537209, + "scan_id": 45752657, "score": 40, - "start_time": "Sun, 17 Dec 2023 02:00:54 GMT", + "start_time": "Sun, 24 Dec 2023 02:01:29 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -106995,7 +107728,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -107198,7 +107931,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "1702786547" + "finding": "1703390229" }, { "id": "HSTS_time", @@ -107761,7 +108494,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "103" + "finding": "51" } ], "thirdparties": { @@ -107771,12 +108504,12 @@ "accept-ranges": "bytes", "content-length": "28233", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 04:14:09 GMT", + "date": "Sun, 24 Dec 2023 03:56:18 GMT", "etag": "\"5ad9c97badc3ae653af08619380f7976\"", "last-modified": "Fri, 01 Dec 2023 14:50:21 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", - "x-amz-id-2": "tx2eef0e020279472e86fc5-00657e7591", - "x-amz-request-id": "tx2eef0e020279472e86fc5-00657e7591", + "x-amz-id-2": "tx7692e3ec37b64baeb13fa-006587abe2", + "x-amz-request-id": "tx7692e3ec37b64baeb13fa-006587abe2", "x-amz-version-id": "1701442221832352" }, "endpoints": [ @@ -107920,6 +108653,24 @@ ], "rootPath": true }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -107961,24 +108712,6 @@ ], "rootPath": true }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -108038,7 +108771,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:13:27", + "@generated": "Sun, 24 Dec 2023 03:55:36", "site": [ { "@name": "https://covoiturage.beta.gouv.fr", @@ -108218,10 +108951,10 @@ "host": "covoiturage.beta.gouv.fr.", "matched-at": "covoiturage.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T04:17:13.773700097Z", + "timestamp": "2023-12-24T03:58:17.130311637Z", "matcher-status": true }, { @@ -108254,10 +108987,45 @@ "host": "covoiturage.beta.gouv.fr.", "matched-at": "covoiturage.beta.gouv.fr", "extracted-results": [ - "ns0.dom.scw.cloud.", - "ns1.dom.scw.cloud." + "ns1.dom.scw.cloud.", + "ns0.dom.scw.cloud." ], - "timestamp": "2023-12-17T04:17:13.774709262Z", + "timestamp": "2023-12-24T03:58:17.134751752Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "covoiturage.beta.gouv.fr.", + "matched-at": "covoiturage.beta.gouv.fr", + "timestamp": "2023-12-24T03:58:17.206816502Z", "matcher-status": true }, { @@ -108297,7 +109065,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T04:17:13.774894251Z", + "timestamp": "2023-12-24T03:58:17.28913288Z", "matcher-status": true }, { @@ -108336,42 +109104,7 @@ "\"Sendinblue-code:fb7fc2e7a9fd8ee1510be13a4fad4db9\"", "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com include:servers.mcsv.net ?all\"" ], - "timestamp": "2023-12-17T04:17:13.776506768Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "covoiturage.beta.gouv.fr.", - "matched-at": "covoiturage.beta.gouv.fr", - "timestamp": "2023-12-17T04:17:15.550862465Z", + "timestamp": "2023-12-24T03:58:18.1240906Z", "matcher-status": true }, { @@ -108410,7 +109143,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:17:42.221798102Z", + "timestamp": "2023-12-24T03:58:35.124461994Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108438,7 +109171,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:17:42.253864657Z", + "timestamp": "2023-12-24T03:58:35.157288372Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108472,7 +109205,7 @@ "Hugo 0.82.0" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:34.104465789Z", + "timestamp": "2023-12-24T03:59:08.308132187Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108504,12 +109237,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-frame-options", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.033900702Z", + "timestamp": "2023-12-24T03:59:21.263486717Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108541,12 +109274,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.033968729Z", + "timestamp": "2023-12-24T03:59:21.26353644Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108578,12 +109311,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.033986162Z", + "timestamp": "2023-12-24T03:59:21.263555686Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108615,12 +109348,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.033998735Z", + "timestamp": "2023-12-24T03:59:21.263571897Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108652,12 +109385,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034013212Z", + "timestamp": "2023-12-24T03:59:21.263586174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108689,12 +109422,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034026647Z", + "timestamp": "2023-12-24T03:59:21.263598757Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108726,12 +109459,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034039872Z", + "timestamp": "2023-12-24T03:59:21.263732558Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108763,12 +109496,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034052936Z", + "timestamp": "2023-12-24T03:59:21.263757295Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108800,12 +109533,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034065841Z", + "timestamp": "2023-12-24T03:59:21.263866941Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108837,12 +109570,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.03408159Z", + "timestamp": "2023-12-24T03:59:21.263888671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108889,7 +109622,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:56.034632471Z", + "timestamp": "2023-12-24T03:59:21.264892966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108918,7 +109651,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr/%c0", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:53.302201885Z", + "timestamp": "2023-12-24T03:59:56.27480221Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr/%c0'", "matcher-status": true }, @@ -108958,7 +109691,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr/", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:55.093552754Z", + "timestamp": "2023-12-24T03:59:57.35627896Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: covoiturage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr/'", "matcher-status": true }, @@ -108973,7 +109706,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -108988,7 +109722,7 @@ "Let's Encrypt" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:46.251893239Z", + "timestamp": "2023-12-24T04:00:29.235826527Z", "matcher-status": true }, { @@ -109002,7 +109736,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -109017,7 +109752,7 @@ "covoiturage.beta.gouv.fr" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:46.252027982Z", + "timestamp": "2023-12-24T04:00:29.235940391Z", "matcher-status": true }, { @@ -109032,7 +109767,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -109047,7 +109783,7 @@ "tls12" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:52.644936345Z", + "timestamp": "2023-12-24T04:00:31.132147259Z", "matcher-status": true }, { @@ -109062,7 +109798,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -109077,7 +109814,7 @@ "tls13" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:52.968513735Z", + "timestamp": "2023-12-24T04:00:31.320348323Z", "matcher-status": true } ], @@ -109085,7 +109822,7 @@ { "requestedUrl": "https://covoiturage.beta.gouv.fr/", "finalUrl": "https://covoiturage.beta.gouv.fr/", - "fetchTime": "2023-12-17T04:13:41.764Z", + "fetchTime": "2023-12-24T03:55:51.010Z", "runWarnings": [], "categories": { "performance": { @@ -109148,53 +109885,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3106, + "numericValue": 3167, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2506, - "firstMeaningfulPaint": 3106, - "largestContentfulPaint": 3181, - "interactive": 3106, - "speedIndex": 3332, + "firstContentfulPaint": 2546, + "firstMeaningfulPaint": 3167, + "largestContentfulPaint": 3245, + "interactive": 3167, + "speedIndex": 2821, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.10244653277926975, - "cumulativeLayoutShiftMainFrame": 0.10244653277926975, - "totalCumulativeLayoutShift": 0.10244653277926975, + "cumulativeLayoutShift": 0.10242187500000001, + "cumulativeLayoutShiftMainFrame": 0.10242187500000001, + "totalCumulativeLayoutShift": 0.10242187500000001, "observedTimeOrigin": 0, - "observedTimeOriginTs": 427535451, + "observedTimeOriginTs": 395628548, "observedNavigationStart": 0, - "observedNavigationStartTs": 427535451, - "observedFirstPaint": 1195, - "observedFirstPaintTs": 428730354, - "observedFirstContentfulPaint": 1195, - "observedFirstContentfulPaintTs": 428730354, - "observedFirstContentfulPaintAllFrames": 1195, - "observedFirstContentfulPaintAllFramesTs": 428730354, - "observedFirstMeaningfulPaint": 1740, - "observedFirstMeaningfulPaintTs": 429275298, - "observedLargestContentfulPaint": 1507, - "observedLargestContentfulPaintTs": 429042106, - "observedLargestContentfulPaintAllFrames": 1507, - "observedLargestContentfulPaintAllFramesTs": 429042106, - "observedTraceEnd": 4099, - "observedTraceEndTs": 431634759, - "observedLoad": 1789, - "observedLoadTs": 429324464, - "observedDomContentLoaded": 1197, - "observedDomContentLoadedTs": 428732225, - "observedCumulativeLayoutShift": 0.10244653277926975, - "observedCumulativeLayoutShiftMainFrame": 0.10244653277926975, - "observedTotalCumulativeLayoutShift": 0.10244653277926975, - "observedFirstVisualChange": 1197, - "observedFirstVisualChangeTs": 428732451, - "observedLastVisualChange": 1747, - "observedLastVisualChangeTs": 429282451, - "observedSpeedIndex": 1396, - "observedSpeedIndexTs": 428931009 + "observedNavigationStartTs": 395628548, + "observedFirstPaint": 948, + "observedFirstPaintTs": 396576274, + "observedFirstContentfulPaint": 948, + "observedFirstContentfulPaintTs": 396576274, + "observedFirstContentfulPaintAllFrames": 948, + "observedFirstContentfulPaintAllFramesTs": 396576274, + "observedFirstMeaningfulPaint": 1132, + "observedFirstMeaningfulPaintTs": 396760375, + "observedLargestContentfulPaint": 1082, + "observedLargestContentfulPaintTs": 396710118, + "observedLargestContentfulPaintAllFrames": 1082, + "observedLargestContentfulPaintAllFramesTs": 396710118, + "observedTraceEnd": 3522, + "observedTraceEndTs": 399150821, + "observedLoad": 1214, + "observedLoadTs": 396842700, + "observedDomContentLoaded": 913, + "observedDomContentLoadedTs": 396542035, + "observedCumulativeLayoutShift": 0.10242187500000001, + "observedCumulativeLayoutShiftMainFrame": 0.10242187500000001, + "observedTotalCumulativeLayoutShift": 0.10242187500000001, + "observedFirstVisualChange": 922, + "observedFirstVisualChangeTs": 396550548, + "observedLastVisualChange": 1138, + "observedLastVisualChangeTs": 396766548, + "observedSpeedIndex": 1011, + "observedSpeedIndexTs": 396639967 }, { "lcpInvalidated": false @@ -109216,19 +109953,19 @@ "numScripts": 2, "numStylesheets": 2, "numFonts": 4, - "numTasks": 842, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, - "numTasksOver50ms": 0, + "numTasks": 824, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.08100000000002, - "throughput": 7842987.608795863, - "maxRtt": 153.106, - "maxServerLatency": 105.715, - "totalByteWeight": 645819, - "totalTaskTime": 170.57199999999997, - "mainDocumentTransferSize": 28604 + "rtt": 79.94800000000001, + "throughput": 11927139.983613806, + "maxRtt": 85.178, + "maxServerLatency": 72.95599999999999, + "totalByteWeight": 645984, + "totalTaskTime": 204.30299999999852, + "mainDocumentTransferSize": 28593 } ] } @@ -109356,7 +110093,7 @@ "http": { "url": "https://app.covoiturage.beta.gouv.fr/login", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:07:58 GMT", + "end_time": "Sun, 24 Dec 2023 02:12:40 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -109364,18 +110101,18 @@ "Connection": "keep-alive", "Content-Length": "6714", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 02:07:56 GMT", + "Date": "Sun, 24 Dec 2023 02:12:38 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "accept-ranges": "bytes", "etag": "\"58a3103fc1f2c1f07b3e48c1ec0a0210\"", - "last-modified": "Fri, 15 Dec 2023 11:17:04 GMT", - "x-amz-id-2": "tx8315103071874b7cb910a-00657e57fc", - "x-amz-request-id": "tx8315103071874b7cb910a-00657e57fc", - "x-amz-version-id": "1702639024676412" + "last-modified": "Thu, 21 Dec 2023 15:51:07 GMT", + "x-amz-id-2": "tx79384cc217574130878a7-0065879396", + "x-amz-request-id": "tx79384cc217574130878a7-0065879396", + "x-amz-version-id": "1703173867948396" }, - "scan_id": 45537419, + "scan_id": 45752846, "score": 40, - "start_time": "Sun, 17 Dec 2023 02:07:53 GMT", + "start_time": "Sun, 24 Dec 2023 02:11:48 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -109916,7 +110653,7 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -110112,14 +110849,14 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "1702786610" + "finding": "1703390700" }, { "id": "HSTS_time", @@ -110682,7 +111419,7 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "75" + "finding": "52" } ], "thirdparties": { @@ -110692,13 +111429,13 @@ "accept-ranges": "bytes", "content-length": "6714", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 04:15:39 GMT", + "date": "Sun, 24 Dec 2023 04:04:18 GMT", "etag": "\"58a3103fc1f2c1f07b3e48c1ec0a0210\"", - "last-modified": "Fri, 15 Dec 2023 11:17:04 GMT", + "last-modified": "Thu, 21 Dec 2023 15:51:07 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", - "x-amz-id-2": "tx903746323b484b8fbb81c-00657e75eb", - "x-amz-request-id": "tx903746323b484b8fbb81c-00657e75eb", - "x-amz-version-id": "1702639024676412" + "x-amz-id-2": "txd51aa003ad904dfdaaa48-006587adc2", + "x-amz-request-id": "txd51aa003ad904dfdaaa48-006587adc2", + "x-amz-version-id": "1703173867948396" }, "endpoints": [ { @@ -110963,7 +111700,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:14:48", + "@generated": "Sun, 24 Dec 2023 04:03:27", "site": [ { "@name": "https://app.covoiturage.beta.gouv.fr", @@ -111113,7 +111850,7 @@ "type": "dns", "host": "app.covoiturage.beta.gouv.fr.", "matched-at": "app.covoiturage.beta.gouv.fr", - "timestamp": "2023-12-17T04:17:57.979651419Z", + "timestamp": "2023-12-24T04:06:07.558553415Z", "matcher-status": true }, { @@ -111140,7 +111877,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:14.33650769Z", + "timestamp": "2023-12-24T04:06:22.838649201Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111178,7 +111915,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:43.12750902Z", + "timestamp": "2023-12-24T04:06:51.737858231Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111210,12 +111947,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027542894Z", + "timestamp": "2023-12-24T04:07:04.504431582Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111247,12 +111984,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027606222Z", + "timestamp": "2023-12-24T04:07:04.504469382Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111284,12 +112021,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027625138Z", + "timestamp": "2023-12-24T04:07:04.504481816Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111321,12 +112058,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027639975Z", + "timestamp": "2023-12-24T04:07:04.504499088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111363,7 +112100,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.02765308Z", + "timestamp": "2023-12-24T04:07:04.504514186Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111395,12 +112132,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027667517Z", + "timestamp": "2023-12-24T04:07:04.504527891Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111432,12 +112169,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027757045Z", + "timestamp": "2023-12-24T04:07:04.504543631Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111469,12 +112206,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027785077Z", + "timestamp": "2023-12-24T04:07:04.504561584Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111506,12 +112243,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027806177Z", + "timestamp": "2023-12-24T04:07:04.50457568Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111543,12 +112280,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.027828729Z", + "timestamp": "2023-12-24T04:07:04.504589727Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111595,10 +112332,48 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:18:55.028174636Z", + "timestamp": "2023-12-24T04:07:04.50497259Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, + { + "template": "http/miscellaneous/security-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/security-txt", + "template-id": "security-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", + "info": { + "name": "security.txt File", + "author": [ + "bad5ect0r", + "noraj" + ], + "tags": [ + "misc", + "generic" + ], + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", + "reference": [ + "https://securitytxt.org/", + "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" + ], + "severity": "info", + "metadata": { + "max-request": 2, + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true + } + }, + "type": "http", + "host": "https://app.covoiturage.beta.gouv.fr/login", + "matched-at": "https://app.covoiturage.beta.gouv.fr/.well-known/security.txt", + "extracted-results": [ + " mailto:security@covoiturage.beta.gouv.fr" + ], + "ip": "51.159.8.177", + "timestamp": "2023-12-24T04:07:18.36032719Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/.well-known/security.txt'", + "matcher-status": true + }, { "template": "http/technologies/s3-detect.yaml", "template-url": "https://templates.nuclei.sh/public/s3-detect", @@ -111624,7 +112399,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login/%c0", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:26.35172419Z", + "timestamp": "2023-12-24T04:07:34.942030328Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login/%c0'", "matcher-status": true }, @@ -111664,7 +112439,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login/", "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:27.358468715Z", + "timestamp": "2023-12-24T04:07:35.814495113Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.covoiturage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login/'", "matcher-status": true }, @@ -111679,7 +112454,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -111694,7 +112470,7 @@ "Let's Encrypt" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:56.183115366Z", + "timestamp": "2023-12-24T04:08:06.517766222Z", "matcher-status": true }, { @@ -111708,7 +112484,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -111723,7 +112500,7 @@ "app.covoiturage.beta.gouv.fr" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:19:56.183245059Z", + "timestamp": "2023-12-24T04:08:06.517930398Z", "matcher-status": true }, { @@ -111738,7 +112515,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -111753,7 +112531,7 @@ "tls12" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:01.987795569Z", + "timestamp": "2023-12-24T04:08:10.052913185Z", "matcher-status": true }, { @@ -111768,7 +112546,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -111783,7 +112562,7 @@ "tls13" ], "ip": "51.159.8.177", - "timestamp": "2023-12-17T04:20:02.191369765Z", + "timestamp": "2023-12-24T04:08:10.227537673Z", "matcher-status": true } ], @@ -111897,7 +112676,7 @@ "http": { "url": "https://datapass.api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:30:42 GMT", + "end_time": "Sun, 24 Dec 2023 02:29:04 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -111906,17 +112685,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 02:30:41 GMT", - "Last-Modified": "Sunday, 17-Dec-2023 02:30:41 GMT", + "Date": "Sun, 24 Dec 2023 02:29:03 GMT", + "Last-Modified": "Sunday, 24-Dec-2023 02:29:03 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=15552000", "Transfer-Encoding": "chunked", "X-Frame-Options": "DENY", "X-Robots-Tag": "noindex,nofollow" }, - "scan_id": 45537956, + "scan_id": 45753210, "score": 60, - "start_time": "Sun, 17 Dec 2023 02:30:38 GMT", + "start_time": "Sun, 24 Dec 2023 02:29:00 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -112101,15 +112880,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T04:38:58Z", - "next_check_at": "2023-12-17T04:43:56Z", + "last_check_at": "2023-12-24T04:15:58Z", + "next_check_at": "2023-12-24T04:20:58Z", "mute_until": null, "favicon_url": "https://datapass.api.gouv.fr/favicons/android-chrome-512x512.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:14:05Z", + "tested_at": "2023-12-24T03:46:02Z", "expires_at": "2024-03-09T17:23:57Z", "valid": true, "error": null @@ -112118,11 +112897,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 337, - "connection": 170, - "handshake": 176, - "response": 170, - "total": 853 + "namelookup": 347, + "connection": 166, + "handshake": 168, + "response": 164, + "total": 845 } }, "uptimeGrade": "A", @@ -112138,7 +112917,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.4", + "version": "8.9p1 Ubuntu 3ubuntu0.5", "vulnerabilities": [] } }, @@ -112532,7 +113311,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "OK", - "finding": "83 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", @@ -112735,7 +113514,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1702787674" + "finding": "1703391259" }, { "id": "HSTS_time", @@ -113305,7 +114084,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "106" + "finding": "59" } ], "thirdparties": { @@ -113316,7 +114095,7 @@ "value": "1", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1702789393, + "expires": 1703393015, "size": 16, "httpOnly": false, "secure": false, @@ -113328,10 +114107,10 @@ }, { "name": "_pk_id.53.36f3", - "value": "3b09b72962a4a3ec.1702787593.", + "value": "488713469fe68dbb.1703391216.", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1736742793, + "expires": 1737346416, "size": 42, "httpOnly": false, "secure": false, @@ -113347,8 +114126,8 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 04:33:11 GMT", - "last-modified": "Sunday, 17-Dec-2023 04:33:11 GMT", + "date": "Sun, 24 Dec 2023 04:13:34 GMT", + "last-modified": "Sunday, 24-Dec-2023 04:13:34 GMT", "server": "nginx", "strict-transport-security": "max-age=15552000", "transfer-encoding": "chunked", @@ -113574,7 +114353,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:32:29", + "@generated": "Sun, 24 Dec 2023 04:12:55", "site": [ { "@name": "https://datapass.api.gouv.fr", @@ -113724,7 +114503,7 @@ "type": "dns", "host": "datapass.api.gouv.fr.", "matched-at": "datapass.api.gouv.fr", - "timestamp": "2023-12-17T04:36:02.357011043Z", + "timestamp": "2023-12-24T04:15:40.768484379Z", "matcher-status": true }, { @@ -113750,7 +114529,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:36:58.789780331Z", + "timestamp": "2023-12-24T04:16:14.946298158Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113787,7 +114566,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942091794Z", + "timestamp": "2023-12-24T04:16:23.9514292Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113819,12 +114598,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942147188Z", + "timestamp": "2023-12-24T04:16:23.951477309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113856,12 +114635,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942168849Z", + "timestamp": "2023-12-24T04:16:23.951491536Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113893,12 +114672,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942186722Z", + "timestamp": "2023-12-24T04:16:23.951508868Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113930,12 +114709,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942204826Z", + "timestamp": "2023-12-24T04:16:23.951521071Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -113967,12 +114746,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942220495Z", + "timestamp": "2023-12-24T04:16:23.95153653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114009,7 +114788,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942235654Z", + "timestamp": "2023-12-24T04:16:23.951550185Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114041,12 +114820,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942252756Z", + "timestamp": "2023-12-24T04:16:23.951564952Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114078,12 +114857,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:13.942270349Z", + "timestamp": "2023-12-24T04:16:23.951580892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114123,7 +114902,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr/", "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:37:52.106758607Z", + "timestamp": "2023-12-24T04:16:45.734873182Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: datapass.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr/'", "matcher-status": true }, @@ -114170,10 +114949,10 @@ "host": "datapass.api.gouv.fr:22", "matched-at": "datapass.api.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:38:53.809114015Z", + "timestamp": "2023-12-24T04:17:25.818261226Z", "matcher-status": true }, { @@ -114187,7 +114966,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -114202,7 +114982,7 @@ "Let's Encrypt" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:39:43.958019968Z", + "timestamp": "2023-12-24T04:18:15.075374028Z", "matcher-status": true }, { @@ -114216,7 +114996,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -114231,7 +115012,7 @@ "datapass.api.gouv.fr" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:39:43.958132189Z", + "timestamp": "2023-12-24T04:18:15.07552012Z", "matcher-status": true }, { @@ -114246,7 +115027,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -114261,7 +115043,7 @@ "tls12" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:39:46.469639721Z", + "timestamp": "2023-12-24T04:18:18.552751671Z", "matcher-status": true }, { @@ -114276,7 +115058,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -114291,7 +115074,7 @@ "tls13" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T04:39:46.873893315Z", + "timestamp": "2023-12-24T04:18:18.73399694Z", "matcher-status": true } ], @@ -114299,7 +115082,7 @@ { "requestedUrl": "https://datapass.api.gouv.fr/", "finalUrl": "https://datapass.api.gouv.fr/", - "fetchTime": "2023-12-17T04:32:43.533Z", + "fetchTime": "2023-12-24T04:13:09.235Z", "runWarnings": [], "categories": { "performance": { @@ -114362,53 +115145,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5011, + "numericValue": 6082, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1392, - "firstMeaningfulPaint": 1392, - "largestContentfulPaint": 5676, - "interactive": 5011, - "speedIndex": 3451, - "totalBlockingTime": 395, - "maxPotentialFID": 212, - "cumulativeLayoutShift": 0.4687384592692057, - "cumulativeLayoutShiftMainFrame": 0.4687384592692057, - "totalCumulativeLayoutShift": 0.4687384592692057, + "firstContentfulPaint": 1433, + "firstMeaningfulPaint": 1433, + "largestContentfulPaint": 6249, + "interactive": 6082, + "speedIndex": 2297, + "totalBlockingTime": 356, + "maxPotentialFID": 197, + "cumulativeLayoutShift": 0.5064667307535807, + "cumulativeLayoutShiftMainFrame": 0.5064667307535807, + "totalCumulativeLayoutShift": 0.5064667307535807, "observedTimeOrigin": 0, - "observedTimeOriginTs": 275019791, + "observedTimeOriginTs": 190846197, "observedNavigationStart": 0, - "observedNavigationStartTs": 275019791, - "observedFirstPaint": 1531, - "observedFirstPaintTs": 276550484, - "observedFirstContentfulPaint": 1531, - "observedFirstContentfulPaintTs": 276550484, - "observedFirstContentfulPaintAllFrames": 1531, - "observedFirstContentfulPaintAllFramesTs": 276550484, - "observedFirstMeaningfulPaint": 1531, - "observedFirstMeaningfulPaintTs": 276550484, - "observedLargestContentfulPaint": 2141, - "observedLargestContentfulPaintTs": 277160892, - "observedLargestContentfulPaintAllFrames": 2141, - "observedLargestContentfulPaintAllFramesTs": 277160892, - "observedTraceEnd": 4443, - "observedTraceEndTs": 279463217, - "observedLoad": 2135, - "observedLoadTs": 277154596, - "observedDomContentLoaded": 1476, - "observedDomContentLoadedTs": 276495930, - "observedCumulativeLayoutShift": 0.4687384592692057, - "observedCumulativeLayoutShiftMainFrame": 0.4687384592692057, - "observedTotalCumulativeLayoutShift": 0.4687384592692057, - "observedFirstVisualChange": 1535, - "observedFirstVisualChangeTs": 276554791, - "observedLastVisualChange": 2152, - "observedLastVisualChangeTs": 277171791, - "observedSpeedIndex": 1997, - "observedSpeedIndexTs": 277017086 + "observedNavigationStartTs": 190846197, + "observedFirstPaint": 893, + "observedFirstPaintTs": 191738969, + "observedFirstContentfulPaint": 893, + "observedFirstContentfulPaintTs": 191738969, + "observedFirstContentfulPaintAllFrames": 893, + "observedFirstContentfulPaintAllFramesTs": 191738969, + "observedFirstMeaningfulPaint": 893, + "observedFirstMeaningfulPaintTs": 191738969, + "observedLargestContentfulPaint": 1235, + "observedLargestContentfulPaintTs": 192081598, + "observedLargestContentfulPaintAllFrames": 1235, + "observedLargestContentfulPaintAllFramesTs": 192081598, + "observedTraceEnd": 3532, + "observedTraceEndTs": 194377700, + "observedLoad": 1223, + "observedLoadTs": 192068804, + "observedDomContentLoaded": 841, + "observedDomContentLoadedTs": 191687353, + "observedCumulativeLayoutShift": 0.5064667307535807, + "observedCumulativeLayoutShiftMainFrame": 0.5064667307535807, + "observedTotalCumulativeLayoutShift": 0.5064667307535807, + "observedFirstVisualChange": 896, + "observedFirstVisualChangeTs": 191742197, + "observedLastVisualChange": 1396, + "observedLastVisualChangeTs": 192242197, + "observedSpeedIndex": 1154, + "observedSpeedIndexTs": 191999986 }, { "lcpInvalidated": false @@ -114430,18 +115213,18 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 411, + "numTasks": 410, "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasksOver25ms": 4, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.614, - "throughput": 7293467.515545939, - "maxRtt": 153.877, - "maxServerLatency": 5.75800000000001, - "totalByteWeight": 702487, - "totalTaskTime": 252.31199999999882, + "rtt": 80.019, + "throughput": 13456336.637932457, + "maxRtt": 83.32700000000001, + "maxServerLatency": 6.567000000000007, + "totalByteWeight": 702755, + "totalTaskTime": 244.891999999999, "mainDocumentTransferSize": 1352 } ] @@ -114571,25 +115354,26 @@ "http": { "url": "https://deveco.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 00:58:14 GMT", + "end_time": "Sun, 24 Dec 2023 00:52:23 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "content-encoding": "gzip", - "content-length": "12405", + "accept-ranges": "bytes", + "cache-control": "public, max-age=0", + "content-length": "19957", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 00:58:11 GMT", - "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", + "date": "Sun, 24 Dec 2023 00:52:22 GMT", + "etag": "W/\"4df5-18c84177b65\"", + "keep-alive": "timeout=5", + "last-modified": "Tue, 19 Dec 2023 21:59:40 GMT", "referrer-policy": "no-referrer", - "server": "Apache", "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", "x-frame-options": "SAMEORIGIN" }, - "scan_id": 45535839, + "scan_id": 45751126, "score": 60, - "start_time": "Sun, 17 Dec 2023 00:57:46 GMT", + "start_time": "Sun, 24 Dec 2023 00:52:19 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -114756,7 +115540,28 @@ } }, "updownio": null, - "nmap": null, + "nmap": { + "host": "deveco.incubateur.anct.gouv.fr", + "protocol": "tcp", + "closed_ports": "998", + "open_ports": [ + { + "service": { + "name": "http", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "https", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "A" + }, "dependabot": null, "codescan": null, "testssl": [ @@ -115107,7 +115912,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -115303,14 +116108,14 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1702787878" + "finding": "1703391812" }, { "id": "HSTS_time", @@ -115345,7 +116150,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "Apache" + "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", @@ -115375,6 +116180,13 @@ "severity": "INFO", "finding": "no-referrer" }, + { + "id": "Cache-Control", + "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", + "port": "443", + "severity": "INFO", + "finding": "public, max-age=0" + }, { "id": "banner_reverseproxy", "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", @@ -115449,10 +116261,10 @@ "id": "BREACH", "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", - "severity": "MEDIUM", + "severity": "OK", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -115880,28 +116692,19 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "130" + "finding": "141" } ], "thirdparties": { - "trackers": [ - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.2.2", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - } - ], + "trackers": [], "cookies": [ { - "name": "_pk_ses.1.1d54", + "name": "_pk_ses.15.1d54", "value": "1", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1702789556, - "size": 15, + "expires": 1703393501, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -115911,12 +116714,12 @@ "sourcePort": 443 }, { - "name": "_pk_id.1.1d54", - "value": "e135b001096d7c8e.1702787756.", + "name": "_pk_id.15.1d54", + "value": "1acb4dac16ad04dd.1703391702.", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1736742956, - "size": 41, + "expires": 1737346902, + "size": 42, "httpOnly": false, "secure": false, "session": false, @@ -115927,15 +116730,15 @@ } ], "headers": { - "content-encoding": "gzip", - "content-length": "12405", + "accept-ranges": "bytes", + "cache-control": "public, max-age=0", + "content-length": "19957", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 04:35:53 GMT", - "link": "; rel=\"https://api.w.org/\"\n; rel=\"alternate\"; type=\"application/json\"\n; rel=shortlink", + "date": "Sun, 24 Dec 2023 04:21:39 GMT", + "etag": "W/\"4df5-18c84177b65\"", + "last-modified": "Tue, 19 Dec 2023 21:59:40 GMT", "referrer-policy": "no-referrer", - "server": "Apache", "strict-transport-security": "max-age=31536000", - "vary": "Accept-Encoding", "x-frame-options": "SAMEORIGIN" }, "endpoints": [ @@ -116033,60 +116836,6 @@ } ] } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "142.250.191.234", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } } ] }, @@ -116115,46 +116864,6 @@ ], "rootPath": true }, - { - "slug": "wordpress", - "name": "WordPress", - "description": "WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.", - "confidence": 100, - "version": "6.2.2", - "icon": "WordPress.svg", - "website": "https://wordpress.org", - "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - }, - { - "id": 11, - "slug": "blogs", - "name": "Blogs" - } - ], - "rootPath": true - }, - { - "slug": "mysql", - "name": "MySQL", - "description": "MySQL is an open-source relational database management system.", - "confidence": 100, - "version": null, - "icon": "MySQL.svg", - "website": "https://mysql.com", - "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - } - ] - }, { "slug": "php", "name": "PHP", @@ -116173,42 +116882,37 @@ ] }, { - "slug": "elementor", - "name": "Elementor", - "description": "Elementor is a website builder platform for professionals on WordPress.", + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", "confidence": 100, - "version": "3.15.3", - "icon": "Elementor.svg", - "website": "https://elementor.com", - "cpe": null, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", "categories": [ { - "id": 51, - "slug": "page-builders", - "name": "Page builders" - }, - { - "id": 87, - "slug": "wordpress-plugins", - "name": "WordPress plugins" + "id": 10, + "slug": "analytics", + "name": "Analytics" } ], "rootPath": true }, { - "slug": "apache-http-server", - "name": "Apache HTTP Server", - "description": "Apache is a free and open-source cross-platform web server software.", + "slug": "tally", + "name": "Tally", + "description": "Tally is the simplest way to create free forms & surveys. Create any type of form in seconds, without knowing how to code, and for free.", "confidence": 100, "version": null, - "icon": "Apache.svg", - "website": "https://httpd.apache.org/", - "cpe": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*", + "icon": "Tally.svg", + "website": "https://tally.so/", + "cpe": null, "categories": [ { - "id": 22, - "slug": "web-servers", - "name": "Web servers" + "id": 73, + "slug": "surveys", + "name": "Surveys" } ], "rootPath": true @@ -116236,114 +116940,6 @@ ], "rootPath": true }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "jquery-ui", - "name": "jQuery UI", - "description": "jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.", - "confidence": 100, - "version": "1.13.2", - "icon": "jQuery UI.svg", - "website": "https://jqueryui.com", - "cpe": "cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery-migrate", - "name": "jQuery Migrate", - "description": "Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.", - "confidence": 100, - "version": "3.4.0", - "icon": "jQuery.svg", - "website": "https://github.com/jquery/jquery-migrate", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.6.4", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "3.30.1", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "google-font-api", - "name": "Google Font API", - "description": "Google Font API is a web service that supports open-source font files that can be used on your web designs.", - "confidence": 100, - "version": null, - "icon": "Google Font API.svg", - "website": "https://google.com/fonts", - "cpe": null, - "categories": [ - { - "id": 17, - "slug": "font-scripts", - "name": "Font scripts" - } - ], - "rootPath": true - }, { "slug": "hsts", "name": "HSTS", @@ -116363,13 +116959,13 @@ "rootPath": true }, { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", "cpe": null, "categories": [ { @@ -116377,16 +116973,17 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ] + ], + "rootPath": true }, { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", + "icon": "Open Graph.png", + "website": "https://ogp.me", "cpe": null, "categories": [ { @@ -116394,14 +116991,15 @@ "slug": "miscellaneous", "name": "Miscellaneous" } - ] + ], + "rootPath": true } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:35:08", + "@generated": "Sun, 24 Dec 2023 04:20:56", "site": [ { "@name": "https://deveco.incubateur.anct.gouv.fr", @@ -116417,32 +117015,18 @@ "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { - "name": "Sub Resource Integrity Attribute Missing", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" - }, - { - "name": "Dangerous JS Functions", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" - }, - { - "name": "Permissions Policy Header Not Set", + "name": "Application Error Disclosure", "riskcode": "1", "confidence": "2", "riskdesc": "Low (Medium)", - "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" + "desc": "

This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.

" }, { - "name": "Secure Pages Include Mixed Content", + "name": "Permissions Policy Header Not Set", "riskcode": "1", "confidence": "2", "riskdesc": "Low (Medium)", - "desc": "

The page includes mixed content, that is content accessed via HTTP instead of HTTPS.

" + "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, { "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", @@ -116451,13 +117035,6 @@ "riskdesc": "Low (High)", "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, { "name": "X-Content-Type-Options Header Missing", "riskcode": "1", @@ -116473,11 +117050,11 @@ "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, { - "name": "Charset Mismatch ", + "name": "Content-Type Header Missing", "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check identifies responses where the HTTP Content-Type header declares a charset different from the charset defined by the body of the HTML or XML. When there's a charset mismatch between the HTTP header and content body Web browsers can be forced into an undesirable content-sniffing mode to determine the content's correct character set.

An attacker could manipulate content on the page to be interpreted in an encoding of their choice. For example, if an attacker can control content at the beginning of the page, they could inject script using UTF-7 encoded text and manipulate some browsers into interpreting that text.

" + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The Content-Type header was either missing or empty.

" }, { "name": "Information Disclosure - Suspicious Comments", @@ -116548,22 +117125,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -116579,27 +117156,32 @@ "type": "dns", "host": "deveco.incubateur.anct.gouv.fr.", "matched-at": "deveco.incubateur.anct.gouv.fr", - "timestamp": "2023-12-17T04:39:20.511713649Z", + "extracted-results": [ + "\"google-site-verification=L2JQ-fN4ulue8tUkvSsJqXUR6JoL0KvlhieQMp0olCA\"", + "\"Sendinblue-code:8ff5d53433fed3070b3f1359d24abb8b\"", + "\"v=spf1 include:spf.sendinblue.com include:spf.tipimail.com mx ~all\"" + ], + "timestamp": "2023-12-24T04:25:43.845170727Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -116609,36 +117191,38 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "deveco.incubateur.anct.gouv.fr.", - "matched-at": "_dmarc.deveco.incubateur.anct.gouv.fr", + "matched-at": "deveco.incubateur.anct.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "1 mx0.mail.ovh.net.", + "100 mx3.mail.ovh.net.", + "5 mx1.mail.ovh.net.", + "50 mx2.mail.ovh.net." ], - "timestamp": "2023-12-17T04:39:20.556626568Z", + "timestamp": "2023-12-24T04:25:43.981661649Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -116654,32 +117238,27 @@ "type": "dns", "host": "deveco.incubateur.anct.gouv.fr.", "matched-at": "deveco.incubateur.anct.gouv.fr", - "extracted-results": [ - "\"google-site-verification=L2JQ-fN4ulue8tUkvSsJqXUR6JoL0KvlhieQMp0olCA\"", - "\"Sendinblue-code:8ff5d53433fed3070b3f1359d24abb8b\"", - "\"v=spf1 include:spf.sendinblue.com include:spf.tipimail.com mx ~all\"" - ], - "timestamp": "2023-12-17T04:39:22.51264282Z", + "timestamp": "2023-12-24T04:25:44.153014392Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -116689,19 +117268,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "deveco.incubateur.anct.gouv.fr.", - "matched-at": "deveco.incubateur.anct.gouv.fr", + "matched-at": "_dmarc.deveco.incubateur.anct.gouv.fr", "extracted-results": [ - "100 mx3.mail.ovh.net.", - "1 mx0.mail.ovh.net.", - "50 mx2.mail.ovh.net.", - "5 mx1.mail.ovh.net." + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T04:39:22.855291754Z", + "timestamp": "2023-12-24T04:25:44.310674831Z", "matcher-status": true }, { @@ -116732,12 +117309,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372505154Z", + "timestamp": "2023-12-24T04:26:58.309355723Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116769,12 +117346,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372556761Z", + "timestamp": "2023-12-24T04:26:58.309422127Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116806,12 +117383,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372574083Z", + "timestamp": "2023-12-24T04:26:58.309443516Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116843,12 +117420,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372587148Z", + "timestamp": "2023-12-24T04:26:58.309467591Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116880,12 +117457,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372600383Z", + "timestamp": "2023-12-24T04:26:58.309487178Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116917,12 +117494,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372617424Z", + "timestamp": "2023-12-24T04:26:58.309512795Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116954,123 +117531,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372635779Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372653031Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.37267381Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372688848Z", + "timestamp": "2023-12-24T04:26:58.309535407Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -117102,12 +117568,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:04.372709517Z", + "timestamp": "2023-12-24T04:26:58.309554262Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -117126,7 +117592,7 @@ "misc", "generic" ], - "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.", + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", "reference": [ "https://securitytxt.org/", "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" @@ -117134,7 +117600,8 @@ "severity": "info", "metadata": { "max-request": 2, - "shodan-query": "http.securitytxt:contact http.status:200" + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, "type": "http", @@ -117144,220 +117611,10 @@ " mailto:support-incubateur@anct.gouv.fr" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:17.577517033Z", + "timestamp": "2023-12-24T04:27:15.261008535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/.well-known/security.txt'", "matcher-status": true }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr/", - "extracted-results": [ - "https://deveco.incubateur.anct.gouv.fr/wp-content/themes/cnfs/dsfr.nomodule.min.js", - "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.3", - "https://deveco.incubateur.anct.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0", - "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/mailin/js/mailin-front.js?ver=1692196282", - "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.3", - "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2", - "https://deveco.incubateur.anct.gouv.fr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2", - "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.3", - "https://deveco.incubateur.anct.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.6.4", - "https://deveco.incubateur.anct.gouv.fr/wp-content/themes/cnfs/dsfr.module.min.js" - ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:41:32.609798518Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: deveco.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-detect", - "template-id": "wordpress-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress-detect.yaml", - "info": { - "name": "WordPress Detect", - "author": [ - "pdteam", - "daffainfo", - "ricardomaia", - "topscoder", - "adamcrosser" - ], - "tags": [ - "tech", - "wordpress", - "cms", - "wp" - ], - "severity": "info", - "metadata": { - "category": "cms", - "max-request": 4, - "product": "wordpress", - "shodan-query": "http.component:\"WordPress\"", - "vendor": "wordpress", - "verified": true - } - }, - "extractor-name": "version_by_js", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr", - "extracted-results": [ - "6.2.2" - ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:42:10.487741591Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "ats", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:42:10.941503547Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: deveco.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "apachegeneric", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:42:10.941541008Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: deveco.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/duplicate-page.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-duplicate-page", - "template-id": "wordpress-duplicate-page", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/duplicate-page.yaml", - "info": { - "name": "Duplicate Page Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-100", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/duplicate-page/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "duplicate-page", - "wpscan": "https://wpscan.com/plugin/duplicate-page" - } - }, - "matcher-name": "outdated_version", - "type": "http", - "host": "https://deveco.incubateur.anct.gouv.fr", - "matched-at": "https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/duplicate-page/readme.txt", - "extracted-results": [ - "4.5.2" - ], - "meta": { - "last_version": "4.5.3" - }, - "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:42:15.535987103Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/wp-content/plugins/duplicate-page/readme.txt'", - "matcher-status": true - }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -117369,7 +117626,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -117384,7 +117642,7 @@ "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:43:40.90136968Z", + "timestamp": "2023-12-24T04:28:14.533969804Z", "matcher-status": true }, { @@ -117398,7 +117656,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -117413,7 +117672,7 @@ "deveco.incubateur.anct.gouv.fr" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:43:40.901481129Z", + "timestamp": "2023-12-24T04:28:14.534081652Z", "matcher-status": true }, { @@ -117428,7 +117687,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -117443,7 +117703,7 @@ "tls12" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:43:52.565878181Z", + "timestamp": "2023-12-24T04:28:18.128915032Z", "matcher-status": true }, { @@ -117458,7 +117718,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -117473,7 +117734,7 @@ "tls13" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T04:43:52.819692187Z", + "timestamp": "2023-12-24T04:28:18.445629476Z", "matcher-status": true } ], @@ -117481,7 +117742,7 @@ { "requestedUrl": "https://deveco.incubateur.anct.gouv.fr/", "finalUrl": "https://deveco.incubateur.anct.gouv.fr/", - "fetchTime": "2023-12-17T04:35:22.581Z", + "fetchTime": "2023-12-24T04:21:11.231Z", "runWarnings": [], "categories": { "performance": { @@ -117492,7 +117753,7 @@ "snapshot" ], "id": "performance", - "score": 0.8493852615356445 + "score": 0.7070068359375 }, "accessibility": { "title": "Accessibility", @@ -117513,7 +117774,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -117524,7 +117785,7 @@ "snapshot" ], "id": "seo", - "score": 0.86 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -117534,7 +117795,7 @@ "navigation" ], "id": "pwa", - "score": 0.3 + "score": 0.5 } }, "audits": { @@ -117544,53 +117805,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5598, + "numericValue": 11271, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2712, - "firstMeaningfulPaint": 2712, - "largestContentfulPaint": 5970, - "interactive": 5598, - "speedIndex": 8974, - "totalBlockingTime": 56, - "maxPotentialFID": 155, - "cumulativeLayoutShift": 0.0033304850260416664, - "cumulativeLayoutShiftMainFrame": 0.0033304850260416664, - "totalCumulativeLayoutShift": 0.0033304850260416664, + "firstContentfulPaint": 7138, + "firstMeaningfulPaint": 7138, + "largestContentfulPaint": 10203, + "interactive": 11271, + "speedIndex": 8479, + "totalBlockingTime": 170, + "maxPotentialFID": 338, + "cumulativeLayoutShift": 0.19378459760877823, + "cumulativeLayoutShiftMainFrame": 0.19378459760877823, + "totalCumulativeLayoutShift": 0.19378459760877823, "observedTimeOrigin": 0, - "observedTimeOriginTs": 329558398, + "observedTimeOriginTs": 287491225, "observedNavigationStart": 0, - "observedNavigationStartTs": 329558398, - "observedFirstPaint": 5195, - "observedFirstPaintTs": 334753456, - "observedFirstContentfulPaint": 5195, - "observedFirstContentfulPaintTs": 334753456, - "observedFirstContentfulPaintAllFrames": 5195, - "observedFirstContentfulPaintAllFramesTs": 334753456, - "observedFirstMeaningfulPaint": 5195, - "observedFirstMeaningfulPaintTs": 334753456, - "observedLargestContentfulPaint": 5587, - "observedLargestContentfulPaintTs": 335145876, - "observedLargestContentfulPaintAllFrames": 5587, - "observedLargestContentfulPaintAllFramesTs": 335145876, - "observedTraceEnd": 7988, - "observedTraceEndTs": 337546308, - "observedLoad": 5681, - "observedLoadTs": 335239479, - "observedDomContentLoaded": 5193, - "observedDomContentLoadedTs": 334751781, - "observedCumulativeLayoutShift": 0.0033304850260416664, - "observedCumulativeLayoutShiftMainFrame": 0.0033304850260416664, - "observedTotalCumulativeLayoutShift": 0.0033304850260416664, - "observedFirstVisualChange": 5194, - "observedFirstVisualChangeTs": 334752398, - "observedLastVisualChange": 6111, - "observedLastVisualChangeTs": 335669398, - "observedSpeedIndex": 5329, - "observedSpeedIndexTs": 334887771 + "observedNavigationStartTs": 287491225, + "observedFirstPaint": 1492, + "observedFirstPaintTs": 288982799, + "observedFirstContentfulPaint": 1492, + "observedFirstContentfulPaintTs": 288982799, + "observedFirstContentfulPaintAllFrames": 1492, + "observedFirstContentfulPaintAllFramesTs": 288982799, + "observedFirstMeaningfulPaint": 1492, + "observedFirstMeaningfulPaintTs": 288982799, + "observedLargestContentfulPaint": 1861, + "observedLargestContentfulPaintTs": 289352521, + "observedLargestContentfulPaintAllFrames": 1861, + "observedLargestContentfulPaintAllFramesTs": 289352521, + "observedTraceEnd": 4833, + "observedTraceEndTs": 292324209, + "observedLoad": 2390, + "observedLoadTs": 289881124, + "observedDomContentLoaded": 1529, + "observedDomContentLoadedTs": 289020438, + "observedCumulativeLayoutShift": 0.19378459760877823, + "observedCumulativeLayoutShiftMainFrame": 0.19378459760877823, + "observedTotalCumulativeLayoutShift": 0.19378459760877823, + "observedFirstVisualChange": 1463, + "observedFirstVisualChangeTs": 288954225, + "observedLastVisualChange": 2330, + "observedLastVisualChangeTs": 289821225, + "observedSpeedIndex": 1559, + "observedSpeedIndexTs": 289050104 }, { "lcpInvalidated": false @@ -117608,23 +117869,23 @@ "type": "debugdata", "items": [ { - "numRequests": 52, - "numScripts": 11, - "numStylesheets": 16, - "numFonts": 5, - "numTasks": 857, - "numTasksOver10ms": 4, + "numRequests": 46, + "numScripts": 3, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 899, + "numTasksOver10ms": 8, "numTasksOver25ms": 2, - "numTasksOver50ms": 0, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.046, - "throughput": 13387636.786015604, - "maxRtt": 100.352, - "maxServerLatency": 176.75499999999997, - "totalByteWeight": 1313943, - "totalTaskTime": 263.940999999999, - "mainDocumentTransferSize": 12837 + "rtt": 152.20700000000002, + "throughput": 12303441.907180578, + "maxRtt": 155.174, + "maxServerLatency": 630.807, + "totalByteWeight": 2584704, + "totalTaskTime": 349.9669999999981, + "mainDocumentTransferSize": 20213 } ] } @@ -117665,14 +117926,12 @@ { "slug": "pc", "mention": "Politique de confidentialité", - "maxScore": 5, + "maxScore": 4, "score": 3, "missingWords": [ "finalité" ], - "missingTrackers": [ - "googlefonts" - ], + "missingTrackers": [], "declarationUrl": "https://deveco.incubateur.anct.gouv.fr/politique-de-confidentialite" } ], @@ -117714,23 +117973,26 @@ "sonarcloud": null, "summary": { "httpGrade": "C+", + "nmapGrade": "A", + "nmapOpenPortsCount": 2, + "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, "testsslExpireDate": "2024-01-31T12:16:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 1, - "lighthouse_performance": 0.8493852615356445, - "lighthouse_performanceGrade": "A", + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.7070068359375, + "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.86, + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.3, - "lighthouse_pwaGrade": "E", + "lighthouse_pwa": 0.5, + "lighthouse_pwaGrade": "D", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", @@ -117747,7 +118009,7 @@ "http": { "url": "https://diagoriente.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:42:03 GMT", + "end_time": "Sun, 24 Dec 2023 04:23:40 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -117757,17 +118019,17 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "frame-ancestors https://diagoriente.beta.gouv.fr/ app.diagoriente.beta.gouv.fr diagoriente.beta.gouv.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 04:42:01 GMT", - "ETag": "\"1ffe3-OGAZk4yhf5hqGo9TqzyiA+XEASE\"", + "Date": "Sun, 24 Dec 2023 04:23:39 GMT", + "ETag": "\"1ffe3-wDBNEDqVs8UY6jKKga5VpHEWuek\"", "Server": "nginx", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Frame-Options": "ALLOW-FROM diagoriente.beta.gouv.fr", "x-nextjs-cache": "HIT" }, - "scan_id": 45540402, + "scan_id": 45755729, "score": 45, - "start_time": "Sun, 17 Dec 2023 04:38:33 GMT", + "start_time": "Sun, 24 Dec 2023 04:23:35 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -117780,9 +118042,9 @@ "output": { "data": { "frame-ancestors": [ - "diagoriente.beta.gouv.fr", + "https://diagoriente.beta.gouv.fr/", "app.diagoriente.beta.gouv.fr", - "https://diagoriente.beta.gouv.fr/" + "diagoriente.beta.gouv.fr" ] }, "http": true, @@ -117970,32 +118232,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T04:45:58Z", - "next_check_at": "2023-12-17T04:50:57Z", + "last_check_at": "2023-12-24T04:32:14Z", + "next_check_at": "2023-12-24T04:37:13Z", "mute_until": null, "favicon_url": "https://diagoriente.beta.gouv.fr/favicon-16x16.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:21:08Z", + "tested_at": "2023-12-24T03:57:28Z", "expires_at": "2024-02-07T11:45:43Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.962, "timings": { "redirect": 0, - "namelookup": 123, - "connection": 130, - "handshake": 137, - "response": 144, - "total": 535 + "namelookup": 95, + "connection": 267, + "handshake": 83, + "response": 241, + "total": 686 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "D" }, "nmap": { "host": "diagoriente.beta.gouv.fr", @@ -118406,7 +118668,7 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "OK", - "finding": "52 >= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", @@ -118609,7 +118871,7 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "1702788214" + "finding": "1703391920" }, { "id": "HSTS", @@ -119179,7 +119441,7 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "65" } ], "thirdparties": { @@ -119247,8 +119509,8 @@ "content-encoding": "gzip", "content-security-policy": "frame-ancestors https://diagoriente.beta.gouv.fr/ app.diagoriente.beta.gouv.fr diagoriente.beta.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 04:42:30 GMT", - "etag": "\"1ffe3-OGAZk4yhf5hqGo9TqzyiA+XEASE\"", + "date": "Sun, 24 Dec 2023 04:24:12 GMT", + "etag": "\"1ffe3-wDBNEDqVs8UY6jKKga5VpHEWuek\"", "server": "nginx", "vary": "Accept-Encoding", "x-frame-options": "ALLOW-FROM diagoriente.beta.gouv.fr", @@ -119313,15 +119575,8 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.31.95", + "ip": "142.250.191.234", "geoip": { - "city": { - "geoname_id": 4364745, - "names": { - "en": "Oxford", - "ru": "Оксфорд" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -119351,14 +119606,10 @@ } }, "location": { - "accuracy_radius": 50, - "latitude": 38.6828, - "longitude": -76.1563, - "metro_code": 512, - "time_zone": "America/New_York" - }, - "postal": { - "code": "21654" + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -119373,28 +119624,12 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4361885, - "iso_code": "MD", - "names": { - "de": "Maryland", - "en": "Maryland", - "es": "Maryland", - "fr": "Maryland", - "ja": "メリーランド州", - "pt-BR": "Maryland", - "ru": "Мэриленд", - "zh-CN": "马里兰州" - } - } - ] + } } }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.122.94", + "ip": "172.217.5.3", "geoip": { "continent": { "code": "NA", @@ -119448,7 +119683,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "142.251.163.119", + "ip": "142.250.191.118", "geoip": { "continent": { "code": "NA", @@ -119693,6 +119928,28 @@ ], "rootPath": true }, + { + "slug": "web-vitals", + "name": "web-vitals", + "description": "The web-vitals JavaScript is a tiny, modular library for measuring all the web vitals metrics on real users.", + "confidence": 100, + "version": null, + "icon": "web-vitals.svg", + "website": "https://github.com/GoogleChrome/web-vitals", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + }, + { + "id": 78, + "slug": "rum", + "name": "RUM" + } + ] + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -119716,28 +119973,6 @@ ], "rootPath": true }, - { - "slug": "web-vitals", - "name": "web-vitals", - "description": "The web-vitals JavaScript is a tiny, modular library for measuring all the web vitals metrics on real users.", - "confidence": 100, - "version": null, - "icon": "web-vitals.svg", - "website": "https://github.com/GoogleChrome/web-vitals", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - }, - { - "id": 78, - "slug": "rum", - "name": "RUM" - } - ] - }, { "slug": "webpack", "name": "Webpack", @@ -119813,7 +120048,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:38:08", + "@generated": "Sun, 24 Dec 2023 04:23:11", "site": [ { "@name": "https://diagoriente.beta.gouv.fr", @@ -119988,22 +120223,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -120019,24 +120255,30 @@ "type": "dns", "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", - "timestamp": "2023-12-17T04:44:43.7018566Z", + "extracted-results": [ + "5 mx-mibc-fr-10.mailinblack.com." + ], + "timestamp": "2023-12-24T04:26:31.97273307Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -120051,31 +120293,26 @@ "type": "dns", "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2023-12-17T04:44:43.703139457Z", + "timestamp": "2023-12-24T04:26:32.03227046Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -120085,38 +120322,35 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "diagoriente.beta.gouv.fr.", - "matched-at": "_dmarc.diagoriente.beta.gouv.fr", + "matched-at": "diagoriente.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "\"Sendinblue-code:bfa8bf448e49e98e49c09a8b8884e415\"", + "\"google-site-verification=PkpfLn7Waysjh0hEoTrjU0DV8h4zBuU2zXFIHRRleak\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2023-12-17T04:44:43.878667634Z", + "timestamp": "2023-12-24T04:26:32.116686548Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -120132,28 +120366,30 @@ "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", "extracted-results": [ - "5 mx-mibc-fr-10.mailinblack.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T04:44:44.463944617Z", + "timestamp": "2023-12-24T04:26:32.11864912Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -120163,18 +120399,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "diagoriente.beta.gouv.fr.", - "matched-at": "diagoriente.beta.gouv.fr", + "matched-at": "_dmarc.diagoriente.beta.gouv.fr", "extracted-results": [ - "\"google-site-verification=PkpfLn7Waysjh0hEoTrjU0DV8h4zBuU2zXFIHRRleak\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"Sendinblue-code:bfa8bf448e49e98e49c09a8b8884e415\"" + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T04:44:44.707397732Z", + "timestamp": "2023-12-24T04:26:33.19538341Z", "matcher-status": true }, { @@ -120204,7 +120439,7 @@ "HEAD" ], "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:44:54.036557748Z", + "timestamp": "2023-12-24T04:26:43.739328841Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120242,7 +120477,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:40.694207974Z", + "timestamp": "2023-12-24T04:27:34.761068991Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120269,7 +120504,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:41.074267844Z", + "timestamp": "2023-12-24T04:27:35.128514441Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120296,7 +120531,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:41.07430872Z", + "timestamp": "2023-12-24T04:27:35.128550328Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120323,7 +120558,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:41.074327515Z", + "timestamp": "2023-12-24T04:27:35.128565256Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120355,12 +120590,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "clear-site-data", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.47262971Z", + "timestamp": "2023-12-24T04:27:45.099688399Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120392,12 +120627,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472668773Z", + "timestamp": "2023-12-24T04:27:45.099736088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120429,12 +120664,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472684752Z", + "timestamp": "2023-12-24T04:27:45.099752719Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120466,12 +120701,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472699129Z", + "timestamp": "2023-12-24T04:27:45.099765713Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120503,12 +120738,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472712274Z", + "timestamp": "2023-12-24T04:27:45.099779529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120540,12 +120775,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472725168Z", + "timestamp": "2023-12-24T04:27:45.099793165Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120577,12 +120812,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.47273731Z", + "timestamp": "2023-12-24T04:27:45.099806139Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120614,12 +120849,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472750375Z", + "timestamp": "2023-12-24T04:27:45.099819123Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120651,12 +120886,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:45:48.472766685Z", + "timestamp": "2023-12-24T04:27:45.099836015Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120684,7 +120919,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/robots.txt", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:46:02.06479619Z", + "timestamp": "2023-12-24T04:28:01.293598697Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -120724,7 +120959,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:46:21.267889536Z", + "timestamp": "2023-12-24T04:28:25.48418708Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: diagoriente.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/'", "matcher-status": true }, @@ -120764,7 +120999,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/", "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:46:21.267943877Z", + "timestamp": "2023-12-24T04:28:25.484236793Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: diagoriente.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/'", "matcher-status": true }, @@ -120779,7 +121014,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -120794,7 +121030,7 @@ "Let's Encrypt" ], "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:48:05.005242212Z", + "timestamp": "2023-12-24T04:30:07.222194527Z", "matcher-status": true }, { @@ -120808,7 +121044,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -120823,7 +121060,7 @@ "diagoriente.beta.gouv.fr" ], "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:48:05.005467521Z", + "timestamp": "2023-12-24T04:30:07.222308039Z", "matcher-status": true }, { @@ -120838,7 +121075,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -120853,7 +121091,7 @@ "tls12" ], "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:48:08.43254089Z", + "timestamp": "2023-12-24T04:30:10.564032148Z", "matcher-status": true }, { @@ -120868,7 +121106,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -120883,7 +121122,7 @@ "tls13" ], "ip": "141.94.175.156", - "timestamp": "2023-12-17T04:48:08.634501864Z", + "timestamp": "2023-12-24T04:30:10.784746757Z", "matcher-status": true } ], @@ -120891,7 +121130,7 @@ { "requestedUrl": "https://diagoriente.beta.gouv.fr/", "finalUrl": "https://diagoriente.beta.gouv.fr/", - "fetchTime": "2023-12-17T04:38:22.383Z", + "fetchTime": "2023-12-24T04:23:25.086Z", "runWarnings": [], "categories": { "performance": { @@ -120954,53 +121193,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5047, + "numericValue": 5043, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2906, - "firstMeaningfulPaint": 2906, - "largestContentfulPaint": 2906, - "interactive": 5047, - "speedIndex": 2906, - "totalBlockingTime": 211, - "maxPotentialFID": 346, + "firstContentfulPaint": 2286, + "firstMeaningfulPaint": 2286, + "largestContentfulPaint": 2286, + "interactive": 5043, + "speedIndex": 2286, + "totalBlockingTime": 218, + "maxPotentialFID": 348, "cumulativeLayoutShift": 0.14386000156402587, "cumulativeLayoutShiftMainFrame": 0.14386000156402587, "totalCumulativeLayoutShift": 0.14386000156402587, "observedTimeOrigin": 0, - "observedTimeOriginTs": 343115690, + "observedTimeOriginTs": 286634658, "observedNavigationStart": 0, - "observedNavigationStartTs": 343115690, - "observedFirstPaint": 496, - "observedFirstPaintTs": 343611892, - "observedFirstContentfulPaint": 496, - "observedFirstContentfulPaintTs": 343611892, - "observedFirstContentfulPaintAllFrames": 496, - "observedFirstContentfulPaintAllFramesTs": 343611892, - "observedFirstMeaningfulPaint": 496, - "observedFirstMeaningfulPaintTs": 343611892, - "observedLargestContentfulPaint": 496, - "observedLargestContentfulPaintTs": 343611892, - "observedLargestContentfulPaintAllFrames": 496, - "observedLargestContentfulPaintAllFramesTs": 343611892, - "observedTraceEnd": 3055, - "observedTraceEndTs": 346170821, - "observedLoad": 745, - "observedLoadTs": 343860388, - "observedDomContentLoaded": 727, - "observedDomContentLoadedTs": 343842940, + "observedNavigationStartTs": 286634658, + "observedFirstPaint": 559, + "observedFirstPaintTs": 287193553, + "observedFirstContentfulPaint": 559, + "observedFirstContentfulPaintTs": 287193553, + "observedFirstContentfulPaintAllFrames": 559, + "observedFirstContentfulPaintAllFramesTs": 287193553, + "observedFirstMeaningfulPaint": 559, + "observedFirstMeaningfulPaintTs": 287193553, + "observedLargestContentfulPaint": 559, + "observedLargestContentfulPaintTs": 287193553, + "observedLargestContentfulPaintAllFrames": 559, + "observedLargestContentfulPaintAllFramesTs": 287193553, + "observedTraceEnd": 3219, + "observedTraceEndTs": 289853418, + "observedLoad": 910, + "observedLoadTs": 287545042, + "observedDomContentLoaded": 899, + "observedDomContentLoadedTs": 287533965, "observedCumulativeLayoutShift": 0.14386000156402587, "observedCumulativeLayoutShiftMainFrame": 0.14386000156402587, "observedTotalCumulativeLayoutShift": 0.14386000156402587, - "observedFirstVisualChange": 470, - "observedFirstVisualChangeTs": 343585690, - "observedLastVisualChange": 753, - "observedLastVisualChangeTs": 343868690, - "observedSpeedIndex": 490, - "observedSpeedIndexTs": 343606089 + "observedFirstVisualChange": 553, + "observedFirstVisualChangeTs": 287187658, + "observedLastVisualChange": 920, + "observedLastVisualChangeTs": 287554658, + "observedSpeedIndex": 580, + "observedSpeedIndexTs": 287214178 }, { "lcpInvalidated": false @@ -121022,19 +121261,19 @@ "numScripts": 10, "numStylesheets": 3, "numFonts": 2, - "numTasks": 676, + "numTasks": 681, "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.103, - "throughput": 11497596.455295816, - "maxRtt": 82.83200000000001, - "maxServerLatency": 34.762, - "totalByteWeight": 550114, - "totalTaskTime": 228.11599999999868, - "mainDocumentTransferSize": 32447 + "rtt": 1.8450000000000002, + "throughput": 9143317.785648745, + "maxRtt": 105.38000000000001, + "maxServerLatency": 58.29699999999998, + "totalByteWeight": 550102, + "totalTaskTime": 211.65299999999962, + "mainDocumentTransferSize": 32444 } ] } @@ -121131,8 +121370,8 @@ "sonarcloud": null, "summary": { "httpGrade": "C-", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.962, + "apdexGrade": "D", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", @@ -121171,28 +121410,28 @@ "http": { "url": "https://dossierfacile.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:52:23 GMT", + "end_time": "Sun, 24 Dec 2023 04:29:25 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.data.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.data.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", + "Content-Security-Policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.beta.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.beta.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 04:52:21 GMT", - "ETag": "W/\"656f2617-2799c\"", - "Last-Modified": "Tue, 05 Dec 2023 13:31:03 GMT", + "Date": "Sun, 24 Dec 2023 04:29:24 GMT", + "ETag": "W/\"6581b4d3-2799c\"", + "Last-Modified": "Tue, 19 Dec 2023 15:20:51 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "deny", - "X-Request-ID": "79bfd814-0076-49cd-a89a-ee7f68eab8ee" + "X-Request-ID": "f0124a39-b374-453a-9305-468b9ec55719" }, - "scan_id": 45540693, + "scan_id": 45755870, "score": 55, - "start_time": "Sun, 17 Dec 2023 04:52:16 GMT", + "start_time": "Sun, 24 Dec 2023 04:29:18 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -121205,53 +121444,53 @@ "output": { "data": { "connect-src": [ - "https://stats.data.gouv.fr", - "*.dossierfacile.logement.gouv.fr", "https://sockjs-helpscout.pusher.com", + "https://stats.beta.gouv.fr", "https://sheets.googleapis.com", - "wss://ws-helpscout.pusher.com", - "*.helpscout.net", + "*.dossierfacile.logement.gouv.fr", "https://sentry.incubateur.net", - "*.cloudfront.net", - "*.dossierfacile.fr" + "*.helpscout.net", + "wss://ws-helpscout.pusher.com", + "*.dossierfacile.fr", + "*.cloudfront.net" ], "default-src": [ "'none'" ], "font-src": [ + "data:", + "'self'", "fonts.google.com", "fonts.googleapis.com", - "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/", - "'self'", "fonts.gstatic.com", - "data:" + "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/" ], "frame-src": [ "http://metabase.dossierfacile.logement.gouv.fr" ], "img-src": [ - "'self'", - "*.helpscout.net", "data:", - "*.cloudfront.net" + "*.helpscout.net", + "*.cloudfront.net", + "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "'unsafe-eval'", - "https://stats.data.gouv.fr", + "'self'", + "https://stats.beta.gouv.fr", "*.dossierfacile.logement.gouv.fr", "'unsafe-inline'", - "'self'", "https://beacon-v2.helpscout.net", - "*.dossierfacile.fr" + "*.dossierfacile.fr", + "'unsafe-eval'" ], "style-src": [ - "'unsafe-inline'", - "'self'", "fonts.googleapis.com", - "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css" + "'unsafe-inline'", + "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css", + "'self'" ] }, "http": true, @@ -121445,15 +121684,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:00:49Z", - "next_check_at": "2023-12-17T05:05:49Z", + "last_check_at": "2023-12-24T04:40:34Z", + "next_check_at": "2023-12-24T04:45:31Z", "mute_until": null, "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:40:54Z", + "tested_at": "2023-12-24T04:15:48Z", "expires_at": "2024-03-10T08:36:06Z", "valid": true, "error": null @@ -121461,12 +121700,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 364, - "namelookup": 188, - "connection": 99, - "handshake": 100, - "response": 95, - "total": 847 + "redirect": 650, + "namelookup": 204, + "connection": 157, + "handshake": 165, + "response": 161, + "total": 1336 } }, "uptimeGrade": "A", @@ -121499,77 +121738,77 @@ "testssl": [ { "id": "service", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121577,7 +121816,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121585,7 +121824,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121593,7 +121832,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -121601,7 +121840,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -121609,7 +121848,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -121617,483 +121856,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-11 08:36" }, { "id": "cert_notAfter", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-10 08:36" }, { "id": "cert_extlifeSpan", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702788827" + "finding": "1703392284" }, { "id": "HSTS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -122101,7 +122340,7 @@ }, { "id": "heartbleed", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -122110,7 +122349,7 @@ }, { "id": "CCS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -122119,7 +122358,7 @@ }, { "id": "ticketbleed", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -122128,7 +122367,7 @@ }, { "id": "ROBOT", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -122137,7 +122376,7 @@ }, { "id": "secure_renego", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -122145,7 +122384,7 @@ }, { "id": "secure_client_renego", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -122154,7 +122393,7 @@ }, { "id": "CRIME_TLS", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -122163,7 +122402,7 @@ }, { "id": "BREACH", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -122172,7 +122411,7 @@ }, { "id": "POODLE_SSL", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -122181,14 +122420,14 @@ }, { "id": "fallback_SCSV", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -122197,7 +122436,7 @@ }, { "id": "FREAK", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -122206,7 +122445,7 @@ }, { "id": "DROWN", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -122215,7 +122454,7 @@ }, { "id": "DROWN_hint", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -122224,7 +122463,7 @@ }, { "id": "LOGJAM", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -122233,7 +122472,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -122242,7 +122481,7 @@ }, { "id": "BEAST", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -122251,7 +122490,7 @@ }, { "id": "LUCKY13", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -122260,7 +122499,7 @@ }, { "id": "winshock", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -122269,7 +122508,7 @@ }, { "id": "RC4", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -122278,399 +122517,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dossierfacile.fr/5.104.101.30", + "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122678,7 +122917,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122686,7 +122925,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122694,7 +122933,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -122702,7 +122941,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -122710,7 +122949,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -122718,483 +122957,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-11 08:36" }, { "id": "cert_notAfter", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-10 08:36" }, { "id": "cert_extlifeSpan", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702788878" + "finding": "1703392380" }, { "id": "HSTS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -123202,7 +123441,7 @@ }, { "id": "heartbleed", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -123211,7 +123450,7 @@ }, { "id": "CCS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -123220,7 +123459,7 @@ }, { "id": "ticketbleed", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -123229,7 +123468,7 @@ }, { "id": "ROBOT", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -123238,7 +123477,7 @@ }, { "id": "secure_renego", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -123246,7 +123485,7 @@ }, { "id": "secure_client_renego", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -123255,7 +123494,7 @@ }, { "id": "CRIME_TLS", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -123264,7 +123503,7 @@ }, { "id": "BREACH", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -123273,7 +123512,7 @@ }, { "id": "POODLE_SSL", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -123282,14 +123521,14 @@ }, { "id": "fallback_SCSV", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -123298,7 +123537,7 @@ }, { "id": "FREAK", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -123307,7 +123546,7 @@ }, { "id": "DROWN", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -123316,7 +123555,7 @@ }, { "id": "DROWN_hint", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -123325,7 +123564,7 @@ }, { "id": "LOGJAM", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -123334,7 +123573,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -123343,7 +123582,7 @@ }, { "id": "BEAST", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -123352,7 +123591,7 @@ }, { "id": "LUCKY13", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -123361,7 +123600,7 @@ }, { "id": "winshock", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -123370,7 +123609,7 @@ }, { "id": "RC4", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -123379,332 +123618,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "dossierfacile.fr/109.232.236.90", + "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "106" + "finding": "197" } ], "thirdparties": { @@ -123776,7 +124015,7 @@ "value": "fr", "domain": ".dossierfacile.logement.gouv.fr", "path": "/", - "expires": 1734324773, + "expires": 1734928194, "size": 6, "httpOnly": false, "secure": false, @@ -123789,16 +124028,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.data.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.data.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", + "content-security-policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.beta.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.beta.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 04:52:53 GMT", - "etag": "W/\"656f2617-2799c\"", - "last-modified": "Tue, 05 Dec 2023 13:31:03 GMT", + "date": "Sun, 24 Dec 2023 04:29:54 GMT", + "etag": "W/\"6581b4d3-2799c\"", + "last-modified": "Tue, 19 Dec 2023 15:20:51 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "deny", - "x-request-id": "6a12b0ad-d944-4fc5-b876-334681849fe2" + "x-request-id": "82baf48a-cfe4-49d3-bb8b-3fbf5b0f9f09" }, "endpoints": [ { @@ -123859,15 +124098,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", + "ip": "151.101.201.229", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 5393015, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "Santa Clara", + "en": "Santa Clara", + "es": "Santa Clara", + "fr": "Santa Clara", + "ja": "サンタクララ", + "pt-BR": "Santa Clara", + "ru": "Санта-Клара", + "zh-CN": "圣克拉拉" } }, "continent": { @@ -123900,13 +124143,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 37.3931, + "longitude": -121.962, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20190" + "code": "95054" }, "registered_country": { "geoname_id": 6252001, @@ -123924,15 +124167,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -123940,7 +124185,7 @@ }, { "hostname": "beacon-v2.helpscout.net", - "ip": "99.84.108.95", + "ip": "18.238.192.91", "geoip": { "continent": { "code": "NA", @@ -123994,7 +124239,7 @@ }, { "hostname": "d3hb14vkzrxvla.cloudfront.net", - "ip": "13.32.207.216", + "ip": "18.155.204.172", "geoip": { "continent": { "code": "NA", @@ -124238,7 +124483,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:51:50", + "@generated": "Sun, 24 Dec 2023 04:28:51", "site": [ { "@name": "https://dossierfacile.fr", @@ -124363,6 +124608,41 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "dossierfacile.fr.", + "matched-at": "dossierfacile.fr", + "timestamp": "2023-12-24T04:34:48.01999044Z", + "matcher-status": true + }, { "template": "dns/mx-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", @@ -124397,33 +124677,30 @@ "host": "dossierfacile.fr.", "matched-at": "dossierfacile.fr", "extracted-results": [ - "10 ALT4.ASPMX.L.GOOGLE.COM.", "10 ALT3.ASPMX.L.GOOGLE.COM.", - "5 ALT1.ASPMX.L.GOOGLE.COM.", + "10 ALT4.ASPMX.L.GOOGLE.COM.", "5 ALT2.ASPMX.L.GOOGLE.COM.", + "5 ALT1.ASPMX.L.GOOGLE.COM.", "1 ASPMX.L.GOOGLE.COM." ], - "timestamp": "2023-12-17T04:55:59.961307926Z", + "timestamp": "2023-12-24T04:34:48.152081264Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -124438,7 +124715,11 @@ "type": "dns", "host": "dossierfacile.fr.", "matched-at": "dossierfacile.fr", - "timestamp": "2023-12-17T04:55:59.961486227Z", + "extracted-results": [ + "dns17.ovh.net.", + "ns17.ovh.net." + ], + "timestamp": "2023-12-24T04:34:48.291495346Z", "matcher-status": true }, { @@ -124475,17 +124756,17 @@ "matched-at": "dossierfacile.fr", "extracted-results": [ "\"google-site-verification=hFu6GQ0N694VDDEbLTACh4bw9Df4LjSW1_9zMZcseqA\"", + "\"Sendinblue-code:045c66b329f70c18d43a77182e2afb74\"", "\"google-site-verification=-slzh5L9JoxuwHA2BzSzUUSSWI2TStZ53U1eZc7VaDU\"", + "\"1|www.dossierfacile.fr\"", "\"google-site-verification=EDWoi4hgDsd2yp2_rPsUIsHZ_Dj14NfBH65NABwD8GA\"", - "\"Sendinblue-code:045c66b329f70c18d43a77182e2afb74\"", + "\"**ZbD678MhF345**\"", "\"google-site-verification=nOSWR7SWUbzQqyy0Abhb5j6BXRZw5GV_hQ-XO7JbW0w\"", - "\"google-site-verification=Uh5k_96PDJF9temMFbq1WKGWsclD2BXYPvKj7_xe1ag\"", "\"ZbD678MhF345\"", - "\"**ZbD678MhF345**\"", - "\"v=spf1 mx include:_spf.google.com include:spf.sendinblue.com include:helpscoutemail.com include:9303710.spf05.hubspotemail.net ~all\"", - "\"1|www.dossierfacile.fr\"" + "\"google-site-verification=Uh5k_96PDJF9temMFbq1WKGWsclD2BXYPvKj7_xe1ag\"", + "\"v=spf1 mx include:_spf.google.com include:spf.sendinblue.com include:helpscoutemail.com include:9303710.spf05.hubspotemail.net ~all\"" ], - "timestamp": "2023-12-17T04:56:00.033492023Z", + "timestamp": "2023-12-24T04:34:49.02185161Z", "matcher-status": true }, { @@ -124525,43 +124806,7 @@ "extracted-results": [ "\"v=DMARC1; p=quarantine; rua=mailto:dmarc@dossierfacile.fr!10m; ruf=mailto:dmarc@dossierfacile.fr!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T04:56:00.037318187Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "dossierfacile.fr.", - "matched-at": "dossierfacile.fr", - "extracted-results": [ - "dns17.ovh.net.", - "ns17.ovh.net." - ], - "timestamp": "2023-12-17T04:56:00.045945266Z", + "timestamp": "2023-12-24T04:34:49.141857107Z", "matcher-status": true }, { @@ -124598,15 +124843,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantPhone", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "Dot Zero" + "+33.664928123" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231674873Z", + "timestamp": "2023-12-24T04:36:19.565090287Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124649,13 +124894,13 @@ "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "159 avenue de Wagram", "Paris", "75017", - "FR" + "FR", + "159 avenue de Wagram" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231720097Z", + "timestamp": "2023-12-24T04:36:19.565130622Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124701,7 +124946,7 @@ "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231741668Z", + "timestamp": "2023-12-24T04:36:19.565151701Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124739,153 +124984,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://dossierfacile.fr", - "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", - "extracted-results": [ - "false" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231752197Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://dossierfacile.fr", - "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", - "extracted-results": [ - "active" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.23176966Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://dossierfacile.fr", - "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", - "extracted-results": [ - "2022-08-18T13:00:49Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231906225Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", + "extractor-name": "nameServers", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "2024-08-18T10:48:28Z" + "dns17.ovh.net", + "ns17.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231933677Z", + "timestamp": "2023-12-24T04:36:19.565167491Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124923,15 +125031,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "secureDNS", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "+33.664928123" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231953574Z", + "timestamp": "2023-12-24T04:36:19.565183311Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124969,16 +125077,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrationDate", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "ns17.ovh.net", - "dns17.ovh.net" + "2019-08-26T12:33:33Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231971748Z", + "timestamp": "2023-12-24T04:36:19.565196215Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -125016,15 +125123,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "2019-08-26T12:33:33Z" + "2022-08-18T13:00:49Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.231992838Z", + "timestamp": "2023-12-24T04:36:19.565210281Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -125062,7 +125169,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantOrg", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", @@ -125070,7 +125177,7 @@ "Dot Zero" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.232008978Z", + "timestamp": "2023-12-24T04:36:19.565223285Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -125116,7 +125223,145 @@ "1ad87e27-d507-4a5e-9f85-990b44aa5519@u.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T04:56:54.232024827Z", + "timestamp": "2023-12-24T04:36:19.56523635Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://dossierfacile.fr", + "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", + "extracted-results": [ + "active" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T04:36:19.565249243Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "expirationDate", + "type": "http", + "host": "https://dossierfacile.fr", + "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", + "extracted-results": [ + "2024-08-18T10:48:28Z" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T04:36:19.565261907Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantName", + "type": "http", + "host": "https://dossierfacile.fr", + "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", + "extracted-results": [ + "Dot Zero" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T04:36:19.565274591Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -125153,7 +125398,7 @@ "https://beacon-v2.helpscout.net" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T04:57:00.122165128Z", + "timestamp": "2023-12-24T04:36:29.734456355Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dossierfacile.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dossierfacile.fr/'", "matcher-status": true }, @@ -125168,7 +125413,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -125183,7 +125429,7 @@ "Let's Encrypt" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T05:00:06.939507943Z", + "timestamp": "2023-12-24T04:39:54.386694851Z", "matcher-status": true }, { @@ -125197,7 +125443,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -125212,7 +125459,7 @@ "dossierfacile.fr" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T05:00:06.93965102Z", + "timestamp": "2023-12-24T04:39:54.386837136Z", "matcher-status": true }, { @@ -125227,7 +125474,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -125242,7 +125490,7 @@ "tls12" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T05:00:08.239311291Z", + "timestamp": "2023-12-24T04:39:56.864226799Z", "matcher-status": true }, { @@ -125257,7 +125505,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -125272,7 +125521,7 @@ "tls13" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T05:00:08.428172221Z", + "timestamp": "2023-12-24T04:39:57.178921586Z", "matcher-status": true } ], @@ -125280,7 +125529,7 @@ { "requestedUrl": "https://dossierfacile.fr/", "finalUrl": "https://www.dossierfacile.logement.gouv.fr/", - "fetchTime": "2023-12-17T04:52:04.965Z", + "fetchTime": "2023-12-24T04:29:05.991Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://dossierfacile.fr/) was redirected to https://www.dossierfacile.logement.gouv.fr/. Try testing the second URL directly." ], @@ -125293,7 +125542,7 @@ "snapshot" ], "id": "performance", - "score": 0.4373928070068359 + "score": 0.42888832092285156 }, "accessibility": { "title": "Accessibility", @@ -125345,53 +125594,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10118, + "numericValue": 11670, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3951, - "firstMeaningfulPaint": 3951, - "largestContentfulPaint": 7793, - "interactive": 10118, - "speedIndex": 6791, - "totalBlockingTime": 239, - "maxPotentialFID": 231, - "cumulativeLayoutShift": 0.0004560004340277778, - "cumulativeLayoutShiftMainFrame": 0.0004560004340277778, - "totalCumulativeLayoutShift": 0.0004560004340277778, + "firstContentfulPaint": 4328, + "firstMeaningfulPaint": 4328, + "largestContentfulPaint": 9189, + "interactive": 11670, + "speedIndex": 8858, + "totalBlockingTime": 383, + "maxPotentialFID": 212, + "cumulativeLayoutShift": 0.00018017578125, + "cumulativeLayoutShiftMainFrame": 0.00018017578125, + "totalCumulativeLayoutShift": 0.00018017578125, "observedTimeOrigin": 0, - "observedTimeOriginTs": 299452626, + "observedTimeOriginTs": 366522918, "observedNavigationStart": 0, - "observedNavigationStartTs": 299452626, - "observedFirstPaint": 912, - "observedFirstPaintTs": 300364127, - "observedFirstContentfulPaint": 912, - "observedFirstContentfulPaintTs": 300364127, - "observedFirstContentfulPaintAllFrames": 912, - "observedFirstContentfulPaintAllFramesTs": 300364127, - "observedFirstMeaningfulPaint": 912, - "observedFirstMeaningfulPaintTs": 300364127, - "observedLargestContentfulPaint": 1101, - "observedLargestContentfulPaintTs": 300553762, - "observedLargestContentfulPaintAllFrames": 1101, - "observedLargestContentfulPaintAllFramesTs": 300553762, - "observedTraceEnd": 3921, - "observedTraceEndTs": 303373644, - "observedLoad": 1517, - "observedLoadTs": 300969296, - "observedDomContentLoaded": 1270, - "observedDomContentLoadedTs": 300722765, - "observedCumulativeLayoutShift": 0.0004560004340277778, - "observedCumulativeLayoutShiftMainFrame": 0.0004560004340277778, - "observedTotalCumulativeLayoutShift": 0.0004560004340277778, - "observedFirstVisualChange": 902, - "observedFirstVisualChangeTs": 300354626, - "observedLastVisualChange": 1701, - "observedLastVisualChangeTs": 301153626, - "observedSpeedIndex": 1097, - "observedSpeedIndexTs": 300549644 + "observedNavigationStartTs": 366522918, + "observedFirstPaint": 1594, + "observedFirstPaintTs": 368116559, + "observedFirstContentfulPaint": 1594, + "observedFirstContentfulPaintTs": 368116559, + "observedFirstContentfulPaintAllFrames": 1594, + "observedFirstContentfulPaintAllFramesTs": 368116559, + "observedFirstMeaningfulPaint": 1594, + "observedFirstMeaningfulPaintTs": 368116559, + "observedLargestContentfulPaint": 2003, + "observedLargestContentfulPaintTs": 368525798, + "observedLargestContentfulPaintAllFrames": 2003, + "observedLargestContentfulPaintAllFramesTs": 368525798, + "observedTraceEnd": 5063, + "observedTraceEndTs": 371586088, + "observedLoad": 2753, + "observedLoadTs": 369276255, + "observedDomContentLoaded": 1966, + "observedDomContentLoadedTs": 368489266, + "observedCumulativeLayoutShift": 0.00018017578125, + "observedCumulativeLayoutShiftMainFrame": 0.00018017578125, + "observedTotalCumulativeLayoutShift": 0.00018017578125, + "observedFirstVisualChange": 1595, + "observedFirstVisualChangeTs": 368117918, + "observedLastVisualChange": 2578, + "observedLastVisualChangeTs": 369100918, + "observedSpeedIndex": 1952, + "observedSpeedIndexTs": 368475094 }, { "lcpInvalidated": false @@ -125409,22 +125658,22 @@ "type": "debugdata", "items": [ { - "numRequests": 77, + "numRequests": 78, "numScripts": 9, "numStylesheets": 3, "numFonts": 4, - "numTasks": 1333, - "numTasksOver10ms": 7, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numTasks": 1482, + "numTasksOver10ms": 15, + "numTasksOver25ms": 7, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 21517015.5610441, - "maxRtt": 82.797, - "maxServerLatency": 97.21799999999999, - "totalByteWeight": 1376818, - "totalTaskTime": 509.2099999999975, + "throughput": 12594632.854413448, + "maxRtt": 150.279, + "maxServerLatency": 123.89799999999997, + "totalByteWeight": 1421406, + "totalTaskTime": 663.781, "mainDocumentTransferSize": 98829 } ] @@ -125536,7 +125785,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.4373928070068359, + "lighthouse_performance": 0.42888832092285156, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -125565,29 +125814,29 @@ "http": { "url": "https://emplois.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:54:47 GMT", + "end_time": "Sun, 24 Dec 2023 04:42:20 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "7252", - "Content-Security-Policy": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Fsl9fZoXGlPucTqiKukC3w=='; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Fsl9fZoXGlPucTqiKukC3w=='; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/", + "Content-Length": "7316", + "Content-Security-Policy": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-+XiiJI1Igryifcykd9PYFg=='; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-+XiiJI1Igryifcykd9PYFg=='; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 04:54:45 GMT", + "Date": "Sun, 24 Dec 2023 04:42:18 GMT", "Referrer-Policy": "same-origin", - "Sozu-Id": "01HHV20TNFWRB681F9Q0VA3B8X", + "Sozu-Id": "01HJD232ASHA8JC6Q136CY3JZY", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "7b421abf-6395-4056-9dab-655346174742" + "X-Request-ID": "3100587b-aa18-4141-8c67-5a5d0db23982" }, - "scan_id": 45540760, + "scan_id": 45756207, "score": 110, - "start_time": "Sun, 17 Dec 2023 04:54:42 GMT", + "start_time": "Sun, 24 Dec 2023 04:42:14 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -125603,12 +125852,12 @@ "'none'" ], "connect-src": [ + "*.hotjar.com", + "'self'", + "wss://*.hotjar.com", "https://matomo.inclusion.beta.gouv.fr/", "*.hotjar.io", - "*.sentry.io", - "wss://*.hotjar.com", - "'self'", - "*.hotjar.com" + "*.sentry.io" ], "default-src": [ "'self'" @@ -125622,50 +125871,50 @@ ], "frame-src": [ "https://communaute.inclusion.beta.gouv.fr", - "https://pilotage.inclusion.beta.gouv.fr", "https://stats.inclusion.beta.gouv.fr", + "blob:", + "https://tally.so", + "https://inclusion.beta.gouv.fr", "*.hotjar.com", "data:", "https://app.livestorm.co", - "https://inclusion.beta.gouv.fr", - "blob:", - "https://tally.so" + "https://pilotage.inclusion.beta.gouv.fr" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "https://tile.openstreetmap.org", - "'self'", "*.hotjar.com", + "https://*.tile.openstreetmap.org", + "'self'", "data:", "https://cdn.redoc.ly", - "https://*.tile.openstreetmap.org" + "https://matomo.inclusion.beta.gouv.fr/", + "https://tile.openstreetmap.org" ], "object-src": [ "'none'" ], "script-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-fsl9fzoxglpuctqikukc3w=='", "https://stats.inclusion.beta.gouv.fr", + "https://tally.so", "*.hotjar.com", "'self'", - "https://tally.so" + "'nonce-+xiiji1igryifcykd9pyfg=='", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src-elem": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-fsl9fzoxglpuctqikukc3w=='", "https://stats.inclusion.beta.gouv.fr", + "https://tally.so", "*.hotjar.com", "'self'", - "https://tally.so" + "'nonce-+xiiji1igryifcykd9pyfg=='", + "https://matomo.inclusion.beta.gouv.fr/" ], "style-src": [ "'unsafe-inline'", "'self'" ], "worker-src": [ - "'self'", - "blob:" + "blob:", + "'self'" ] }, "http": true, @@ -125840,7 +126089,7 @@ "url": "https://emplois.inclusion.beta.gouv.fr", "alias": null, "last_status": 200, - "uptime": 99.873, + "uptime": 99.965, "down": false, "down_since": null, "error": null, @@ -125854,15 +126103,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:11:41Z", - "next_check_at": "2023-12-17T05:16:40Z", + "last_check_at": "2023-12-24T05:00:14Z", + "next_check_at": "2023-12-24T05:05:13Z", "mute_until": null, "favicon_url": "https://emplois.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:31:57Z", + "tested_at": "2023-12-24T04:40:22Z", "expires_at": "2024-02-13T06:58:34Z", "valid": true, "error": null @@ -125870,12 +126119,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 564, + "redirect": 610, "namelookup": 0, - "connection": 135, - "handshake": 141, - "response": 159, - "total": 999 + "connection": 152, + "handshake": 169, + "response": 181, + "total": 1112 } }, "uptimeGrade": "A", @@ -125995,70 +126244,70 @@ "testssl": [ { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126066,7 +126315,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126074,7 +126323,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126082,7 +126331,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126090,7 +126339,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -126098,7 +126347,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -126106,574 +126355,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702788972" + "finding": "1703393060" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -126681,7 +126930,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -126690,7 +126939,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -126699,7 +126948,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -126708,7 +126957,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -126717,7 +126966,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -126725,7 +126974,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -126734,7 +126983,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -126743,7 +126992,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -126752,7 +127001,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -126761,14 +127010,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -126777,7 +127026,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -126786,7 +127035,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -126795,7 +127044,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -126804,7 +127053,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -126813,7 +127062,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -126822,7 +127071,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -126831,7 +127080,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -126840,7 +127089,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -126849,7 +127098,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -126858,385 +127107,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -127244,7 +127493,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -127252,7 +127501,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -127260,7 +127509,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -127268,7 +127517,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -127276,7 +127525,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -127284,574 +127533,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISAy358ix7jYJNuGR0aaZBLoLOMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUwNjU4MzVaFw0yNDAyMTMwNjU4MzRaMCkxJzAlBgNVBAMTHmVtcGxvaXMuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAILa8QCc+ChdkLsSS/4tI0SdhWLjiJY+H550M/EMyliF5Aialln2HP8S8mnf1Efja8qQ6E16hXU1L+FgsO273r0vhwYlk2G63mvl76ieiamQSf9gqMPDJDyWJN1sm81YdK+e0TW6frBl9Zpjz5RC3r32qA3jgth8qUoVhB2z5640yM5ZMU/JroMxeI8Wwp9e829YOf0HaSoC5mq2rz6l78iwW9hilrG+ZYy6LurZpwNL3CbUT/VXXdel1w+KELOLLCYjpHDgue7OqLE9MW9ob39o4jfXUsibyKovB22M0PeOGTl8XY5t9ZSyLlD09sJgciyGSzitTy3EhTPEFrvojL0CAwEAAaOCAiEwggIdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgYk69VyY6pP+XknLpf4UOmTsw1IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL0f07kgAABAMARzBFAiAVOnZy87H8NGJW1zrB5JniwVWL0wa7wrhxZFJYQ4XaTgIhAOGzZxnwaYISD2RLsUEA1K6OEr/VdUFavIW1LG9rCKagAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL0f07lgAABAMASDBGAiEA3ZNyaaKvlIU/Zd99Hef0hsXmyRAAs/Qi9B6OilqhuGkCIQDWCiXcQuBo4oLg6xUWYCkui0caEvmaSqbVUx0Xx10K7TANBgkqhkiG9w0BAQsFAAOCAQEAbUEAgu4yom6wrWJoPwst6j02qxEaog4arm/+5wZof3Pe2LB+8ARCXXWHfFCJ05RRrf1EmPopnEaj/2JL2qPo6ksemeZJbi/o+EPTXiAA+7fDsjR006nZo/X4NGOGrthTeBQKIZaQFYlajDndKpUkHy7vooJXCvgPcfeFKyVWuR3lMG4QA+sqxP18ZdHGNmlwU+0s8IdBz6raGeIgHQv5AAU2cfaGv5+SWJTsuZwwza+/p5GROX/mUyUrAe2Sw2qTqn1lW1luYnG638fDYNW+ZllKIJGxIBFNJxrBAqJHbwKs4QG80kDTlaaf2sBPdSffZRFMzt/VHZIkyhvIZoQ+gw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702789026" + "finding": "1703393160" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -127859,7 +128108,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -127868,7 +128117,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -127877,7 +128126,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -127886,7 +128135,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -127895,7 +128144,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -127903,7 +128152,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -127912,7 +128161,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -127921,7 +128170,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -127930,7 +128179,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -127939,14 +128188,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -127955,7 +128204,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -127964,7 +128213,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -127973,7 +128222,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -127982,7 +128231,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -127991,7 +128240,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -128000,7 +128249,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -128009,7 +128258,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -128018,7 +128267,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -128027,7 +128276,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -128036,385 +128285,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128422,7 +128671,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128430,7 +128679,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128438,7 +128687,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128446,7 +128695,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128454,7 +128703,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128462,574 +128711,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702789082" + "finding": "1703393259" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -129037,7 +129286,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -129046,7 +129295,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -129055,7 +129304,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -129064,7 +129313,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -129073,7 +129322,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -129081,7 +129330,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -129090,7 +129339,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -129099,7 +129348,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -129108,7 +129357,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -129117,14 +129366,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -129133,7 +129382,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -129142,7 +129391,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -129151,7 +129400,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -129160,7 +129409,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129169,7 +129418,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129178,7 +129427,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -129187,7 +129436,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -129196,7 +129445,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -129205,7 +129454,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -129214,385 +129463,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129600,7 +129849,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129608,7 +129857,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129616,7 +129865,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -129624,7 +129873,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -129632,7 +129881,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -129640,574 +129889,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISAy358ix7jYJNuGR0aaZBLoLOMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUwNjU4MzVaFw0yNDAyMTMwNjU4MzRaMCkxJzAlBgNVBAMTHmVtcGxvaXMuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAILa8QCc+ChdkLsSS/4tI0SdhWLjiJY+H550M/EMyliF5Aialln2HP8S8mnf1Efja8qQ6E16hXU1L+FgsO273r0vhwYlk2G63mvl76ieiamQSf9gqMPDJDyWJN1sm81YdK+e0TW6frBl9Zpjz5RC3r32qA3jgth8qUoVhB2z5640yM5ZMU/JroMxeI8Wwp9e829YOf0HaSoC5mq2rz6l78iwW9hilrG+ZYy6LurZpwNL3CbUT/VXXdel1w+KELOLLCYjpHDgue7OqLE9MW9ob39o4jfXUsibyKovB22M0PeOGTl8XY5t9ZSyLlD09sJgciyGSzitTy3EhTPEFrvojL0CAwEAAaOCAiEwggIdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgYk69VyY6pP+XknLpf4UOmTsw1IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL0f07kgAABAMARzBFAiAVOnZy87H8NGJW1zrB5JniwVWL0wa7wrhxZFJYQ4XaTgIhAOGzZxnwaYISD2RLsUEA1K6OEr/VdUFavIW1LG9rCKagAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL0f07lgAABAMASDBGAiEA3ZNyaaKvlIU/Zd99Hef0hsXmyRAAs/Qi9B6OilqhuGkCIQDWCiXcQuBo4oLg6xUWYCkui0caEvmaSqbVUx0Xx10K7TANBgkqhkiG9w0BAQsFAAOCAQEAbUEAgu4yom6wrWJoPwst6j02qxEaog4arm/+5wZof3Pe2LB+8ARCXXWHfFCJ05RRrf1EmPopnEaj/2JL2qPo6ksemeZJbi/o+EPTXiAA+7fDsjR006nZo/X4NGOGrthTeBQKIZaQFYlajDndKpUkHy7vooJXCvgPcfeFKyVWuR3lMG4QA+sqxP18ZdHGNmlwU+0s8IdBz6raGeIgHQv5AAU2cfaGv5+SWJTsuZwwza+/p5GROX/mUyUrAe2Sw2qTqn1lW1luYnG638fDYNW+ZllKIJGxIBFNJxrBAqJHbwKs4QG80kDTlaaf2sBPdSffZRFMzt/VHZIkyhvIZoQ+gw==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702789137" + "finding": "1703393358" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -130215,7 +130464,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -130224,7 +130473,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -130233,7 +130482,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -130242,7 +130491,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -130251,7 +130500,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -130259,7 +130508,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -130268,7 +130517,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -130277,7 +130526,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -130286,7 +130535,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -130295,14 +130544,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -130311,7 +130560,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -130320,7 +130569,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -130329,7 +130578,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -130338,7 +130587,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130347,7 +130596,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130356,7 +130605,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -130365,7 +130614,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -130374,7 +130623,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -130383,7 +130632,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -130392,385 +130641,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130778,7 +131027,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130786,7 +131035,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130794,7 +131043,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130802,7 +131051,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130810,7 +131059,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130818,574 +131067,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702789192" + "finding": "1703393457" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -131393,7 +131642,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -131402,7 +131651,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -131411,7 +131660,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -131420,7 +131669,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -131429,7 +131678,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -131437,7 +131686,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -131446,7 +131695,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -131455,7 +131704,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -131464,7 +131713,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -131473,14 +131722,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -131489,7 +131738,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -131498,7 +131747,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -131507,7 +131756,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -131516,7 +131765,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -131525,7 +131774,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -131534,7 +131783,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -131543,7 +131792,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -131552,7 +131801,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -131561,7 +131810,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -131570,315 +131819,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" @@ -132237,7 +132486,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -132482,7 +132731,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702789248" + "finding": "1703393557" }, { "id": "HSTS_time", @@ -132552,7 +132801,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", @@ -133063,70 +133312,70 @@ }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133134,7 +133383,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133142,7 +133391,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133150,7 +133399,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133158,7 +133407,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133166,7 +133415,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133174,574 +133423,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISAy358ix7jYJNuGR0aaZBLoLOMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUwNjU4MzVaFw0yNDAyMTMwNjU4MzRaMCkxJzAlBgNVBAMTHmVtcGxvaXMuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAILa8QCc+ChdkLsSS/4tI0SdhWLjiJY+H550M/EMyliF5Aialln2HP8S8mnf1Efja8qQ6E16hXU1L+FgsO273r0vhwYlk2G63mvl76ieiamQSf9gqMPDJDyWJN1sm81YdK+e0TW6frBl9Zpjz5RC3r32qA3jgth8qUoVhB2z5640yM5ZMU/JroMxeI8Wwp9e829YOf0HaSoC5mq2rz6l78iwW9hilrG+ZYy6LurZpwNL3CbUT/VXXdel1w+KELOLLCYjpHDgue7OqLE9MW9ob39o4jfXUsibyKovB22M0PeOGTl8XY5t9ZSyLlD09sJgciyGSzitTy3EhTPEFrvojL0CAwEAAaOCAiEwggIdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgYk69VyY6pP+XknLpf4UOmTsw1IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL0f07kgAABAMARzBFAiAVOnZy87H8NGJW1zrB5JniwVWL0wa7wrhxZFJYQ4XaTgIhAOGzZxnwaYISD2RLsUEA1K6OEr/VdUFavIW1LG9rCKagAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL0f07lgAABAMASDBGAiEA3ZNyaaKvlIU/Zd99Hef0hsXmyRAAs/Qi9B6OilqhuGkCIQDWCiXcQuBo4oLg6xUWYCkui0caEvmaSqbVUx0Xx10K7TANBgkqhkiG9w0BAQsFAAOCAQEAbUEAgu4yom6wrWJoPwst6j02qxEaog4arm/+5wZof3Pe2LB+8ARCXXWHfFCJ05RRrf1EmPopnEaj/2JL2qPo6ksemeZJbi/o+EPTXiAA+7fDsjR006nZo/X4NGOGrthTeBQKIZaQFYlajDndKpUkHy7vooJXCvgPcfeFKyVWuR3lMG4QA+sqxP18ZdHGNmlwU+0s8IdBz6raGeIgHQv5AAU2cfaGv5+SWJTsuZwwza+/p5GROX/mUyUrAe2Sw2qTqn1lW1luYnG638fDYNW+ZllKIJGxIBFNJxrBAqJHbwKs4QG80kDTlaaf2sBPdSffZRFMzt/VHZIkyhvIZoQ+gw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1702789303" + "finding": "1703393656" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -133749,7 +133998,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -133758,7 +134007,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -133767,7 +134016,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -133776,7 +134025,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -133785,7 +134034,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -133793,7 +134042,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -133802,7 +134051,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -133811,7 +134060,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -133820,7 +134069,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -133829,14 +134078,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -133845,7 +134094,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -133854,7 +134103,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -133863,7 +134112,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -133872,7 +134121,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -133881,7 +134130,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -133890,7 +134139,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -133899,7 +134148,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -133908,7 +134157,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -133917,7 +134166,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -133926,385 +134175,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134312,7 +134561,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134320,7 +134569,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134328,7 +134577,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134336,7 +134585,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134344,7 +134593,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134352,574 +134601,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702789359" + "finding": "1703393755" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -134927,7 +135176,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -134936,7 +135185,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -134945,7 +135194,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -134954,7 +135203,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -134963,7 +135212,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -134971,7 +135220,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -134980,7 +135229,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -134989,7 +135238,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -134998,7 +135247,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -135007,14 +135256,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -135023,7 +135272,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -135032,7 +135281,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -135041,7 +135290,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -135050,7 +135299,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135059,7 +135308,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135068,7 +135317,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -135077,7 +135326,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -135086,7 +135335,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -135095,7 +135344,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -135104,385 +135353,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135490,7 +135739,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135498,7 +135747,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135506,7 +135755,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -135514,7 +135763,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -135522,7 +135771,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -135530,574 +135779,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702789415" + "finding": "1703393855" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/" + "finding": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -136105,7 +136354,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -136114,7 +136363,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -136123,7 +136372,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -136132,7 +136381,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -136141,7 +136390,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -136149,7 +136398,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -136158,7 +136407,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -136167,7 +136416,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -136176,7 +136425,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -136185,14 +136434,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -136201,7 +136450,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -136210,7 +136459,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -136219,7 +136468,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -136228,7 +136477,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -136237,7 +136486,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -136246,7 +136495,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -136255,7 +136504,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -136264,7 +136513,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -136273,7 +136522,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -136282,325 +136531,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "501" + "finding": "898" } ], "thirdparties": { @@ -136609,23 +136858,23 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "7252", - "content-security-policy": "frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; worker-src 'self' blob:; base-uri 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Y8DoyodYLhKmWAcubEye1g=='; style-src 'self' 'unsafe-inline'; default-src 'self'; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Y8DoyodYLhKmWAcubEye1g=='; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/", + "content-length": "7326", + "content-security-policy": "base-uri 'none'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; font-src 'self' data:; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; object-src 'none'; default-src 'self'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-kxu4/q75Zl0L8L/ApUNovg=='; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-kxu4/q75Zl0L8L/ApUNovg=='; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 04:55:19 GMT", + "date": "Sun, 24 Dec 2023 04:42:50 GMT", "referrer-policy": "same-origin", - "sozu-id": "01HHV21W0J8W9GNMDX869ZCZR8", + "sozu-id": "01HJD241D9WZCDR7Y48C7JAKRS", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "4a2ccd4a-a50e-4749-adf8-48d201b8dc03" + "x-request-id": "35b6a274-b2de-4b70-8ef2-9b5158d2f46f" }, "endpoints": [ { "hostname": "emplois.inclusion.beta.gouv.fr", - "ip": "91.208.207.217", + "ip": "91.208.207.216", "geoip": { "continent": { "code": "EU", @@ -136902,258 +137151,76 @@ } ] }, - "zap": { - "@programName": "ZAP", - "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:54:16", - "site": [ - { - "@name": "https://emplois.inclusion.beta.gouv.fr", - "@host": "emplois.inclusion.beta.gouv.fr", - "@port": "443", - "@ssl": "true", - "alerts": [ - { - "name": "Absence of Anti-CSRF Tokens", - "riskcode": "2", - "confidence": "1", - "riskdesc": "Medium (Low)", - "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" - }, - { - "name": "CSP: Wildcard Directive", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "CSP: style-src unsafe-inline", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "Sub Resource Integrity Attribute Missing", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" - }, - { - "name": "Cross-Domain JavaScript Source File Inclusion", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The page includes one or more script files from a third-party domain.

" - }, - { - "name": "Dangerous JS Functions", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" - }, - { - "name": "Permissions Policy Header Not Set", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" - }, - { - "name": "Strict-Transport-Security Header Not Set", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" - }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, - { - "name": "X-Content-Type-Options Header Missing", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

" - }, - { - "name": "Authentication Request Identified", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" - }, - { - "name": "Base64 Disclosure", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" - }, - { - "name": "Information Disclosure - Sensitive Information in URL", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The request appeared to contain sensitive information leaked in the URL. This can violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.

" - }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, - { - "name": "Modern Web Application", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" - }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, - { - "name": "Re-examine Cache-control Directives", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" - }, - { - "name": "Sec-Fetch-Dest Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" - }, - { - "name": "Sec-Fetch-Mode Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" - }, - { - "name": "Sec-Fetch-Site Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" - }, - { - "name": "Sec-Fetch-User Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Session Management Response Identified", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, - { - "name": "User Controllable HTML Element Attribute (Potential XSS)", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" - } - ] - } - ] - }, + "zap": null, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "emplois.inclusion.beta.gouv.fr.", "matched-at": "emplois.inclusion.beta.gouv.fr", - "timestamp": "2023-12-17T05:07:32.884644732Z", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2023-12-24T04:56:52.302259226Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "emplois.inclusion.beta.gouv.fr.", "matched-at": "emplois.inclusion.beta.gouv.fr", - "extracted-results": [ - "domain.par.clever-cloud.com." - ], - "timestamp": "2023-12-17T05:07:34.115438536Z", + "timestamp": "2023-12-24T04:56:52.309582762Z", "matcher-status": true }, { @@ -137188,8 +137255,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:18.751623447Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:08.177970744Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -137225,8 +137292,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:18.75166755Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:08.178015047Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -137262,8 +137329,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:18.751688449Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:08.178033722Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -137299,8 +137366,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:18.75170533Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:08.178050653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -137336,8 +137403,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:18.751719536Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:08.178065882Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -137356,7 +137423,7 @@ "misc", "generic" ], - "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.", + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", "reference": [ "https://securitytxt.org/", "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" @@ -137364,7 +137431,8 @@ "severity": "info", "metadata": { "max-request": 2, - "shodan-query": "http.securitytxt:contact http.status:200" + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, "type": "http", @@ -137373,8 +137441,8 @@ "extracted-results": [ " mailto:tech@inclusion.beta.gouv.fr" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:28.3121514Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:25.032763262Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -137413,8 +137481,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:41.386762918Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:47.540190583Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: emplois.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -137453,8 +137521,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:08:41.386833079Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T04:58:47.540235086Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: emplois.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -137503,8 +137571,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:10:19.101068651Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T05:00:49.27157289Z", "matcher-status": true }, { @@ -137518,7 +137586,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -137532,8 +137601,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:10:30.094747063Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T05:01:13.740768257Z", "matcher-status": true }, { @@ -137547,7 +137616,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -137561,8 +137631,8 @@ "extracted-results": [ "emplois.inclusion.beta.gouv.fr" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:10:30.094860735Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T05:01:13.741074597Z", "matcher-status": true }, { @@ -137577,7 +137647,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -137591,8 +137662,8 @@ "extracted-results": [ "tls12" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:11:37.360176617Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T05:01:23.208068264Z", "matcher-status": true }, { @@ -137607,7 +137678,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -137621,8 +137693,8 @@ "extracted-results": [ "tls13" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T05:11:37.553771761Z", + "ip": "91.208.207.217", + "timestamp": "2023-12-24T05:01:23.521505172Z", "matcher-status": true } ], @@ -137630,7 +137702,7 @@ { "requestedUrl": "https://emplois.inclusion.beta.gouv.fr/", "finalUrl": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "fetchTime": "2023-12-17T04:54:31.291Z", + "fetchTime": "2023-12-24T04:42:03.340Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://emplois.inclusion.beta.gouv.fr/) was redirected to https://emplois.inclusion.beta.gouv.fr/search/employers. Try testing the second URL directly." ], @@ -137643,7 +137715,7 @@ "snapshot" ], "id": "performance", - "score": 0.7741703033447266 + "score": 0.7740774154663086 }, "accessibility": { "title": "Accessibility", @@ -137695,53 +137767,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6428, + "numericValue": 6336, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6428, - "firstMeaningfulPaint": 6428, - "largestContentfulPaint": 9287, - "interactive": 6428, - "speedIndex": 6428, + "firstContentfulPaint": 6336, + "firstMeaningfulPaint": 6336, + "largestContentfulPaint": 9155, + "interactive": 6336, + "speedIndex": 6336, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.023004957411024304, - "cumulativeLayoutShiftMainFrame": 0.023004957411024304, - "totalCumulativeLayoutShift": 0.023004957411024304, + "cumulativeLayoutShift": 0.03389550018310547, + "cumulativeLayoutShiftMainFrame": 0.03389550018310547, + "totalCumulativeLayoutShift": 0.03389550018310547, "observedTimeOrigin": 0, - "observedTimeOriginTs": 247425250, + "observedTimeOriginTs": 271892379, "observedNavigationStart": 0, - "observedNavigationStartTs": 247425250, - "observedFirstPaint": 592, - "observedFirstPaintTs": 248017645, - "observedFirstContentfulPaint": 592, - "observedFirstContentfulPaintTs": 248017645, - "observedFirstContentfulPaintAllFrames": 592, - "observedFirstContentfulPaintAllFramesTs": 248017645, - "observedFirstMeaningfulPaint": 592, - "observedFirstMeaningfulPaintTs": 248017645, - "observedLargestContentfulPaint": 592, - "observedLargestContentfulPaintTs": 248017645, - "observedLargestContentfulPaintAllFrames": 592, - "observedLargestContentfulPaintAllFramesTs": 248017645, - "observedTraceEnd": 3434, - "observedTraceEndTs": 250859237, - "observedLoad": 871, - "observedLoadTs": 248296044, + "observedNavigationStartTs": 271892379, + "observedFirstPaint": 969, + "observedFirstPaintTs": 272860938, + "observedFirstContentfulPaint": 969, + "observedFirstContentfulPaintTs": 272860938, + "observedFirstContentfulPaintAllFrames": 969, + "observedFirstContentfulPaintAllFramesTs": 272860938, + "observedFirstMeaningfulPaint": 969, + "observedFirstMeaningfulPaintTs": 272860938, + "observedLargestContentfulPaint": 969, + "observedLargestContentfulPaintTs": 272860938, + "observedLargestContentfulPaintAllFrames": 969, + "observedLargestContentfulPaintAllFramesTs": 272860938, + "observedTraceEnd": 3910, + "observedTraceEndTs": 275802248, + "observedLoad": 1551, + "observedLoadTs": 273443288, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 247425752, - "observedCumulativeLayoutShift": 0.023004957411024304, - "observedCumulativeLayoutShiftMainFrame": 0.023004957411024304, - "observedTotalCumulativeLayoutShift": 0.023004957411024304, - "observedFirstVisualChange": 564, - "observedFirstVisualChangeTs": 247989250, - "observedLastVisualChange": 1214, - "observedLastVisualChangeTs": 248639250, - "observedSpeedIndex": 778, - "observedSpeedIndexTs": 248203071 + "observedDomContentLoadedTs": 271892900, + "observedCumulativeLayoutShift": 0.03389550018310547, + "observedCumulativeLayoutShiftMainFrame": 0.03389550018310547, + "observedTotalCumulativeLayoutShift": 0.03389550018310547, + "observedFirstVisualChange": 980, + "observedFirstVisualChangeTs": 272872379, + "observedLastVisualChange": 1946, + "observedLastVisualChangeTs": 273838379, + "observedSpeedIndex": 1231, + "observedSpeedIndexTs": 273123075 }, { "lcpInvalidated": false @@ -137759,23 +137831,23 @@ "type": "debugdata", "items": [ { - "numRequests": 38, + "numRequests": 39, "numScripts": 24, "numStylesheets": 3, "numFonts": 4, - "numTasks": 15, + "numTasks": 16, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 52.449, - "throughput": 24135251.09425601, - "maxRtt": 81.35999999999999, - "maxServerLatency": 31.927999999999997, - "totalByteWeight": 2232574, - "totalTaskTime": 4.564, - "mainDocumentTransferSize": 8753 + "rtt": 142.462, + "throughput": 16664474.973816114, + "maxRtt": 150.172, + "maxServerLatency": 12.085999999999984, + "totalByteWeight": 2233061, + "totalTaskTime": 1.9069999999999998, + "mainDocumentTransferSize": 8929 } ] } @@ -137873,7 +137945,7 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.873, + "uptime": 99.965, "uptimeGrade": "A", "nmapGrade": "B", "nmapOpenPortsCount": 14, @@ -137885,7 +137957,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.7741703033447266, + "lighthouse_performance": 0.7740774154663086, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -137919,33 +137991,33 @@ "http": { "url": "https://entreprise.api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:32:21 GMT", + "end_time": "Sun, 24 Dec 2023 02:38:12 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "46978", + "Content-Length": "47515", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:32:19 GMT", + "Date": "Sun, 24 Dec 2023 02:38:10 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=63072000", "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"a548bee8088cc6243955138d7569e639\"", + "etag": "W/\"adc4eac965a381a87ba49b1fc9b96133\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_admin_apientreprise_session=ea4NYm56htzUpAcbizAv1ovEERW28UHuTsQCqxN%2B6vd4AyDaOj6laFUqWf6CSn%2BS20a1z8eELhIty6wJl47K6u6F8sbYGti%2F%2FV3U4NiX%2BMhry%2BndDoaKxjADHMbwFO3bzY1U%2B5PX0JyF3LrkHlVAZr36Fi42KNR8B%2BSb9x6UO1y3ekrmz0NNZzq2gC7a5T4deV9hAF7c0d63hk1p7shE6uM54pNjo6x%2B347jxV6nomVN%2B9OtGhrDjpE0t9Nr%2FvvL7j%2B69lZGY0MpgKlTXE6v7lZ5%2F1Zi2UTEzfNfJrPpPnTrkY2Z--0CTkLN4C7ZrbyQBy--dYhnG%2Fl4nJf3tsiRcwQtdg%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_admin_apientreprise_session=PmQQ%2BLqwOCcO8CokUCixMWzdfoWxAv43aYSrde%2BWdGzTkBp3xEuJGlCvz253CAMqBggYoILTd6j4bIKslx21%2FkF2eeEBXaXqFs9JQv%2Fo3ll9V8gP7SyjSdDRXs4ISj%2F6j8PEyc1T4CBxhi%2B7B%2Fu5xIOrTqmA3ZLkTcjuaabMCXMdNzWLExuEQqd0SvJpNHwr%2FstsEY5GpPhAoxnAczTj3zw%2FBV0GGnvGDKZiRCkGTZ3Xw%2FbkgrQDy3RNhCowm5lUuOSrefewN95WNGMhe%2FQCGAo5F0hkgxzg1OR3TtwJv%2FNywajd--dvkj0GxIzIt3cC2h--lFOdBgsxk4c%2BPM4tDQ130g%3D%3D; path=/; secure; httponly; SameSite=Lax", "vary": "Accept, Origin", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "6f033c4f-8f75-446a-b6fe-e4200f9f9dd5", - "x-runtime": "0.089450", + "x-request-id": "b684044e-a598-430f-91e6-aaa072e7bc39", + "x-runtime": "0.112913", "x-xss-protection": "0" }, - "scan_id": 45538013, + "scan_id": 45753381, "score": 60, - "start_time": "Sun, 17 Dec 2023 02:32:16 GMT", + "start_time": "Sun, 24 Dec 2023 02:37:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -138164,15 +138236,15 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:06:12Z", - "next_check_at": "2023-12-17T05:11:11Z", + "last_check_at": "2023-12-24T04:47:58Z", + "next_check_at": "2023-12-24T04:52:56Z", "mute_until": null, "favicon_url": "https://entreprise.api.gouv.fr/assets/favicons/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:01:13Z", + "tested_at": "2023-12-24T04:32:56Z", "expires_at": "2024-01-16T22:59:59Z", "valid": true, "error": null @@ -138181,11 +138253,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 25, - "connection": 14, - "handshake": 19, - "response": 114, - "total": 172 + "namelookup": 23, + "connection": 12, + "handshake": 17, + "response": 106, + "total": 158 } }, "uptimeGrade": "A", @@ -138201,7 +138273,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.4", + "version": "8.9p1 Ubuntu 3ubuntu0.5", "vulnerabilities": [] } }, @@ -138566,8 +138638,8 @@ "id": "cert_expirationStatus", "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (30)" + "severity": "HIGH", + "finding": "expires < 30 days (23)" }, { "id": "cert_notBefore", @@ -138580,7 +138652,7 @@ "id": "cert_notAfter", "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", - "severity": "MEDIUM", + "severity": "HIGH", "finding": "2024-01-16 22:59" }, { @@ -138728,7 +138800,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1702789332" + "finding": "1703393123" }, { "id": "HSTS_time", @@ -139333,7 +139405,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "103" + "finding": "54" } ], "thirdparties": { @@ -139425,7 +139497,7 @@ "value": "1", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1702791037, + "expires": 1703394867, "size": 16, "httpOnly": false, "secure": false, @@ -139437,10 +139509,10 @@ }, { "name": "_pk_id.45.28f1", - "value": "aa66987748dbf23f.1702789238.", + "value": "7e74a910779c172d.1703393067.", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1736744438, + "expires": 1737348267, "size": 42, "httpOnly": false, "secure": false, @@ -139452,11 +139524,11 @@ }, { "name": "_admin_apientreprise_session", - "value": "OlO7xbnkDh%2FJ5zKsAyrtPAbljTBMF%2FXRxsMX%2BD9C%2B9aXCx57fjV9oyqB68pq7f5ufC941GgL1%2BgzBtZMsW7pGJqpzlke05s%2B69FEgoLwCp4VrkKAWcCrULuOd4YQBv1ApmcsU97nWInl64Yj2zbJMYs%2Ba6otLNLF4OQsKVnJ63mOLOE1tXL64HmzGfSxFUm6nJHFw923H62dtfUr%2BXf8O4O3yU3LCo9DPSVULin7d9%2B%2F2i1PHGRxExoeDw1vEmznf4hLtBi6%2BfW39mjF06czaWVt6QmjG8Hk0kbRQa9qrd013qz2--%2FrK2Ktr%2FMPUzGnYt--MOfzYfuJHBDoMEir1cGfCQ%3D%3D", + "value": "nT1L%2Fc%2B4koGXtow2B%2BjfhJx3kacmqvAp1kiWAP2BIdJW9qSezZntvTtkEbqcyEobhrH8JQ7BsqTLvXc5QeDDR7ol62GoXTMqqqveMKMOouRF5YBr3hgPjxyU16J6mJi%2FTjD9j5LljUSYBPb%2FCr4hzXzbOBmXZkOcDo%2BhBu2Eo3jBCc8jTojqa7aHyWxzwM3rPyXPFdIxJI9vZNalJbOO4FITC1a1pdkbTUuut7FKPfWzxNBoS%2FxmK5SGRpVJ2f7mw2m6dRAwHRhT5Zixr5Ve0dVKT6iRaNYIURBO7Dt5OMUEZW%2BF--3fmCBDcWWNMydS6g--ytl9IQO%2BRwZbM2iDihbkzQ%3D%3D", "domain": "entreprise.api.gouv.fr", "path": "/", "expires": -1, - "size": 406, + "size": 398, "httpOnly": true, "secure": true, "session": true, @@ -139468,22 +139540,22 @@ ], "headers": { "connection": "keep-alive", - "content-length": "47649", + "content-length": "47230", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 05:00:36 GMT", + "date": "Sun, 24 Dec 2023 04:44:26 GMT", "server": "nginx", "strict-transport-security": "max-age=63072000", "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"95508f76414051c4b751e12a5a1e44c6\"", + "etag": "W/\"6a346a66b1b5cf3dc427de8b3b79ef35\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_admin_apientreprise_session=OlO7xbnkDh%2FJ5zKsAyrtPAbljTBMF%2FXRxsMX%2BD9C%2B9aXCx57fjV9oyqB68pq7f5ufC941GgL1%2BgzBtZMsW7pGJqpzlke05s%2B69FEgoLwCp4VrkKAWcCrULuOd4YQBv1ApmcsU97nWInl64Yj2zbJMYs%2Ba6otLNLF4OQsKVnJ63mOLOE1tXL64HmzGfSxFUm6nJHFw923H62dtfUr%2BXf8O4O3yU3LCo9DPSVULin7d9%2B%2F2i1PHGRxExoeDw1vEmznf4hLtBi6%2BfW39mjF06czaWVt6QmjG8Hk0kbRQa9qrd013qz2--%2FrK2Ktr%2FMPUzGnYt--MOfzYfuJHBDoMEir1cGfCQ%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_admin_apientreprise_session=nT1L%2Fc%2B4koGXtow2B%2BjfhJx3kacmqvAp1kiWAP2BIdJW9qSezZntvTtkEbqcyEobhrH8JQ7BsqTLvXc5QeDDR7ol62GoXTMqqqveMKMOouRF5YBr3hgPjxyU16J6mJi%2FTjD9j5LljUSYBPb%2FCr4hzXzbOBmXZkOcDo%2BhBu2Eo3jBCc8jTojqa7aHyWxzwM3rPyXPFdIxJI9vZNalJbOO4FITC1a1pdkbTUuut7FKPfWzxNBoS%2FxmK5SGRpVJ2f7mw2m6dRAwHRhT5Zixr5Ve0dVKT6iRaNYIURBO7Dt5OMUEZW%2BF--3fmCBDcWWNMydS6g--ytl9IQO%2BRwZbM2iDihbkzQ%3D%3D; path=/; secure; httponly; SameSite=Lax", "vary": "Origin", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "bfb28997-278c-466b-8b3a-b938f1ab0e72", - "x-runtime": "0.109720", + "x-request-id": "916a8b34-23fa-4087-84ab-8e0a301947be", + "x-runtime": "0.088231", "x-xss-protection": "0" }, "endpoints": [ @@ -139545,18 +139617,15 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "146.75.37.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4781530, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" } }, "continent": { @@ -139589,13 +139658,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "95141" + "code": "20190" }, "registered_country": { "geoname_id": 6252001, @@ -139613,17 +139682,15 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -139631,7 +139698,7 @@ }, { "hostname": "unpkg.com", - "ip": "104.16.123.175", + "ip": "104.16.122.175", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -139735,7 +139802,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.42", + "ip": "142.251.163.95", "geoip": { "continent": { "code": "NA", @@ -139945,37 +140012,37 @@ "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true @@ -140021,7 +140088,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 04:59:46", + "@generated": "Sun, 24 Dec 2023 04:43:42", "site": [ { "@name": "https://entreprise.api.gouv.fr", @@ -140238,7 +140305,7 @@ "extracted-results": [ "1 redirect.ovh.net." ], - "timestamp": "2023-12-17T05:03:37.66605964Z", + "timestamp": "2023-12-24T04:46:28.460581555Z", "matcher-status": true }, { @@ -140273,7 +140340,7 @@ "type": "dns", "host": "entreprise.api.gouv.fr.", "matched-at": "entreprise.api.gouv.fr", - "timestamp": "2023-12-17T05:03:37.802392031Z", + "timestamp": "2023-12-24T04:46:28.461111614Z", "matcher-status": true }, { @@ -140312,7 +140379,7 @@ "\"v=spf1 include:spf.mailjet.com ?all\"", "\"v=spf1 a mx a:watchdoge.entreprise.api.gouv.fr ?all\"" ], - "timestamp": "2023-12-17T05:03:38.796363599Z", + "timestamp": "2023-12-24T04:46:29.532971539Z", "matcher-status": true }, { @@ -140347,7 +140414,7 @@ "algolia-search-key=\"d3e5b117cec579ddcbe5448c58a2048a\"" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:03:58.396637903Z", + "timestamp": "2023-12-24T04:46:41.115617174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140387,7 +140454,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:03:58.57242408Z", + "timestamp": "2023-12-24T04:46:41.292174381Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140426,7 +140493,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:03:58.583130222Z", + "timestamp": "2023-12-24T04:46:41.302820033Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140464,7 +140531,7 @@ "algolia-search-key=\"d3e5b117cec579ddcbe5448c58a2048a\"" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:39.480947184Z", + "timestamp": "2023-12-24T04:47:08.493203053Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140491,7 +140558,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:39.745603357Z", + "timestamp": "2023-12-24T04:47:08.760979686Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140518,7 +140585,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:39.74564275Z", + "timestamp": "2023-12-24T04:47:08.761033136Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140550,12 +140617,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.332399376Z", + "timestamp": "2023-12-24T04:47:17.525433767Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140587,12 +140654,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.332437868Z", + "timestamp": "2023-12-24T04:47:17.525481957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140624,12 +140691,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.332448538Z", + "timestamp": "2023-12-24T04:47:17.525506122Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140661,12 +140728,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.33246025Z", + "timestamp": "2023-12-24T04:47:17.525527522Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140698,12 +140765,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.332638753Z", + "timestamp": "2023-12-24T04:47:17.525545405Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140735,12 +140802,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:04:54.33266409Z", + "timestamp": "2023-12-24T04:47:17.525557628Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140774,56 +140841,16 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr/", "extracted-results": [ - "https://cdn.jsdelivr.net/npm/algoliasearch@4.5.1/dist/algoliasearch-lite.umd.js", "https://cdn.jsdelivr.net/npm/instantsearch.js@4.8.3/dist/instantsearch.production.min.js", "https://unpkg.com/@popperjs/core@2.11.6/dist/umd/popper.min.js", - "https://app.mailjet.com/pas-nc-embedded-v1.js" + "https://app.mailjet.com/pas-nc-embedded-v1.js", + "https://cdn.jsdelivr.net/npm/algoliasearch@4.5.1/dist/algoliasearch-lite.umd.js" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:05:21.290443828Z", + "timestamp": "2023-12-24T04:47:33.747767023Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", "matcher-status": true }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "ats", - "type": "http", - "host": "https://entreprise.api.gouv.fr", - "matched-at": "https://entreprise.api.gouv.fr/", - "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:05:33.798234572Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", - "matcher-status": true - }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -140860,7 +140887,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr/", "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:05:33.798299803Z", + "timestamp": "2023-12-24T04:47:41.443939279Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", "matcher-status": true }, @@ -140907,40 +140934,10 @@ "host": "entreprise.api.gouv.fr:22", "matched-at": "entreprise.api.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4" - ], - "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:06:36.729926112Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "entreprise.api.gouv.fr", - "matched-at": "entreprise.api.gouv.fr:443", - "extracted-results": [ - "tls12" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:07:31.778590385Z", + "timestamp": "2023-12-24T04:48:25.815041967Z", "matcher-status": true }, { @@ -140954,7 +140951,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -140969,7 +140967,7 @@ "DHIMYOTIS" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:07:31.903283783Z", + "timestamp": "2023-12-24T04:49:21.999671743Z", "matcher-status": true }, { @@ -140983,7 +140981,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -140995,19 +140994,19 @@ "host": "entreprise.api.gouv.fr", "matched-at": "entreprise.api.gouv.fr:443", "extracted-results": [ - "staging.entreprise.api.gouv.fr", - "temps-reel.entreprise.api.gouv.fr", - "entreprise.api.gouv.fr", "production2.entreprise.api.gouv.fr", "staging1.entreprise.api.gouv.fr", + "status.entreprise.api.gouv.fr", + "staging.entreprise.api.gouv.fr", + "storage.entreprise.api.gouv.fr", "production.entreprise.api.gouv.fr", + "staging2.entreprise.api.gouv.fr", + "temps-reel.entreprise.api.gouv.fr", "production1.entreprise.api.gouv.fr", - "storage.entreprise.api.gouv.fr", - "status.entreprise.api.gouv.fr", - "staging2.entreprise.api.gouv.fr" + "entreprise.api.gouv.fr" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:07:31.903406943Z", + "timestamp": "2023-12-24T04:49:21.99978316Z", "matcher-status": true }, { @@ -141022,7 +141021,39 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "entreprise.api.gouv.fr", + "matched-at": "entreprise.api.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "54.36.95.60", + "timestamp": "2023-12-24T04:49:25.079913956Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -141037,7 +141068,7 @@ "tls13" ], "ip": "54.36.95.60", - "timestamp": "2023-12-17T05:07:33.317897491Z", + "timestamp": "2023-12-24T04:49:25.959007375Z", "matcher-status": true } ], @@ -141045,7 +141076,7 @@ { "requestedUrl": "https://entreprise.api.gouv.fr/", "finalUrl": "https://entreprise.api.gouv.fr/", - "fetchTime": "2023-12-17T05:00:00.428Z", + "fetchTime": "2023-12-24T04:43:56.926Z", "runWarnings": [], "categories": { "performance": { @@ -141056,7 +141087,7 @@ "snapshot" ], "id": "performance", - "score": 0.19203224182128906 + "score": 0.19202098846435547 }, "accessibility": { "title": "Accessibility", @@ -141108,53 +141139,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 14899, + "numericValue": 14256, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4492, - "firstMeaningfulPaint": 4641, - "largestContentfulPaint": 4641, - "interactive": 14899, - "speedIndex": 4608, - "totalBlockingTime": 218, - "maxPotentialFID": 464, - "cumulativeLayoutShift": 0.01403275023566352, - "cumulativeLayoutShiftMainFrame": 0.01403275023566352, - "totalCumulativeLayoutShift": 0.01403275023566352, + "firstContentfulPaint": 3950, + "firstMeaningfulPaint": 3950, + "largestContentfulPaint": 3950, + "interactive": 14256, + "speedIndex": 3950, + "totalBlockingTime": 321, + "maxPotentialFID": 413, + "cumulativeLayoutShift": 0.020446303897433814, + "cumulativeLayoutShiftMainFrame": 0.020446303897433814, + "totalCumulativeLayoutShift": 0.020446303897433814, "observedTimeOrigin": 0, - "observedTimeOriginTs": 358283404, + "observedTimeOriginTs": 367414104, "observedNavigationStart": 0, - "observedNavigationStartTs": 358283404, - "observedFirstPaint": 1270, - "observedFirstPaintTs": 359553337, - "observedFirstContentfulPaint": 1309, - "observedFirstContentfulPaintTs": 359592566, - "observedFirstContentfulPaintAllFrames": 1309, - "observedFirstContentfulPaintAllFramesTs": 359592566, - "observedFirstMeaningfulPaint": 1309, - "observedFirstMeaningfulPaintTs": 359592566, - "observedLargestContentfulPaint": 1309, - "observedLargestContentfulPaintTs": 359592566, - "observedLargestContentfulPaintAllFrames": 1309, - "observedLargestContentfulPaintAllFramesTs": 359592566, - "observedTraceEnd": 5094, - "observedTraceEndTs": 363377113, - "observedLoad": 2785, - "observedLoadTs": 361068276, - "observedDomContentLoaded": 1763, - "observedDomContentLoadedTs": 360046138, - "observedCumulativeLayoutShift": 0.01403275023566352, - "observedCumulativeLayoutShiftMainFrame": 0.01403275023566352, - "observedTotalCumulativeLayoutShift": 0.01403275023566352, - "observedFirstVisualChange": 1268, - "observedFirstVisualChangeTs": 359551404, - "observedLastVisualChange": 1785, - "observedLastVisualChangeTs": 360068404, - "observedSpeedIndex": 1316, - "observedSpeedIndexTs": 359599449 + "observedNavigationStartTs": 367414104, + "observedFirstPaint": 848, + "observedFirstPaintTs": 368262431, + "observedFirstContentfulPaint": 882, + "observedFirstContentfulPaintTs": 368296407, + "observedFirstContentfulPaintAllFrames": 882, + "observedFirstContentfulPaintAllFramesTs": 368296407, + "observedFirstMeaningfulPaint": 882, + "observedFirstMeaningfulPaintTs": 368296407, + "observedLargestContentfulPaint": 882, + "observedLargestContentfulPaintTs": 368296407, + "observedLargestContentfulPaintAllFrames": 882, + "observedLargestContentfulPaintAllFramesTs": 368296407, + "observedTraceEnd": 4091, + "observedTraceEndTs": 371505371, + "observedLoad": 1785, + "observedLoadTs": 369198702, + "observedDomContentLoaded": 1159, + "observedDomContentLoadedTs": 368573465, + "observedCumulativeLayoutShift": 0.020446303897433814, + "observedCumulativeLayoutShiftMainFrame": 0.020446303897433814, + "observedTotalCumulativeLayoutShift": 0.020446303897433814, + "observedFirstVisualChange": 854, + "observedFirstVisualChangeTs": 368268104, + "observedLastVisualChange": 1237, + "observedLastVisualChangeTs": 368651104, + "observedSpeedIndex": 887, + "observedSpeedIndexTs": 368300934 }, { "lcpInvalidated": false @@ -141176,19 +141207,19 @@ "numScripts": 16, "numStylesheets": 4, "numFonts": 6, - "numTasks": 1446, - "numTasksOver10ms": 7, - "numTasksOver25ms": 3, + "numTasks": 1422, + "numTasksOver10ms": 8, + "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0.9659999999999999, - "throughput": 17384090.09468905, - "maxRtt": 151.138, - "maxServerLatency": 23.683, - "totalByteWeight": 2663214, - "totalTaskTime": 464.49399999999883, - "mainDocumentTransferSize": 48605 + "rtt": 5.175, + "throughput": 26375271.52039123, + "maxRtt": 85.55000000000001, + "maxServerLatency": 29.317999999999984, + "totalByteWeight": 2663273, + "totalTaskTime": 501.2509999999983, + "mainDocumentTransferSize": 48219 } ] } @@ -141292,7 +141323,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.19203224182128906, + "lighthouse_performance": 0.19202098846435547, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.9, "lighthouse_accessibilityGrade": "A", @@ -141318,7 +141349,7 @@ "http": { "url": "https://eva.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:12:11 GMT", + "end_time": "Sun, 24 Dec 2023 04:54:16 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -141326,16 +141357,16 @@ "Connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 05:12:06 GMT", + "date": "Sun, 24 Dec 2023 04:54:11 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "Apache", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "via": "1.1 alproxy" }, - "scan_id": 45541249, + "scan_id": 45756539, "score": 15, - "start_time": "Sun, 17 Dec 2023 05:12:03 GMT", + "start_time": "Sun, 24 Dec 2023 04:54:08 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -141526,28 +141557,28 @@ "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:23:10Z", - "next_check_at": "2023-12-17T05:28:09Z", + "last_check_at": "2023-12-24T05:04:26Z", + "next_check_at": "2023-12-24T05:09:23Z", "mute_until": null, "favicon_url": "https://eva.beta.gouv.fr/wp-content/uploads/fbrfg/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:03:18Z", + "tested_at": "2023-12-24T04:34:40Z", "expires_at": "2024-02-19T08:10:07Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.874, + "apdex": 0.926, "timings": { "redirect": 0, - "namelookup": 157, - "connection": 114, - "handshake": 121, - "response": 392, - "total": 784 + "namelookup": 174, + "connection": 126, + "handshake": 133, + "response": 330, + "total": 764 } }, "uptimeGrade": "A", @@ -141926,7 +141957,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -142129,7 +142160,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1702790047" + "finding": "1703393741" }, { "id": "HSTS", @@ -142685,7 +142716,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "108" + "finding": "64" } ], "thirdparties": { @@ -142770,6 +142801,10 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, + { + "type": "unknown", + "url": "https://jxtj.mjt.lu/wgt/jxtj/n9i/form?c=eb87c80a" + }, { "type": "google fonts", "url": "https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", @@ -142794,10 +142829,6 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, - { - "type": "unknown", - "url": "https://jxtj.mjt.lu/wgt/jxtj/n9i/form?c=eb87c80a" - }, { "type": "youtube", "url": "https://www.youtube.com/iframe_api", @@ -142808,7 +142839,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-widgetapi.vflset/www-widgetapi.js", + "url": "https://www.youtube.com/s/player/da154528/www-widgetapi.vflset/www-widgetapi.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142824,7 +142855,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-player.css", + "url": "https://www.youtube.com/s/player/da154528/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142832,7 +142863,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142840,7 +142871,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-embed-player.vflset/www-embed-player.js", + "url": "https://www.youtube.com/s/player/da154528/www-embed-player.vflset/www-embed-player.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142848,7 +142879,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142920,7 +142951,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142928,7 +142959,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/sLx6qsRU46GEe0D3YqweyWcV0efz1f9DxDQkuEUxY-c.js", + "url": "https://www.google.com/js/th/UhAHYkQc59SMm3ILQvX2LV9pHtXm_t6HT06w3DJ-zT8.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -142966,14 +142997,6 @@ "message": "Use hosted Matomo instance" } }, - { - "type": "youtube", - "url": "https://www.youtube.com/generate_204?5BB_bA", - "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" - } - }, { "type": "google", "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", @@ -142990,6 +143013,14 @@ "message": "Use hosted Matomo instance" } }, + { + "type": "youtube", + "url": "https://www.youtube.com/generate_204?PMSvhg", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, { "type": "youtube", "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8", @@ -143005,7 +143036,7 @@ "value": "1", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1702791760, + "expires": 1703395488, "size": 17, "httpOnly": false, "secure": false, @@ -143017,10 +143048,10 @@ }, { "name": "_pk_id.100.5821", - "value": "506072d831ef0cd0.1702789960.", + "value": "53f07b16bb0a8c64.1703393689.", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1736745160, + "expires": 1737348889, "size": 43, "httpOnly": false, "secure": false, @@ -143034,7 +143065,7 @@ "headers": { "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 05:12:38 GMT", + "date": "Sun, 24 Dec 2023 04:54:47 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "Apache", "vary": "Accept-Encoding", @@ -143099,7 +143130,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.74", + "ip": "142.251.32.10", "geoip": { "continent": { "code": "NA", @@ -143237,7 +143268,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.191.35", + "ip": "142.250.191.131", "geoip": { "continent": { "code": "NA", @@ -143375,7 +143406,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.250.189.174", + "ip": "172.217.5.14", "geoip": { "continent": { "code": "NA", @@ -143429,7 +143460,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "142.250.189.162", + "ip": "142.250.191.226", "geoip": { "continent": { "code": "NA", @@ -143483,7 +143514,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "142.251.46.166", + "ip": "142.251.32.6", "geoip": { "continent": { "code": "NA", @@ -143537,7 +143568,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "142.251.46.170", + "ip": "142.250.191.106", "geoip": { "continent": { "code": "NA", @@ -143591,7 +143622,7 @@ }, { "hostname": "www.google.com", - "ip": "172.217.12.100", + "ip": "172.217.2.36", "geoip": { "continent": { "code": "NA", @@ -143645,7 +143676,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "142.250.191.86", + "ip": "142.250.191.214", "geoip": { "continent": { "code": "NA", @@ -143699,7 +143730,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "142.251.46.161", + "ip": "142.250.191.97", "geoip": { "continent": { "code": "NA", @@ -143753,7 +143784,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "142.251.46.163", + "ip": "172.217.2.35", "geoip": { "continent": { "code": "NA", @@ -143912,7 +143943,7 @@ "name": "Elementor", "description": "Elementor is a website builder platform for professionals on WordPress.", "confidence": 100, - "version": "3.18.2", + "version": "3.18.3", "icon": "Elementor.svg", "website": "https://elementor.com", "cpe": null, @@ -144253,7 +144284,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:11:36", + "@generated": "Sun, 24 Dec 2023 04:53:42", "site": [ { "@name": "https://eva.beta.gouv.fr", @@ -144310,6 +144341,20 @@ "riskdesc": "Medium (High)", "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" }, + { + "name": "Cookie No HttpOnly Flag", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

A cookie has been set without the HttpOnly flag, which means that the cookie can be accessed by JavaScript. If a malicious script can be run on this page then the cookie will be accessible and can be transmitted to another site. If this is a session cookie then session hijacking may be possible.

" + }, + { + "name": "Cookie without SameSite Attribute", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

A cookie has been set without the SameSite attribute, which means that the cookie can be sent as a result of a 'cross-site' request. The SameSite attribute is an effective counter measure to cross-site request forgery, cross-site script inclusion, and timing attacks.

" + }, { "name": "Cross-Domain JavaScript Source File Inclusion", "riskcode": "1", @@ -144387,6 +144432,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The Content-Type header was either missing or empty.

" }, + { + "name": "Cookie Poisoning", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where cookie parameters might be controlled. This is called a cookie poisoning attack, and becomes exploitable when an attacker can manipulate the cookie in various ways. In some cases this will not be exploitable, however, allowing URL parameters to set cookie values is generally considered a bug.

" + }, { "name": "Information Disclosure - Suspicious Comments", "riskcode": "0", @@ -144401,13 +144453,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, { "name": "Re-examine Cache-control Directives", "riskcode": "0", @@ -144475,12 +144520,1632 @@ } ] }, - "nuclei": [], + "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "eva.beta.gouv.fr.", + "matched-at": "eva.beta.gouv.fr", + "timestamp": "2023-12-24T04:57:09.781991298Z", + "matcher-status": true + }, + { + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "info": { + "name": "MX Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "eva.beta.gouv.fr.", + "matched-at": "eva.beta.gouv.fr", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2023-12-24T04:57:09.793446293Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "eva.beta.gouv.fr.", + "matched-at": "eva.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2023-12-24T04:57:09.941775667Z", + "matcher-status": true + }, + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "eva.beta.gouv.fr.", + "matched-at": "eva.beta.gouv.fr", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" + ], + "timestamp": "2023-12-24T04:57:09.958328644Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "eva.beta.gouv.fr.", + "matched-at": "_dmarc.eva.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T04:57:10.892673078Z", + "matcher-status": true + }, + { + "template": "http/cves/2017/CVE-2017-5487.yaml", + "template-url": "https://templates.nuclei.sh/public/CVE-2017-5487", + "template-id": "CVE-2017-5487", + "template-path": "/home/runner/nuclei-templates/http/cves/2017/CVE-2017-5487.yaml", + "info": { + "name": "WordPress Core <4.7.1 - Username Enumeration", + "author": [ + "manas_harsh", + "daffainfo", + "geeknik", + "dr0pd34d" + ], + "tags": [ + "cve", + "cve2017", + "wordpress", + "wp", + "edb" + ], + "description": "WordPress Core before 4.7.1 is susceptible to user enumeration because it does not properly restrict listings of post authors via wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API, which allows a remote attacker to obtain sensitive information via a wp-json/wp/v2/users request.", + "reference": [ + "https://www.exploit-db.com/exploits/41497", + "https://www.wordfence.com/blog/2016/12/wordfence-blocks-username-harvesting-via-new-rest-api-wp-4-7/", + "https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/", + "https://nvd.nist.gov/vuln/detail/cve-2017-5487", + "http://www.openwall.com/lists/oss-security/2017/01/14/6" + ], + "severity": "medium", + "metadata": { + "max-request": 2, + "product": "wordpress", + "shodan-query": "http.component:\"WordPress\"", + "vendor": "wordpress", + "verified": true + }, + "classification": { + "cve-id": [ + "cve-2017-5487" + ], + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", + "cvss-score": 5.3, + "epss-score": 0.97179, + "epss-percentile": 0.99767, + "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*" + }, + "remediation": "Update WordPress to version 4.7.1 or later\n" + }, + "extractor-name": "usernames", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-json/wp/v2/users/", + "extracted-results": [ + "veronique", + "Karel Cloarec", + "Pauline", + "gaelle", + "karel", + "pauline" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:57:28.156198256Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-json/wp/v2/users/'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/addeventlistener-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/addeventlistener-detect", + "template-id": "addeventlistener-detect", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/addeventlistener-detect.yaml", + "info": { + "name": "DOM EventListener - Cross-Site Scripting", + "author": [ + "yavolo", + "dwisiswant0" + ], + "tags": [ + "xss", + "misc" + ], + "description": "EventListener contains a cross-site scripting vulnerability via the document object model (DOM). An attacker can execute arbitrary script which can then allow theft of cookie-based authentication credentials and launch of other attacks.", + "reference": [ + "https://portswigger.net/web-security/dom-based/controlling-the-web-message-source" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-79" + ], + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "cvss-score": 7.2 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:57:40.537839717Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/apache/apache-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/apache-detect", + "template-id": "apache-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/apache/apache-detect.yaml", + "info": { + "name": "Apache Detection", + "author": [ + "philippedelteil" + ], + "tags": [ + "tech", + "apache" + ], + "description": "Some Apache servers have the version on the response header. The OpenSSL version can be also obtained", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "extracted-results": [ + "Apache" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:57:40.674749093Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress/plugins/elementor.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-elementor", + "template-id": "wordpress-elementor", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/elementor.yaml", + "info": { + "name": "Elementor Website Builder – More than Just a Page Builder Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-100", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/elementor/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "elementor", + "wpscan": "https://wpscan.com/plugin/elementor" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/elementor/readme.txt", + "extracted-results": [ + "3.18.3" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:58:09.520658966Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/elementor/readme.txt'", + "matcher-status": true + }, + { + "template": "http/technologies/metatag-cms.yaml", + "template-url": "https://templates.nuclei.sh/public/metatag-cms", + "template-id": "metatag-cms", + "template-path": "/home/runner/nuclei-templates/http/technologies/metatag-cms.yaml", + "info": { + "name": "Metatag CMS Detection", + "author": [ + "dadevel" + ], + "tags": [ + "tech", + "cms" + ], + "description": "Generic CMS Detection using html meta generator tag", + "reference": [ + "https://www.w3schools.com/tags/att_meta_name.asp" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "extracted-results": [ + "WordPress 6.4.2", + "Elementor 3.18.3; features: e_dom_optimization, e_optimized_assets_loading, additional_custom_breakpoints, block_editor_assets_optimize, e_image_loading_optimization; settings: css_print_method-external, google_font-enabled, font_display-auto" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:58:58.455349664Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "elementor", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:58:58.794161505Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "font-awesome", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:58:58.794208673Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "google-font-api", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:58:58.794239029Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736169405Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736238153Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.73625833Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736273679Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736285951Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736301811Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736314595Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736326988Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736339441Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736354199Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:14.736367173Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/exposed-panels/wordpress-login.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-login", + "template-id": "wordpress-login", + "template-path": "/home/runner/nuclei-templates/http/exposed-panels/wordpress-login.yaml", + "info": { + "name": "WordPress Login Panel - Detect", + "author": [ + "its0x08" + ], + "tags": [ + "panel", + "wordpress" + ], + "description": "WordPress login panel was detected.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-login.php", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:15.842717669Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-login.php'", + "matcher-status": true + }, + { + "template": "http/exposures/files/wget-hsts-list-exposure.yaml", + "template-url": "https://templates.nuclei.sh/public/wget-hsts-list-exposure", + "template-id": "wget-hsts-list-exposure", + "template-path": "/home/runner/nuclei-templates/http/exposures/files/wget-hsts-list-exposure.yaml", + "info": { + "name": "WGET HSTS List Exposure", + "author": [ + "dhiyaneshdk" + ], + "tags": [ + "devops", + "exposure", + "wget", + "files" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "shodan-query": "html:\".wget-hsts\"", + "verified": true + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/.wget-hsts", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:33.680000243Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/.wget-hsts'", + "matcher-status": true + }, + { + "template": "http/exposures/files/wordpress-readme-file.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-readme-file", + "template-id": "wordpress-readme-file", + "template-path": "/home/runner/nuclei-templates/http/exposures/files/wordpress-readme-file.yaml", + "info": { + "name": "WordPress Readme File", + "author": [ + "tess" + ], + "tags": [ + "exposure", + "wordpress", + "wp", + "readme", + "files" + ], + "severity": "info", + "metadata": { + "max-request": 3, + "shodan-query": "http.component:\"wordpress\"", + "verified": true + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/readme.html", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:33.735675256Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/readme.html'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/robots-txt-endpoint.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", + "template-id": "robots-txt-endpoint", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "info": { + "name": "robots.txt endpoint prober", + "author": [ + "caspergn", + "pdteam" + ], + "tags": [ + "misc", + "generic" + ], + "severity": "info", + "metadata": { + "max-request": 2 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/robots.txt", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:38.528131132Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/robots.txt'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/robots-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt", + "template-id": "robots-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", + "info": { + "name": "robots.txt file", + "author": [ + "caspergn", + "thezakman" + ], + "tags": [ + "misc", + "generic" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/robots.txt", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:38.616767005Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/robots.txt'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/missing-sri.yaml", + "template-url": "https://templates.nuclei.sh/public/missing-sri", + "template-id": "missing-sri", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", + "info": { + "name": "Missing Subresource Integrity", + "author": [ + "lucky0x0d", + "pulsesecurity.co.nz" + ], + "tags": [ + "compliance", + "js", + "sri", + "misconfig" + ], + "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/", + "extracted-results": [ + "https://eva.beta.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1", + "https://app.mailjet.com/pas-nc-embedded-v1.js", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.18.3", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.18.3", + "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.18.1", + "https://eva.beta.gouv.fr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2", + "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0", + "https://eva.beta.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", + "https://eva.beta.gouv.fr/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.7.4", + "https://eva.beta.gouv.fr/wp-includes/js/imagesloaded.min.js?ver=5.0.0", + "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2", + "https://eva.beta.gouv.fr/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.18.3", + "https://eva.beta.gouv.fr/wp-content/plugins/mailjet-for-wordpress/src/widgetformbuilder/js/front-widget.js?ver=6.4.2", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.18.1", + "https://eva.beta.gouv.fr/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef", + "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.18.1" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T04:59:52.789022154Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-detect", + "template-id": "wordpress-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress-detect.yaml", + "info": { + "name": "WordPress Detect", + "author": [ + "pdteam", + "daffainfo", + "ricardomaia", + "topscoder", + "adamcrosser" + ], + "tags": [ + "tech", + "wordpress", + "cms", + "wp" + ], + "severity": "info", + "metadata": { + "category": "cms", + "max-request": 4, + "product": "wordpress", + "shodan-query": "http.component:\"WordPress\"", + "vendor": "wordpress", + "verified": true + } + }, + "extractor-name": "version_by_js", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr", + "extracted-results": [ + "6.4.2" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:10.807792181Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "ats", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:11.431648905Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "apachegeneric", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:11.431697255Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress/plugins/child-theme-configurator.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-child-theme-configurator", + "template-id": "wordpress-child-theme-configurator", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/child-theme-configurator.yaml", + "info": { + "name": "Child Theme Configurator Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/child-theme-configurator/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "child-theme-configurator", + "wpscan": "https://wpscan.com/plugin/child-theme-configurator" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/child-theme-configurator/readme.txt", + "extracted-results": [ + "2.6.3" + ], + "meta": { + "last_version": "2.6.3" + }, + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:11.920332646Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/child-theme-configurator/readme.txt'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress/plugins/duplicate-page.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-duplicate-page", + "template-id": "wordpress-duplicate-page", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/duplicate-page.yaml", + "info": { + "name": "Duplicate Page Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-100", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/duplicate-page/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "duplicate-page", + "wpscan": "https://wpscan.com/plugin/duplicate-page" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/duplicate-page/readme.txt", + "extracted-results": [ + "4.5.3" + ], + "meta": { + "last_version": "4.5.3" + }, + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:12.737992413Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/duplicate-page/readme.txt'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress/plugins/mailchimp-for-wp.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-mailchimp-for-wp", + "template-id": "wordpress-mailchimp-for-wp", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/mailchimp-for-wp.yaml", + "info": { + "name": "MC4WP' Mailchimp for WordPress Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-100", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/mailchimp-for-wp/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "mailchimp-for-wp", + "wpscan": "https://wpscan.com/plugin/mailchimp-for-wp" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/mailchimp-for-wp/readme.txt", + "extracted-results": [ + "4.9.10" + ], + "meta": { + "last_version": "4.9.10" + }, + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:15.787802831Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/mailchimp-for-wp/readme.txt'", + "matcher-status": true + }, + { + "template": "http/technologies/wordpress/plugins/wordpress-seo.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-wordpress-seo", + "template-id": "wordpress-wordpress-seo", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/wordpress-seo.yaml", + "info": { + "name": "Yoast SEO Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-100", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/wordpress-seo/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "wordpress-seo", + "wpscan": "https://wpscan.com/plugin/wordpress-seo" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt", + "extracted-results": [ + "21.7" + ], + "meta": { + "last_version": "21.5" + }, + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:00:20.006482292Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt'", + "matcher-status": true + }, + { + "template": "http/vulnerabilities/wordpress/wordpress-rdf-user-enum.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-rdf-user-enum", + "template-id": "wordpress-rdf-user-enum", + "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wordpress-rdf-user-enum.yaml", + "info": { + "name": "Wordpress RDF User Enumeration", + "author": [ + "r3dg33k" + ], + "tags": [ + "wordpress", + "enum" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/feed/rdf", + "extracted-results": [ + "Pauline", + "gaelle" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:34.003116125Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/feed/rdf'", + "matcher-status": true + }, + { + "template": "http/vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-xmlrpc-listmethods", + "template-id": "wordpress-xmlrpc-listmethods", + "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml", + "info": { + "name": "Wordpress XML-RPC List System Methods", + "author": [ + "0ut0fb4nd" + ], + "tags": [ + "wordpress" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/xmlrpc.php", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:34.280260654Z", + "curl-command": "curl -X 'POST' -d 'system.listMethods' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/xmlrpc.php'", + "matcher-status": true + }, + { + "template": "http/vulnerabilities/wordpress/wp-license-file.yaml", + "template-url": "https://templates.nuclei.sh/public/wp-license-file", + "template-id": "wp-license-file", + "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wp-license-file.yaml", + "info": { + "name": "WordPress license file disclosure", + "author": [ + "yashgoti" + ], + "tags": [ + "wordpress" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/license.txt", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:35.31900458Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/license.txt'", + "matcher-status": true + }, + { + "template": "http/vulnerabilities/wordpress/wp-xmlrpc.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-xmlrpc-file", + "template-id": "wordpress-xmlrpc-file", + "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wp-xmlrpc.yaml", + "info": { + "name": "WordPress xmlrpc", + "author": [ + "udit_thakkur" + ], + "tags": [ + "wordpress" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://eva.beta.gouv.fr", + "matched-at": "https://eva.beta.gouv.fr/xmlrpc.php", + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:37.419602661Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/xmlrpc.php'", + "matcher-status": true + }, + { + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "info": { + "name": "Detect SSL Certificate Issuer", + "author": [ + "lingtren" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "eva.beta.gouv.fr", + "matched-at": "eva.beta.gouv.fr:443", + "extracted-results": [ + "Let's Encrypt" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:43.955028366Z", + "matcher-status": true + }, + { + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "info": { + "name": "SSL DNS Names", + "author": [ + "pdteam" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "eva.beta.gouv.fr", + "matched-at": "eva.beta.gouv.fr:443", + "extracted-results": [ + "eva.beta.gouv.fr" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:43.955137239Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "eva.beta.gouv.fr", + "matched-at": "eva.beta.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:49.715244484Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "eva.beta.gouv.fr", + "matched-at": "eva.beta.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "185.31.40.19", + "timestamp": "2023-12-24T05:03:49.930564939Z", + "matcher-status": true + } + ], "lhr": [ { "requestedUrl": "https://eva.beta.gouv.fr/", "finalUrl": "https://eva.beta.gouv.fr/", - "fetchTime": "2023-12-17T05:11:50.436Z", + "fetchTime": "2023-12-24T04:53:56.418Z", "runWarnings": [], "categories": { "performance": { @@ -144491,7 +146156,7 @@ "snapshot" ], "id": "performance", - "score": 0.34545078277587893 + "score": 0.34490070343017576 }, "accessibility": { "title": "Accessibility", @@ -144543,53 +146208,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 15401, + "numericValue": 15280, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3011, - "firstMeaningfulPaint": 4086, - "largestContentfulPaint": 6054, - "interactive": 15401, - "speedIndex": 8493, - "totalBlockingTime": 333, - "maxPotentialFID": 204, + "firstContentfulPaint": 3738, + "firstMeaningfulPaint": 3738, + "largestContentfulPaint": 5670, + "interactive": 15280, + "speedIndex": 8968, + "totalBlockingTime": 571, + "maxPotentialFID": 273, "cumulativeLayoutShift": 0.003851605733235677, "cumulativeLayoutShiftMainFrame": 0.003851605733235677, "totalCumulativeLayoutShift": 0.003851605733235677, "observedTimeOrigin": 0, - "observedTimeOriginTs": 265046101, + "observedTimeOriginTs": 669636703, "observedNavigationStart": 0, - "observedNavigationStartTs": 265046101, - "observedFirstPaint": 1118, - "observedFirstPaintTs": 266163829, - "observedFirstContentfulPaint": 1118, - "observedFirstContentfulPaintTs": 266163829, - "observedFirstContentfulPaintAllFrames": 1118, - "observedFirstContentfulPaintAllFramesTs": 266163829, - "observedFirstMeaningfulPaint": 1180, - "observedFirstMeaningfulPaintTs": 266225690, - "observedLargestContentfulPaint": 1325, - "observedLargestContentfulPaintTs": 266370883, - "observedLargestContentfulPaintAllFrames": 1325, - "observedLargestContentfulPaintAllFramesTs": 266370883, - "observedTraceEnd": 4592, - "observedTraceEndTs": 269638055, - "observedLoad": 1861, - "observedLoadTs": 266907527, - "observedDomContentLoaded": 1325, - "observedDomContentLoadedTs": 266371383, + "observedNavigationStartTs": 669636703, + "observedFirstPaint": 858, + "observedFirstPaintTs": 670494344, + "observedFirstContentfulPaint": 858, + "observedFirstContentfulPaintTs": 670494344, + "observedFirstContentfulPaintAllFrames": 858, + "observedFirstContentfulPaintAllFramesTs": 670494344, + "observedFirstMeaningfulPaint": 876, + "observedFirstMeaningfulPaintTs": 670512960, + "observedLargestContentfulPaint": 945, + "observedLargestContentfulPaintTs": 670581423, + "observedLargestContentfulPaintAllFrames": 945, + "observedLargestContentfulPaintAllFramesTs": 670581423, + "observedTraceEnd": 4338, + "observedTraceEndTs": 673974947, + "observedLoad": 1362, + "observedLoadTs": 670999001, + "observedDomContentLoaded": 958, + "observedDomContentLoadedTs": 670594706, "observedCumulativeLayoutShift": 0.003851605733235677, "observedCumulativeLayoutShiftMainFrame": 0.003851605733235677, "observedTotalCumulativeLayoutShift": 0.003851605733235677, - "observedFirstVisualChange": 1126, - "observedFirstVisualChangeTs": 266172101, - "observedLastVisualChange": 1859, - "observedLastVisualChangeTs": 266905101, - "observedSpeedIndex": 1297, - "observedSpeedIndexTs": 266343179 + "observedFirstVisualChange": 836, + "observedFirstVisualChangeTs": 670472703, + "observedLastVisualChange": 1503, + "observedLastVisualChangeTs": 671139703, + "observedSpeedIndex": 951, + "observedSpeedIndexTs": 670587509 }, { "lcpInvalidated": false @@ -144611,19 +146276,19 @@ "numScripts": 32, "numStylesheets": 16, "numFonts": 8, - "numTasks": 1516, - "numTasksOver10ms": 14, - "numTasksOver25ms": 7, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasks": 1455, + "numTasksOver10ms": 12, + "numTasksOver25ms": 8, + "numTasksOver50ms": 4, + "numTasksOver100ms": 3, "numTasksOver500ms": 0, - "rtt": 1.644, - "throughput": 15855190.301085748, - "maxRtt": 151.508, - "maxServerLatency": 20.791000000000054, - "totalByteWeight": 1858859, - "totalTaskTime": 726.3210000000031, - "mainDocumentTransferSize": 22583 + "rtt": 1.5919999999999999, + "throughput": 21825318.767536413, + "maxRtt": 104.688, + "maxServerLatency": 21.325999999999993, + "totalByteWeight": 1861743, + "totalTaskTime": 952.7100000000023, + "mainDocumentTransferSize": 22569 } ] } @@ -144717,7 +146382,7 @@ "sonarcloud": null, "summary": { "httpGrade": "F", - "apdex": 0.874, + "apdex": 0.926, "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", @@ -144731,7 +146396,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 39, - "lighthouse_performance": 0.34545078277587893, + "lighthouse_performance": 0.34490070343017576, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.92, "lighthouse_accessibilityGrade": "A", @@ -144760,30 +146425,30 @@ "http": { "url": "https://forum.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:21:52 GMT", + "end_time": "Sun, 24 Dec 2023 05:00:52 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "8101", - "Content-Security-Policy": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-4jKoxsEZtLEb2AUTTue4SA=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-4jKoxsEZtLEb2AUTTue4SA=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "Content-Length": "8264", + "Content-Security-Policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-U/0tnwjMX44Hgb5PE2QZng=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-U/0tnwjMX44Hgb5PE2QZng=='; default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 05:21:50 GMT", + "Date": "Sun, 24 Dec 2023 05:00:50 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=Gu7nkDyvlNAO8Dms12AiMAkcbwRkvPCG; expires=Sun, 15 Dec 2024 05:21:50 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=xm4hhe7lfo2rmhdx1z7tul48dpi8pl8c; expires=Sun, 31 Dec 2023 05:21:50 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HHV3JDADWNSVF509K2C1924B", + "Set-Cookie": "csrftoken=3mpkylrym5znBBCk8T7YbEN3QGjRz75x; expires=Sun, 22 Dec 2024 05:00:50 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=erfa00gttpcco7f0mkvsjwr2chn6dzmx; expires=Sun, 07 Jan 2024 05:00:50 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HJD3503JQW5TK6VQVVASMTSS", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45541597, + "scan_id": 45756704, "score": 100, - "start_time": "Sun, 17 Dec 2023 05:21:46 GMT", + "start_time": "Sun, 24 Dec 2023 05:00:46 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -144797,56 +146462,56 @@ "data": { "connect-src": [ "https://matomo.inclusion.beta.gouv.fr/", - "'self'", - "*.sentry.io" + "*.sentry.io", + "'self'" ], "default-src": [ "'self'" ], "font-src": [ - "'self'", + "https://fonts.gstatic.com/", "data:", - "https://fonts.gstatic.com/" + "'self'" ], "frame-src": [ - "'self'", - "https://tally.so" + "https://tally.so", + "'self'" ], "img-src": [ "https://matomo.inclusion.beta.gouv.fr/", - "'self'", + "data:", "cellar-c2.services.clever-cloud.com", - "data:" + "'self'" ], "script-src": [ + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", + "'self'", + "https://tally.so", "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-4jkoxseztleb2auttue4sa=='", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://tally.so" + "'nonce-u/0tnwjmx44hgb5pe2qzng=='", + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1" ], "script-src-elem": [ + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", + "'self'", + "https://tally.so", "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-4jkoxseztleb2auttue4sa=='", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", - "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://tally.so" + "'nonce-u/0tnwjmx44hgb5pe2qzng=='", + "https://cdn.jsdelivr.net/npm/chart.js@4.0.1" ], "style-src": [ + "https://fonts.googleapis.com", "'unsafe-inline'", - "'self'", - "https://fonts.googleapis.com" + "'self'" ], "style-src-elem": [ + "https://fonts.googleapis.com", "'unsafe-inline'", - "'self'", - "https://fonts.googleapis.com" + "'self'" ] }, "http": true, @@ -144889,7 +146554,7 @@ "data": { "csrftoken": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1734240111, + "expires": 1734843652, "httponly": false, "max-age": null, "path": "/", @@ -144899,7 +146564,7 @@ }, "sessionid": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1704000110, + "expires": 1704603650, "httponly": true, "max-age": null, "path": "/", @@ -145072,32 +146737,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:32:07Z", - "next_check_at": "2023-12-17T05:37:04Z", + "last_check_at": "2023-12-24T05:11:55Z", + "next_check_at": "2023-12-24T05:16:53Z", "mute_until": null, "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:32:09Z", + "tested_at": "2023-12-24T05:01:59Z", "expires_at": "2024-02-19T07:55:53Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.983, + "apdex": 0.968, "timings": { - "redirect": 823, - "namelookup": 118, - "connection": 151, - "handshake": 156, - "response": 242, - "total": 1490 + "redirect": 655, + "namelookup": 119, + "connection": 110, + "handshake": 117, + "response": 280, + "total": 1282 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "D" }, "nmap": { "host": "forum.inclusion.beta.gouv.fr", @@ -145326,7 +146991,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -145473,7 +147138,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -145676,7 +147341,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1702790611" + "finding": "1703394151" }, { "id": "HSTS", @@ -146232,7 +147897,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "62" } ], "thirdparties": { @@ -146277,10 +147942,10 @@ "cookies": [ { "name": "sessionid", - "value": "is82f0mhnqpssqd68snvpyvgvtyooq91", + "value": "aywtmedzmgbc4mmjeduqrji3pbs77cfq", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1704000144.228248, + "expires": 1704603683.140059, "size": 41, "httpOnly": true, "secure": true, @@ -146295,7 +147960,7 @@ "value": "1", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1702792345, + "expires": 1703395883, "size": 17, "httpOnly": false, "secure": false, @@ -146307,10 +147972,10 @@ }, { "name": "_pk_id.206.a786", - "value": "101790294aeb62b3.1702790545.", + "value": "5654eaada5898318.1703394084.", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736745745, + "expires": 1737349284, "size": 43, "httpOnly": false, "secure": false, @@ -146322,10 +147987,10 @@ }, { "name": "csrftoken", - "value": "2x1hom11btyKqcKnTIz6ToEiWBblItEC", + "value": "1QLSe6AsThBqRVuVnpaQZREXIBkTg3E8", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1734240144.228136, + "expires": 1734843683.139963, "size": 41, "httpOnly": false, "secure": true, @@ -146339,15 +148004,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8165", - "content-security-policy": "style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fhv4/5VI1KhP3a4/Vugo2A=='; font-src 'self' https://fonts.gstatic.com/ data:; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-fhv4/5VI1KhP3a4/Vugo2A=='; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "content-length": "8223", + "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ZnCPVH32X57kpyDdNrD9ug=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; font-src 'self' https://fonts.gstatic.com/ data:; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ZnCPVH32X57kpyDdNrD9ug=='; default-src 'self'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 05:22:24 GMT", + "date": "Sun, 24 Dec 2023 05:01:23 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=2x1hom11btyKqcKnTIz6ToEiWBblItEC; expires=Sun, 15 Dec 2024 05:22:24 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=is82f0mhnqpssqd68snvpyvgvtyooq91; expires=Sun, 31 Dec 2023 05:22:24 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HHV3KEKH6D33DK9AS02T66RW", + "set-cookie": "csrftoken=1QLSe6AsThBqRVuVnpaQZREXIBkTg3E8; expires=Sun, 22 Dec 2024 05:01:23 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=aywtmedzmgbc4mmjeduqrji3pbs77cfq; expires=Sun, 07 Jan 2024 05:01:23 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HJD3602XRER27M0K2M1QJ5BG", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -146498,42 +148163,8 @@ }, { "hostname": "tally.so", - "ip": "172.67.175.26", + "ip": "104.21.72.50", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -146552,7 +148183,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.32.10", + "ip": "142.250.190.42", "geoip": { "continent": { "code": "NA", @@ -146637,7 +148268,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:21:20", + "@generated": "Sun, 24 Dec 2023 05:00:21", "site": [ { "@name": "https://forum.inclusion.beta.gouv.fr", @@ -146773,7 +148404,7 @@ { "requestedUrl": "https://forum.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T05:21:34.513Z", + "fetchTime": "2023-12-24T05:00:35.579Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://forum.inclusion.beta.gouv.fr/) was redirected to https://communaute.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -146786,7 +148417,7 @@ "snapshot" ], "id": "performance", - "score": 0.8441349029541015 + "score": 0.8602518081665039 }, "accessibility": { "title": "Accessibility", @@ -146807,7 +148438,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -146838,53 +148469,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8241, + "numericValue": 8232, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8241, - "firstMeaningfulPaint": 8241, - "largestContentfulPaint": 11121, - "interactive": 8241, - "speedIndex": 8241, + "firstContentfulPaint": 8232, + "firstMeaningfulPaint": 8232, + "largestContentfulPaint": 11111, + "interactive": 8232, + "speedIndex": 8232, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.005506114959716797, "cumulativeLayoutShiftMainFrame": 0.005506114959716797, "totalCumulativeLayoutShift": 0.005506114959716797, "observedTimeOrigin": 0, - "observedTimeOriginTs": 327822536, + "observedTimeOriginTs": 312228618, "observedNavigationStart": 0, - "observedNavigationStartTs": 327822536, - "observedFirstPaint": 716, - "observedFirstPaintTs": 328538696, - "observedFirstContentfulPaint": 716, - "observedFirstContentfulPaintTs": 328538696, - "observedFirstContentfulPaintAllFrames": 716, - "observedFirstContentfulPaintAllFramesTs": 328538696, - "observedFirstMeaningfulPaint": 716, - "observedFirstMeaningfulPaintTs": 328538696, - "observedLargestContentfulPaint": 716, - "observedLargestContentfulPaintTs": 328538696, - "observedLargestContentfulPaintAllFrames": 716, - "observedLargestContentfulPaintAllFramesTs": 328538696, - "observedTraceEnd": 3838, - "observedTraceEndTs": 331660460, - "observedLoad": 903, - "observedLoadTs": 328725220, + "observedNavigationStartTs": 312228618, + "observedFirstPaint": 705, + "observedFirstPaintTs": 312933696, + "observedFirstContentfulPaint": 705, + "observedFirstContentfulPaintTs": 312933696, + "observedFirstContentfulPaintAllFrames": 705, + "observedFirstContentfulPaintAllFramesTs": 312933696, + "observedFirstMeaningfulPaint": 705, + "observedFirstMeaningfulPaintTs": 312933696, + "observedLargestContentfulPaint": 705, + "observedLargestContentfulPaintTs": 312933696, + "observedLargestContentfulPaintAllFrames": 705, + "observedLargestContentfulPaintAllFramesTs": 312933696, + "observedTraceEnd": 3318, + "observedTraceEndTs": 315546628, + "observedLoad": 1010, + "observedLoadTs": 313238897, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 327823055, + "observedDomContentLoadedTs": 312229140, "observedCumulativeLayoutShift": 0.005506114959716797, "observedCumulativeLayoutShiftMainFrame": 0.005506114959716797, "observedTotalCumulativeLayoutShift": 0.005506114959716797, - "observedFirstVisualChange": 697, - "observedFirstVisualChangeTs": 328519536, - "observedLastVisualChange": 1330, - "observedLastVisualChangeTs": 329152536, - "observedSpeedIndex": 720, - "observedSpeedIndexTs": 328542691 + "observedFirstVisualChange": 708, + "observedFirstVisualChangeTs": 312936618, + "observedLastVisualChange": 1025, + "observedLastVisualChangeTs": 313253618, + "observedSpeedIndex": 730, + "observedSpeedIndexTs": 312958148 }, { "lcpInvalidated": false @@ -146902,23 +148533,23 @@ "type": "debugdata", "items": [ { - "numRequests": 35, - "numScripts": 15, + "numRequests": 31, + "numScripts": 13, "numStylesheets": 5, "numFonts": 4, - "numTasks": 17, + "numTasks": 18, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.3600000000000003, - "throughput": 14465228.524299381, - "maxRtt": 101.858, - "maxServerLatency": 145.12300000000002, - "totalByteWeight": 1865758, - "totalTaskTime": 4.383, - "mainDocumentTransferSize": 10251 + "rtt": 1.7170000000000005, + "throughput": 15238584.173605157, + "maxRtt": 103.347, + "maxServerLatency": 142.29200000000003, + "totalByteWeight": 1781259, + "totalTaskTime": 2.403, + "mainDocumentTransferSize": 10299 } ] } @@ -147014,8 +148645,8 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.983, - "apdexGrade": "B", + "apdex": 0.968, + "apdexGrade": "D", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -147028,11 +148659,11 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 5, - "lighthouse_performance": 0.8441349029541015, + "lighthouse_performance": 0.8602518081665039, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 1, "lighthouse_seoGrade": "A", @@ -147054,7 +148685,7 @@ "http": { "url": "https://histologe.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:02:34 GMT", + "end_time": "Sun, 24 Dec 2023 04:15:39 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -147063,18 +148694,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 04:02:32 GMT", - "Expires": "Sun, 17 Dec 2023 04:02:32 GMT", - "Set-Cookie": "PHPSESSID=5f748bad0e8571f6f5fa8f776e9f92cb; path=/; httponly; samesite=lax", + "Date": "Sun, 24 Dec 2023 04:15:38 GMT", + "Expires": "Sun, 24 Dec 2023 04:15:38 GMT", + "Set-Cookie": "PHPSESSID=e10bad33b0aaf7f39d192df5c170b786; path=/; httponly; samesite=lax", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Frame-Options": "deny", - "X-Request-ID": "04003aac-da0a-451c-a376-7c453b6367e9" + "X-Request-ID": "84446497-738a-40ff-89e2-cbabf3c9306c" }, - "scan_id": 45539522, + "scan_id": 45755372, "score": 50, - "start_time": "Sun, 17 Dec 2023 04:02:29 GMT", + "start_time": "Sun, 24 Dec 2023 04:15:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -147270,32 +148901,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:36:21Z", - "next_check_at": "2023-12-17T05:41:18Z", + "last_check_at": "2023-12-24T05:31:27Z", + "next_check_at": "2023-12-24T05:36:26Z", "mute_until": null, "favicon_url": "https://histologe.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:56:40Z", + "tested_at": "2023-12-24T05:21:32Z", "expires_at": "2024-01-24T07:33:07Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.971, + "apdex": 0.984, "timings": { "redirect": 0, - "namelookup": 197, - "connection": 88, - "handshake": 97, - "response": 258, - "total": 641 + "namelookup": 181, + "connection": 143, + "handshake": 152, + "response": 309, + "total": 785 } }, "uptimeGrade": "A", - "apdexGrade": "C" + "apdexGrade": "B" }, "nmap": { "host": "histologe.beta.gouv.fr", @@ -147324,77 +148955,77 @@ "testssl": [ { "id": "service", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -147402,7 +149033,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -147410,7 +149041,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -147418,7 +149049,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -147426,7 +149057,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -147434,7 +149065,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -147442,518 +149073,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-10-26 07:33" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-01-24 07:33" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702790746" + "finding": "1703395201" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -147961,7 +149592,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -147970,7 +149601,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -147979,7 +149610,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -147988,7 +149619,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -147997,7 +149628,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -148005,7 +149636,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -148014,7 +149645,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -148023,7 +149654,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -148032,7 +149663,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -148041,14 +149672,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -148057,7 +149688,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -148066,7 +149697,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -148075,7 +149706,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -148084,7 +149715,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -148093,7 +149724,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -148102,7 +149733,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -148111,7 +149742,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -148120,7 +149751,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -148129,7 +149760,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -148138,392 +149769,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/148.253.75.120", + "ip": "histologe.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148531,7 +150162,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148539,7 +150170,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148547,7 +150178,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -148555,7 +150186,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -148563,7 +150194,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -148571,518 +150202,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-10-26 07:33" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-01-24 07:33" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702790805" + "finding": "1703395302" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -149090,7 +150721,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -149099,7 +150730,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -149108,7 +150739,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -149117,7 +150748,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -149126,7 +150757,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -149134,7 +150765,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -149143,7 +150774,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -149152,7 +150783,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -149161,7 +150792,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -149170,14 +150801,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -149186,7 +150817,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -149195,7 +150826,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -149204,7 +150835,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -149213,7 +150844,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -149222,7 +150853,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -149231,7 +150862,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -149240,7 +150871,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -149249,7 +150880,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -149258,7 +150889,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -149267,392 +150898,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -149660,7 +151291,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -149668,7 +151299,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -149676,7 +151307,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -149684,7 +151315,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -149692,7 +151323,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -149700,518 +151331,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-10-26 07:33" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-01-24 07:33" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702790864" + "finding": "1703395403" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -150219,7 +151850,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -150228,7 +151859,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -150237,7 +151868,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -150246,7 +151877,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -150255,7 +151886,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -150263,7 +151894,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -150272,7 +151903,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -150281,7 +151912,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -150290,7 +151921,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -150299,14 +151930,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -150315,7 +151946,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -150324,7 +151955,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -150333,7 +151964,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -150342,7 +151973,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -150351,7 +151982,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -150360,7 +151991,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -150369,7 +152000,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -150378,7 +152009,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -150387,7 +152018,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -150396,392 +152027,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/109.232.236.90", + "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -150789,7 +152420,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -150797,7 +152428,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -150805,7 +152436,7 @@ }, { "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -150813,7 +152444,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -150821,7 +152452,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -150829,518 +152460,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-10-26 07:33" }, { "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-01-24 07:33" }, { "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702790924" + "finding": "1703395503" }, { "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "max-age=0, must-revalidate, private" }, { "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -151348,7 +152979,7 @@ }, { "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -151357,7 +152988,7 @@ }, { "id": "CCS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -151366,7 +152997,7 @@ }, { "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -151375,7 +153006,7 @@ }, { "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -151384,7 +153015,7 @@ }, { "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -151392,7 +153023,7 @@ }, { "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -151401,7 +153032,7 @@ }, { "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -151410,7 +153041,7 @@ }, { "id": "BREACH", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -151419,7 +153050,7 @@ }, { "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -151428,14 +153059,14 @@ }, { "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -151444,7 +153075,7 @@ }, { "id": "FREAK", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -151453,7 +153084,7 @@ }, { "id": "DROWN", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -151462,7 +153093,7 @@ }, { "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -151471,7 +153102,7 @@ }, { "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -151480,7 +153111,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -151489,7 +153120,7 @@ }, { "id": "BEAST", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -151498,7 +153129,7 @@ }, { "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -151507,7 +153138,7 @@ }, { "id": "winshock", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -151516,7 +153147,7 @@ }, { "id": "RC4", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -151525,325 +153156,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "histologe.beta.gouv.fr/5.104.101.30", + "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "243" + "finding": "406" } ], "thirdparties": { @@ -151854,7 +153485,7 @@ }, { "type": "unknown", - "url": "https://histologe.matomo.cloud/matomo.php?action_name=Histologe%20-%20Un%20service%20public%20pour%20les%20locataires%20et%20propri%C3%A9taires&idsite=7&rec=1&r=584598&h=5&m=24&s=42&url=https%3A%2F%2Fhistologe.beta.gouv.fr%2F&_id=577458518e3117d6&_idn=1&send_image=0&_refts=0&pv_id=hoxcMK&fa_pv=1&fa_fp[0][fa_vid]=7SKQqY&fa_fp[0][fa_id]=front_postalcodesearch&fa_fp[0][fa_name]=postal_code_search&fa_fp[0][fa_fv]=1&pf_net=220&pf_srv=241&pf_tfr=2&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + "url": "https://histologe.matomo.cloud/matomo.php?action_name=Histologe%20-%20Un%20service%20public%20pour%20les%20locataires%20et%20propri%C3%A9taires&idsite=7&rec=1&r=748793&h=5&m=18&s=25&url=https%3A%2F%2Fhistologe.beta.gouv.fr%2F&_id=c1ca278a09e51138&_idn=1&send_image=0&_refts=0&pv_id=nzP0q9&fa_pv=1&fa_fp[0][fa_vid]=jPLslN&fa_fp[0][fa_id]=front_postalcodesearch&fa_fp[0][fa_name]=postal_code_search&fa_fp[0][fa_fv]=1&pf_net=322&pf_srv=316&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" } ], "cookies": [ @@ -151863,7 +153494,7 @@ "value": "1", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1702792482, + "expires": 1703396905, "size": 15, "httpOnly": false, "secure": false, @@ -151875,10 +153506,10 @@ }, { "name": "_pk_id.7.fa00", - "value": "577458518e3117d6.1702790683.", + "value": "c1ca278a09e51138.1703395105.", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1736745883, + "expires": 1737350305, "size": 41, "httpOnly": false, "secure": false, @@ -151890,7 +153521,7 @@ }, { "name": "PHPSESSID", - "value": "b2f3db80cc3f4c0e81cbe356ff520182", + "value": "7a94997fb62b6f47266b37c324a2c7cd", "domain": "histologe.beta.gouv.fr", "path": "/", "expires": -1, @@ -151908,28 +153539,19 @@ "cache-control": "max-age=0, must-revalidate, private", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 05:24:42 GMT", - "expires": "Sun, 17 Dec 2023 05:24:42 GMT", - "set-cookie": "PHPSESSID=b2f3db80cc3f4c0e81cbe356ff520182; path=/; httponly; samesite=lax", + "date": "Sun, 24 Dec 2023 05:18:24 GMT", + "expires": "Sun, 24 Dec 2023 05:18:24 GMT", + "set-cookie": "PHPSESSID=7a94997fb62b6f47266b37c324a2c7cd; path=/; httponly; samesite=lax", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-frame-options": "deny", - "x-request-id": "ea5477e0-be34-478e-aa17-3acadbd154ba" + "x-request-id": "a3fa2212-934a-46d0-bd18-4cbfa2ebf9ad" }, "endpoints": [ { "hostname": "histologe.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -151961,13 +153583,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -151982,33 +153601,12 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { "hostname": "cdn.matomo.cloud", - "ip": "13.249.85.69", + "ip": "13.227.74.123", "geoip": { "continent": { "code": "NA", @@ -152062,7 +153660,7 @@ }, { "hostname": "histologe.matomo.cloud", - "ip": "18.157.122.248", + "ip": "18.195.235.189", "geoip": { "city": { "geoname_id": 2925533, @@ -152271,7 +153869,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:24:01", + "@generated": "Sun, 24 Dec 2023 05:17:43", "site": [ { "@name": "https://histologe.beta.gouv.fr", @@ -152432,23 +154030,22 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -152458,17 +154055,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "histologe.beta.gouv.fr.", - "matched-at": "_dmarc.histologe.beta.gouv.fr", + "matched-at": "histologe.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"sendinblue-code:3a8b4748e42ece708821ec6aa8d41eb6\"" ], - "timestamp": "2023-12-17T05:30:16.938537411Z", + "timestamp": "2023-12-24T05:26:53.650256286Z", "matcher-status": true }, { @@ -152503,26 +154100,27 @@ "type": "dns", "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", - "timestamp": "2023-12-17T05:30:16.980189576Z", + "timestamp": "2023-12-24T05:26:53.65067647Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -152532,17 +154130,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "histologe.beta.gouv.fr.", - "matched-at": "histologe.beta.gouv.fr", + "matched-at": "_dmarc.histologe.beta.gouv.fr", "extracted-results": [ - "\"sendinblue-code:3a8b4748e42ece708821ec6aa8d41eb6\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T05:30:17.041694146Z", + "timestamp": "2023-12-24T05:26:53.786527544Z", "matcher-status": true }, { @@ -152575,10 +154173,10 @@ "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T05:30:17.764616175Z", + "timestamp": "2023-12-24T05:26:53.941605988Z", "matcher-status": true }, { @@ -152615,10 +154213,10 @@ "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T05:30:18.22075116Z", + "timestamp": "2023-12-24T05:26:54.64990108Z", "matcher-status": true }, { @@ -152656,7 +154254,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:30:37.3507165Z", + "timestamp": "2023-12-24T05:27:17.593133594Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152685,7 +154283,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:30:37.383318502Z", + "timestamp": "2023-12-24T05:27:17.625959473Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152712,7 +154310,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:14.608244519Z", + "timestamp": "2023-12-24T05:28:01.363845967Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152744,12 +154342,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.271889037Z", + "timestamp": "2023-12-24T05:28:18.050539459Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152781,12 +154379,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.271944571Z", + "timestamp": "2023-12-24T05:28:18.050579965Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152823,7 +154421,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.271962023Z", + "timestamp": "2023-12-24T05:28:18.05059894Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152860,7 +154458,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.271974507Z", + "timestamp": "2023-12-24T05:28:18.05061463Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152892,12 +154490,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.27198736Z", + "timestamp": "2023-12-24T05:28:18.050728361Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152929,12 +154527,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.272000826Z", + "timestamp": "2023-12-24T05:28:18.050747948Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -152966,12 +154564,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.27201407Z", + "timestamp": "2023-12-24T05:28:18.05076556Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153008,7 +154606,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.272028136Z", + "timestamp": "2023-12-24T05:28:18.05078673Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153040,12 +154638,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:27.27205162Z", + "timestamp": "2023-12-24T05:28:18.050803421Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153072,7 +154670,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/.htaccess", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:40.043660881Z", + "timestamp": "2023-12-24T05:28:35.85236947Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/.htaccess'", "matcher-status": true }, @@ -153100,7 +154698,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/robots.txt", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:40.17208473Z", + "timestamp": "2023-12-24T05:28:36.093058056Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -153140,7 +154738,7 @@ "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/", "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:31:58.303269604Z", + "timestamp": "2023-12-24T05:29:00.917590884Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: histologe.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/'", "matcher-status": true }, @@ -153155,7 +154753,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -153170,7 +154769,7 @@ "Let's Encrypt" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:37:45.911458784Z", + "timestamp": "2023-12-24T05:34:57.056703205Z", "matcher-status": true }, { @@ -153184,7 +154783,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -153199,7 +154799,7 @@ "histologe.beta.gouv.fr" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:37:45.911573227Z", + "timestamp": "2023-12-24T05:34:57.056837405Z", "matcher-status": true }, { @@ -153214,7 +154814,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -153229,7 +154830,7 @@ "tls12" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:37:47.873827358Z", + "timestamp": "2023-12-24T05:34:59.517765871Z", "matcher-status": true }, { @@ -153244,7 +154845,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -153259,7 +154861,7 @@ "tls13" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:37:48.088750512Z", + "timestamp": "2023-12-24T05:34:59.830539047Z", "matcher-status": true } ], @@ -153267,7 +154869,7 @@ { "requestedUrl": "https://histologe.beta.gouv.fr/", "finalUrl": "https://histologe.beta.gouv.fr/", - "fetchTime": "2023-12-17T05:24:15.852Z", + "fetchTime": "2023-12-24T05:17:58.055Z", "runWarnings": [], "categories": { "performance": { @@ -153330,53 +154932,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4073, + "numericValue": 4271, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1882, - "firstMeaningfulPaint": 1882, - "largestContentfulPaint": 2132, - "interactive": 4073, - "speedIndex": 2367, - "totalBlockingTime": 76, - "maxPotentialFID": 120, + "firstContentfulPaint": 2094, + "firstMeaningfulPaint": 2094, + "largestContentfulPaint": 2243, + "interactive": 4271, + "speedIndex": 3034, + "totalBlockingTime": 173, + "maxPotentialFID": 180, "cumulativeLayoutShift": 0.0023753255208333337, "cumulativeLayoutShiftMainFrame": 0.0023753255208333337, "totalCumulativeLayoutShift": 0.0023753255208333337, "observedTimeOrigin": 0, - "observedTimeOriginTs": 265706490, + "observedTimeOriginTs": 264576540, "observedNavigationStart": 0, - "observedNavigationStartTs": 265706490, - "observedFirstPaint": 978, - "observedFirstPaintTs": 266684753, - "observedFirstContentfulPaint": 978, - "observedFirstContentfulPaintTs": 266684753, - "observedFirstContentfulPaintAllFrames": 978, - "observedFirstContentfulPaintAllFramesTs": 266684753, - "observedFirstMeaningfulPaint": 978, - "observedFirstMeaningfulPaintTs": 266684753, - "observedLargestContentfulPaint": 978, - "observedLargestContentfulPaintTs": 266684753, - "observedLargestContentfulPaintAllFrames": 978, - "observedLargestContentfulPaintAllFramesTs": 266684753, - "observedTraceEnd": 3498, - "observedTraceEndTs": 269204187, - "observedLoad": 1188, - "observedLoadTs": 266894814, - "observedDomContentLoaded": 1188, - "observedDomContentLoadedTs": 266894412, + "observedNavigationStartTs": 264576540, + "observedFirstPaint": 1164, + "observedFirstPaintTs": 265740704, + "observedFirstContentfulPaint": 1164, + "observedFirstContentfulPaintTs": 265740704, + "observedFirstContentfulPaintAllFrames": 1164, + "observedFirstContentfulPaintAllFramesTs": 265740704, + "observedFirstMeaningfulPaint": 1164, + "observedFirstMeaningfulPaintTs": 265740704, + "observedLargestContentfulPaint": 1164, + "observedLargestContentfulPaintTs": 265740704, + "observedLargestContentfulPaintAllFrames": 1164, + "observedLargestContentfulPaintAllFramesTs": 265740704, + "observedTraceEnd": 4044, + "observedTraceEndTs": 268620845, + "observedLoad": 1735, + "observedLoadTs": 266311928, + "observedDomContentLoaded": 1474, + "observedDomContentLoadedTs": 266050116, "observedCumulativeLayoutShift": 0.0023753255208333337, "observedCumulativeLayoutShiftMainFrame": 0.0023753255208333337, "observedTotalCumulativeLayoutShift": 0.0023753255208333337, - "observedFirstVisualChange": 982, - "observedFirstVisualChangeTs": 266688490, - "observedLastVisualChange": 1599, - "observedLastVisualChangeTs": 267305490, - "observedSpeedIndex": 996, - "observedSpeedIndexTs": 266702165 + "observedFirstVisualChange": 1146, + "observedFirstVisualChangeTs": 265722540, + "observedLastVisualChange": 1762, + "observedLastVisualChangeTs": 266338540, + "observedSpeedIndex": 1159, + "observedSpeedIndexTs": 265735870 }, { "lcpInvalidated": false @@ -153398,19 +155000,19 @@ "numScripts": 6, "numStylesheets": 12, "numFonts": 4, - "numTasks": 964, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, - "numTasksOver50ms": 0, + "numTasks": 977, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.081999999999997, - "throughput": 20867277.531050883, - "maxRtt": 111.139, - "maxServerLatency": 81.121, - "totalByteWeight": 603213, - "totalTaskTime": 236.9829999999993, - "mainDocumentTransferSize": 6634 + "rtt": 2.4490000000000016, + "throughput": 14350754.880854307, + "maxRtt": 159.933, + "maxServerLatency": 25.597000000000037, + "totalByteWeight": 603112, + "totalTaskTime": 362.6510000000001, + "mainDocumentTransferSize": 6689 } ] } @@ -153435,7 +155037,8 @@ "uri": "" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://histologe.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -153500,8 +155103,8 @@ "sonarcloud": null, "summary": { "httpGrade": "C", - "apdex": 0.971, - "apdexGrade": "C", + "apdex": 0.984, + "apdexGrade": "B", "uptime": 99.954, "uptimeGrade": "A", "nmapGrade": "A", @@ -153527,7 +155130,7 @@ "statsGrade": "B", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "A" } @@ -153540,7 +155143,7 @@ "http": { "url": "https://immersion-facile.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:40:39 GMT", + "end_time": "Sun, 24 Dec 2023 05:18:27 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -153549,19 +155152,19 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 05:40:38 GMT", - "ETag": "W/\"657c21ef-9b8\"", - "Last-Modified": "Fri, 15 Dec 2023 09:52:47 GMT", + "Date": "Sun, 24 Dec 2023 05:18:26 GMT", + "ETag": "W/\"65855e0a-9ff\"", + "Last-Modified": "Fri, 22 Dec 2023 09:59:38 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Request-ID": "f3a026a7-2bf4-4a7f-90ea-93ebf5135b07", + "X-Request-ID": "f020621e-fcd8-4c32-9bac-90cffd7ad88a", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45542315, + "scan_id": 45757330, "score": 60, - "start_time": "Sun, 17 Dec 2023 05:40:35 GMT", + "start_time": "Sun, 24 Dec 2023 05:18:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -153574,21 +155177,21 @@ "output": { "data": { "default-src": [ - "'unsafe-eval'", "https://matomo.inclusion.beta.gouv.fr", + "https://client.crisp.chat", + "https://immersion.cellar-c2.services.clever-cloud.com", + "data:", + "'self'", + "https://user-images.githubusercontent.com", + "wss://client.relay.crisp.chat/w/9d/", + "https://tally.so", + "https://px.ads.linkedin.com", "https://metabase.immersion-facile.beta.gouv.fr", "https://sentry.gip-inclusion.cloud-ed.fr", - "wss://client.relay.crisp.chat/w/9d/", "'unsafe-inline'", - "'self'", - "https://px.ads.linkedin.com", "https://snap.licdn.com", - "data:", - "https://client.crisp.chat", - "https://immersion.cellar-c2.services.clever-cloud.com", "blob:", - "https://user-images.githubusercontent.com", - "https://tally.so" + "'unsafe-eval'" ] }, "http": true, @@ -153776,15 +155379,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T05:53:54Z", - "next_check_at": "2023-12-17T05:58:54Z", + "last_check_at": "2023-12-24T05:30:59Z", + "next_check_at": "2023-12-24T05:35:58Z", "mute_until": null, "favicon_url": "https://immersion-facile.beta.gouv.fr/dsfr/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:43:57Z", + "tested_at": "2023-12-24T05:21:03Z", "expires_at": "2024-01-29T03:55:06Z", "valid": true, "error": null @@ -153793,11 +155396,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 129, - "connection": 121, - "handshake": 128, - "response": 122, - "total": 500 + "namelookup": 185, + "connection": 162, + "handshake": 170, + "response": 165, + "total": 681 } }, "uptimeGrade": "A", @@ -154175,7 +155778,7 @@ "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -154378,7 +155981,7 @@ "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702791741" + "finding": "1703395208" }, { "id": "HSTS_time", @@ -155157,7 +156760,7 @@ "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -155297,7 +156900,7 @@ "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -155500,7 +157103,7 @@ "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702791800" + "finding": "1703395262" }, { "id": "HSTS_time", @@ -156419,7 +158022,7 @@ "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -156622,7 +158225,7 @@ "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702791858" + "finding": "1703395317" }, { "id": "HSTS_time", @@ -157541,7 +159144,7 @@ "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -157744,7 +159347,7 @@ "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702791918" + "finding": "1703395372" }, { "id": "HSTS_time", @@ -158321,7 +159924,7 @@ "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "238" + "finding": "221" } ], "thirdparties": { @@ -158348,35 +159951,35 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-5-41" + "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-5-19" }, { "type": "unknown", - "url": "https://snap.licdn.com/li.lms-analytics/insight.min.js" + "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1701277132829" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?2940d8d" + "url": "https://snap.licdn.com/li.lms-analytics/insight.min.js" }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1702791675294&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?2940d8d" }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1702791675294&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F&cookiesTest=true" + "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1703395145911&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F" }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/wa/" + "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1703395145911&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F&cookiesTest=true" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1701277132829" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?2940d8d" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?2940d8d" + "url": "https://px.ads.linkedin.com/wa/" } ], "cookies": [], @@ -158384,19 +159987,19 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 05:41:12 GMT", - "etag": "W/\"657c21ef-9b8\"", - "last-modified": "Fri, 15 Dec 2023 09:52:47 GMT", + "date": "Sun, 24 Dec 2023 05:19:02 GMT", + "etag": "W/\"65855e0a-9ff\"", + "last-modified": "Fri, 22 Dec 2023 09:59:38 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-request-id": "e0795f20-546c-41cc-8b4d-dd46b08059d9", + "x-request-id": "98aee534-32c6-475b-a279-bc2dcbc6e8a1", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "immersion-facile.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -158542,7 +160145,7 @@ }, { "hostname": "immersion.cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.149", + "ip": "91.208.207.147", "geoip": { "continent": { "code": "EU", @@ -158598,42 +160201,8 @@ }, { "hostname": "client.crisp.chat", - "ip": "172.64.153.75", + "ip": "104.18.34.181", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -158652,19 +160221,13 @@ }, { "hostname": "snap.licdn.com", - "ip": "23.223.17.199", + "ip": "23.218.218.191", "geoip": { "city": { - "geoname_id": 6167865, + "geoname_id": 4744870, "names": { - "de": "Toronto", - "en": "Toronto", - "es": "Toronto", - "fr": "Toronto", - "ja": "トロント", - "pt-BR": "Toronto", - "ru": "Торонто", - "zh-CN": "多伦多" + "en": "Ashburn", + "ru": "Ашберн" } }, "continent": { @@ -158682,27 +160245,28 @@ } }, "country": { - "geoname_id": 6251999, - "iso_code": "CA", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Kanada", - "en": "Canada", - "es": "Canadá", - "fr": "Canada", - "ja": "カナダ", - "pt-BR": "Canadá", - "ru": "Канада", - "zh-CN": "加拿大" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "location": { "accuracy_radius": 20, - "latitude": 43.6547, - "longitude": -79.3623, - "time_zone": "America/Toronto" + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "M5A" + "code": "20149" }, "registered_country": { "geoname_id": 6252001, @@ -158720,15 +160284,15 @@ }, "subdivisions": [ { - "geoname_id": 6093943, - "iso_code": "ON", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "en": "Ontario", - "fr": "Ontario", - "ja": "オンタリオ州", - "pt-BR": "Ontário", - "ru": "Онтарио", - "zh-CN": "安大略" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -159022,7 +160586,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:39:18", + "@generated": "Sun, 24 Dec 2023 05:17:55", "site": [ { "@name": "https://immersion-facile.beta.gouv.fr", @@ -159155,22 +160719,62 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "immersion-facile.beta.gouv.fr.", + "matched-at": "_dmarc.immersion-facile.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T05:24:15.674697687Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -159186,12 +160790,7 @@ "type": "dns", "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"brevo-code:4b6916e51c3db65d7f88d56a5456c101\"", - "\"google-site-verification=63F_x8CwmWxagHBfglqIaDnDgWGOMeiZ7rwHcAKrwMo\"" - ], - "timestamp": "2023-12-17T05:46:48.844024263Z", + "timestamp": "2023-12-24T05:24:15.674914401Z", "matcher-status": true }, { @@ -159228,30 +160827,27 @@ "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T05:46:48.85078815Z", + "timestamp": "2023-12-24T05:24:15.755324333Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -159266,64 +160862,31 @@ "type": "dns", "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", - "timestamp": "2023-12-17T05:46:48.932521344Z", - "matcher-status": true - }, - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "immersion-facile.beta.gouv.fr.", - "matched-at": "_dmarc.immersion-facile.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T05:46:49.733599218Z", + "timestamp": "2023-12-24T05:24:15.993174257Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -159339,10 +160902,11 @@ "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:4b6916e51c3db65d7f88d56a5456c101\"", + "\"google-site-verification=63F_x8CwmWxagHBfglqIaDnDgWGOMeiZ7rwHcAKrwMo\"" ], - "timestamp": "2023-12-17T05:46:49.736530192Z", + "timestamp": "2023-12-24T05:24:16.895110106Z", "matcher-status": true }, { @@ -159382,7 +160946,7 @@ "1; mode=block" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:02.04030857Z", + "timestamp": "2023-12-24T05:24:26.894025659Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159414,12 +160978,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550460226Z", + "timestamp": "2023-12-24T05:24:58.255216892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159451,12 +161015,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550532952Z", + "timestamp": "2023-12-24T05:24:58.255268477Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159488,12 +161052,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550569841Z", + "timestamp": "2023-12-24T05:24:58.255285519Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159525,12 +161089,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550587403Z", + "timestamp": "2023-12-24T05:24:58.255303813Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159562,12 +161126,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550602502Z", + "timestamp": "2023-12-24T05:24:58.25531877Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159599,12 +161163,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550621668Z", + "timestamp": "2023-12-24T05:24:58.255338787Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159636,12 +161200,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550637107Z", + "timestamp": "2023-12-24T05:24:58.255351501Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159673,12 +161237,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:47:38.550655842Z", + "timestamp": "2023-12-24T05:24:58.255369384Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -159718,7 +161282,7 @@ "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr/", "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:48:04.618558465Z", + "timestamp": "2023-12-24T05:25:20.025620713Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: immersion-facile.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr/'", "matcher-status": true }, @@ -159733,7 +161297,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -159748,7 +161313,7 @@ "Let's Encrypt" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:53:47.214282488Z", + "timestamp": "2023-12-24T05:30:59.13947Z", "matcher-status": true }, { @@ -159762,7 +161327,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -159777,7 +161343,7 @@ "immersion-facile.beta.gouv.fr" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:53:47.214430505Z", + "timestamp": "2023-12-24T05:30:59.139598719Z", "matcher-status": true }, { @@ -159792,7 +161358,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -159807,7 +161374,7 @@ "tls12" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:53:48.761061315Z", + "timestamp": "2023-12-24T05:31:01.119557521Z", "matcher-status": true }, { @@ -159822,7 +161389,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -159837,7 +161405,7 @@ "tls13" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:53:49.018396833Z", + "timestamp": "2023-12-24T05:31:01.312092388Z", "matcher-status": true } ], @@ -159845,7 +161413,7 @@ { "requestedUrl": "https://immersion-facile.beta.gouv.fr/", "finalUrl": "https://immersion-facile.beta.gouv.fr/", - "fetchTime": "2023-12-17T05:39:32.998Z", + "fetchTime": "2023-12-24T05:18:09.325Z", "runWarnings": [], "categories": { "performance": { @@ -159856,7 +161424,7 @@ "snapshot" ], "id": "performance", - "score": 0.919497299194336 + "score": 0.9201257705688477 }, "accessibility": { "title": "Accessibility", @@ -159898,7 +161466,7 @@ "navigation" ], "id": "pwa", - "score": 0.9 + "score": 0.8 } }, "audits": { @@ -159908,53 +161476,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10446, + "numericValue": 10000, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7090, - "firstMeaningfulPaint": 7169, - "largestContentfulPaint": 9053, - "interactive": 10446, - "speedIndex": 7426, - "totalBlockingTime": 1157, - "maxPotentialFID": 1059, - "cumulativeLayoutShift": 0.4265859171549479, - "cumulativeLayoutShiftMainFrame": 0.4265859171549479, - "totalCumulativeLayoutShift": 0.4265859171549479, + "firstContentfulPaint": 6834, + "firstMeaningfulPaint": 6912, + "largestContentfulPaint": 8949, + "interactive": 10000, + "speedIndex": 7675, + "totalBlockingTime": 1110, + "maxPotentialFID": 1055, + "cumulativeLayoutShift": 0.4127179158528646, + "cumulativeLayoutShiftMainFrame": 0.4127179158528646, + "totalCumulativeLayoutShift": 0.4127179158528646, "observedTimeOrigin": 0, - "observedTimeOriginTs": 274439556, + "observedTimeOriginTs": 253147636, "observedNavigationStart": 0, - "observedNavigationStartTs": 274439556, - "observedFirstPaint": 1573, - "observedFirstPaintTs": 276012163, - "observedFirstContentfulPaint": 1573, - "observedFirstContentfulPaintTs": 276012163, - "observedFirstContentfulPaintAllFrames": 1573, - "observedFirstContentfulPaintAllFramesTs": 276012163, - "observedFirstMeaningfulPaint": 1573, - "observedFirstMeaningfulPaintTs": 276012163, - "observedLargestContentfulPaint": 1762, - "observedLargestContentfulPaintTs": 276201337, - "observedLargestContentfulPaintAllFrames": 1762, - "observedLargestContentfulPaintAllFramesTs": 276201337, - "observedTraceEnd": 4979, - "observedTraceEndTs": 279418275, - "observedLoad": 1481, - "observedLoadTs": 275920161, - "observedDomContentLoaded": 1412, - "observedDomContentLoadedTs": 275851240, - "observedCumulativeLayoutShift": 0.4265859171549479, - "observedCumulativeLayoutShiftMainFrame": 0.4265859171549479, - "observedTotalCumulativeLayoutShift": 0.4265859171549479, - "observedFirstVisualChange": 1582, - "observedFirstVisualChangeTs": 276021556, - "observedLastVisualChange": 1766, - "observedLastVisualChangeTs": 276205556, - "observedSpeedIndex": 1659, - "observedSpeedIndexTs": 276098456 + "observedNavigationStartTs": 253147636, + "observedFirstPaint": 1863, + "observedFirstPaintTs": 255010875, + "observedFirstContentfulPaint": 1863, + "observedFirstContentfulPaintTs": 255010875, + "observedFirstContentfulPaintAllFrames": 1863, + "observedFirstContentfulPaintAllFramesTs": 255010875, + "observedFirstMeaningfulPaint": 1863, + "observedFirstMeaningfulPaintTs": 255010875, + "observedLargestContentfulPaint": 2074, + "observedLargestContentfulPaintTs": 255222012, + "observedLargestContentfulPaintAllFrames": 2074, + "observedLargestContentfulPaintAllFramesTs": 255222012, + "observedTraceEnd": 5260, + "observedTraceEndTs": 258407609, + "observedLoad": 1770, + "observedLoadTs": 254917513, + "observedDomContentLoaded": 1702, + "observedDomContentLoadedTs": 254849858, + "observedCumulativeLayoutShift": 0.4127179158528646, + "observedCumulativeLayoutShiftMainFrame": 0.4127179158528646, + "observedTotalCumulativeLayoutShift": 0.4127179158528646, + "observedFirstVisualChange": 1875, + "observedFirstVisualChangeTs": 255022636, + "observedLastVisualChange": 2075, + "observedLastVisualChangeTs": 255222636, + "observedSpeedIndex": 1959, + "observedSpeedIndexTs": 255106629 }, { "lcpInvalidated": false @@ -159976,19 +161544,19 @@ "numScripts": 8, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1411, - "numTasksOver10ms": 11, - "numTasksOver25ms": 6, + "numTasks": 1485, + "numTasksOver10ms": 10, + "numTasksOver25ms": 5, "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.831, - "throughput": 17798147.752958857, - "maxRtt": 104.36500000000001, - "maxServerLatency": 97.64000000000004, - "totalByteWeight": 1470642, - "totalTaskTime": 841.5639999999994, - "mainDocumentTransferSize": 1630 + "rtt": 1.3360000000000003, + "throughput": 14086110.294073537, + "maxRtt": 84.86600000000001, + "maxServerLatency": 92.28, + "totalByteWeight": 1467347, + "totalTaskTime": 759.4009999999989, + "mainDocumentTransferSize": 1659 } ] } @@ -160089,7 +161657,7 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 13, - "lighthouse_performance": 0.919497299194336, + "lighthouse_performance": 0.9201257705688477, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -160097,8 +161665,8 @@ "lighthouse_best-practicesGrade": "B", "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.9, - "lighthouse_pwaGrade": "A", + "lighthouse_pwa": 0.8, + "lighthouse_pwaGrade": "B", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "B", @@ -160115,7 +161683,7 @@ "http": { "url": "https://portail-rse.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:45:16 GMT", + "end_time": "Sun, 24 Dec 2023 05:24:23 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -160124,18 +161692,18 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 05:45:15 GMT", + "Date": "Sun, 24 Dec 2023 05:24:22 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "977e13b0-15fd-4f8e-b6b9-ed1ff3ee2c65" + "X-Request-ID": "135fab7a-a0a3-43b8-bb82-49844aa06f33" }, - "scan_id": 45542489, + "scan_id": 45757544, "score": 65, - "start_time": "Sun, 17 Dec 2023 05:45:12 GMT", + "start_time": "Sun, 24 Dec 2023 05:24:18 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -160329,77 +161897,77 @@ "testssl": [ { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160407,7 +161975,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160415,7 +161983,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160423,7 +161991,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -160431,7 +161999,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -160439,7 +162007,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -160447,511 +162015,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-10-25 07:36" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-23 07:36" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702792043" + "finding": "1703395559" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -160959,7 +162527,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -160968,7 +162536,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -160977,7 +162545,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -160986,7 +162554,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -160995,7 +162563,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -161003,7 +162571,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -161012,7 +162580,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -161021,7 +162589,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -161030,7 +162598,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -161039,14 +162607,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -161055,7 +162623,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -161064,7 +162632,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -161073,7 +162641,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -161082,7 +162650,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -161091,7 +162659,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -161100,7 +162668,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -161109,7 +162677,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -161118,7 +162686,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -161127,7 +162695,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -161136,392 +162704,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161529,7 +163097,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161537,7 +163105,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161545,7 +163113,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161553,7 +163121,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -161561,7 +163129,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -161569,511 +163137,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-25 07:36" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-23 07:36" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702792139" + "finding": "1703395616" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -162081,7 +163649,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -162090,7 +163658,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -162099,7 +163667,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -162108,7 +163676,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -162117,7 +163685,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -162125,7 +163693,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -162134,7 +163702,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -162143,7 +163711,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -162152,7 +163720,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -162161,14 +163729,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -162177,7 +163745,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -162186,7 +163754,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -162195,7 +163763,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -162204,7 +163772,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -162213,7 +163781,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -162222,7 +163790,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -162231,7 +163799,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -162240,7 +163808,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -162249,7 +163817,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -162258,392 +163826,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162651,7 +164219,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162659,7 +164227,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162667,7 +164235,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162675,7 +164243,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -162683,7 +164251,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -162691,511 +164259,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-25 07:36" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-23 07:36" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702792235" + "finding": "1703395675" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -163203,7 +164771,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -163212,7 +164780,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -163221,7 +164789,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -163230,7 +164798,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -163239,7 +164807,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -163247,7 +164815,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -163256,7 +164824,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -163265,7 +164833,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -163274,7 +164842,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -163283,14 +164851,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -163299,7 +164867,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -163308,7 +164876,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -163317,7 +164885,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -163326,7 +164894,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -163335,7 +164903,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -163344,7 +164912,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -163353,7 +164921,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -163362,7 +164930,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -163371,7 +164939,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -163380,392 +164948,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/185.21.194.105", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163773,7 +165341,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163781,7 +165349,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163789,7 +165357,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163797,7 +165365,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163805,7 +165373,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163813,511 +165381,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-25 07:36" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-23 07:36" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702792332" + "finding": "1703395733" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -164325,7 +165893,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -164334,7 +165902,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -164343,7 +165911,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -164352,7 +165920,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -164361,7 +165929,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -164369,7 +165937,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -164378,7 +165946,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -164387,7 +165955,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -164396,7 +165964,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -164405,14 +165973,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -164421,7 +165989,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -164430,7 +165998,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -164439,7 +166007,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -164448,7 +166016,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164457,7 +166025,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164466,7 +166034,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -164475,7 +166043,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -164484,7 +166052,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -164493,7 +166061,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -164502,325 +166070,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "389" + "finding": "235" } ], "thirdparties": { @@ -164828,10 +166396,10 @@ "cookies": [ { "name": "_pk_id.274.f943", - "value": "ce1df8acd2f9e63d.1702791950.", + "value": "2d5747e38ffaa4c7.1703395498.", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1736747150, + "expires": 1737350698, "size": 43, "httpOnly": false, "secure": false, @@ -164846,7 +166414,7 @@ "value": "1", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1702793750, + "expires": 1703397298, "size": 16, "httpOnly": false, "secure": false, @@ -164861,7 +166429,7 @@ "value": "1", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1702793750, + "expires": 1703397298, "size": 17, "httpOnly": false, "secure": false, @@ -164873,10 +166441,10 @@ }, { "name": "_pk_id.16.f943", - "value": "a19bc10923fae0b3.1702791950.", + "value": "fed3cd6b869d1126.1703395498.", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1736747150, + "expires": 1737350698, "size": 42, "httpOnly": false, "secure": false, @@ -164891,18 +166459,18 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 05:45:48 GMT", + "date": "Sun, 24 Dec 2023 05:24:57 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "4223f2b9-97b9-4ad6-8395-4307e00be4b6" + "x-request-id": "90d85265-0492-448f-9a68-472dd4966483" }, "endpoints": [ { "hostname": "portail-rse.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -165024,7 +166592,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:44:46", + "@generated": "Sun, 24 Dec 2023 05:23:53", "site": [ { "@name": "https://portail-rse.beta.gouv.fr", @@ -165177,42 +166745,6 @@ ] }, "nuclei": [ - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "portail-rse.beta.gouv.fr.", - "matched-at": "portail-rse.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2023-12-17T05:53:59.985011848Z", - "matcher-status": true - }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -165245,7 +166777,7 @@ "type": "dns", "host": "portail-rse.beta.gouv.fr.", "matched-at": "portail-rse.beta.gouv.fr", - "timestamp": "2023-12-17T05:54:00.267716695Z", + "timestamp": "2023-12-24T05:30:23.560565403Z", "matcher-status": true }, { @@ -165282,10 +166814,10 @@ "host": "portail-rse.beta.gouv.fr.", "matched-at": "portail-rse.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T05:54:00.305691495Z", + "timestamp": "2023-12-24T05:30:23.566016782Z", "matcher-status": true }, { @@ -165321,10 +166853,46 @@ "host": "portail-rse.beta.gouv.fr.", "matched-at": "portail-rse.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:34ab33afe09a6dc7f32ee46cc31c0e31\"", - "\"v=spf1 include:_spf.alwaysdata.com include:spf.brevo.com ~all\"" + "\"v=spf1 include:_spf.alwaysdata.com include:spf.brevo.com ~all\"", + "\"brevo-code:34ab33afe09a6dc7f32ee46cc31c0e31\"" + ], + "timestamp": "2023-12-24T05:30:23.666067077Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "portail-rse.beta.gouv.fr.", + "matched-at": "portail-rse.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T05:54:00.305922699Z", + "timestamp": "2023-12-24T05:30:23.73102323Z", "matcher-status": true }, { @@ -165364,7 +166932,7 @@ "extracted-results": [ "\"v=DMARC1; p=none\"" ], - "timestamp": "2023-12-17T05:54:00.826556352Z", + "timestamp": "2023-12-24T05:30:23.830907037Z", "matcher-status": true }, { @@ -165395,12 +166963,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720133015Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648073898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165432,12 +167000,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720181154Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648115727Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165469,12 +167037,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720197705Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648135494Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165506,12 +167074,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720210319Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648151214Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165543,12 +167111,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720265199Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648167253Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165580,12 +167148,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:05.720283453Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:14.648181841Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -165624,8 +167192,8 @@ "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T05:55:40.257324261Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:31:41.545250827Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: portail-rse.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr/'", "matcher-status": true }, @@ -165640,7 +167208,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -165654,8 +167223,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T06:01:29.928343601Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:37:24.658186028Z", "matcher-status": true }, { @@ -165669,7 +167238,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -165683,8 +167253,8 @@ "extracted-results": [ "portail-rse.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T06:01:29.928469826Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:37:24.658291876Z", "matcher-status": true }, { @@ -165699,7 +167269,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -165713,8 +167284,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T06:01:32.807644485Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:37:26.338335984Z", "matcher-status": true }, { @@ -165729,7 +167300,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -165743,8 +167315,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T06:01:33.201552068Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T05:37:26.551364185Z", "matcher-status": true } ], @@ -165752,7 +167324,7 @@ { "requestedUrl": "https://portail-rse.beta.gouv.fr/", "finalUrl": "https://portail-rse.beta.gouv.fr/", - "fetchTime": "2023-12-17T05:45:00.677Z", + "fetchTime": "2023-12-24T05:24:07.587Z", "runWarnings": [], "categories": { "performance": { @@ -165815,53 +167387,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1465, + "numericValue": 1440, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1465, - "firstMeaningfulPaint": 1465, - "largestContentfulPaint": 1615, - "interactive": 1465, - "speedIndex": 1465, + "firstContentfulPaint": 1440, + "firstMeaningfulPaint": 1440, + "largestContentfulPaint": 1817, + "interactive": 1440, + "speedIndex": 1440, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.004839192708333333, "cumulativeLayoutShiftMainFrame": 0.004839192708333333, "totalCumulativeLayoutShift": 0.004839192708333333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 337559813, + "observedTimeOriginTs": 319996037, "observedNavigationStart": 0, - "observedNavigationStartTs": 337559813, - "observedFirstPaint": 484, - "observedFirstPaintTs": 338044030, - "observedFirstContentfulPaint": 484, - "observedFirstContentfulPaintTs": 338044030, - "observedFirstContentfulPaintAllFrames": 484, - "observedFirstContentfulPaintAllFramesTs": 338044030, - "observedFirstMeaningfulPaint": 484, - "observedFirstMeaningfulPaintTs": 338044030, - "observedLargestContentfulPaint": 484, - "observedLargestContentfulPaintTs": 338044030, - "observedLargestContentfulPaintAllFrames": 484, - "observedLargestContentfulPaintAllFramesTs": 338044030, - "observedTraceEnd": 3502, - "observedTraceEndTs": 341061952, - "observedLoad": 1194, - "observedLoadTs": 338754198, + "observedNavigationStartTs": 319996037, + "observedFirstPaint": 422, + "observedFirstPaintTs": 320418417, + "observedFirstContentfulPaint": 422, + "observedFirstContentfulPaintTs": 320418417, + "observedFirstContentfulPaintAllFrames": 422, + "observedFirstContentfulPaintAllFramesTs": 320418417, + "observedFirstMeaningfulPaint": 422, + "observedFirstMeaningfulPaintTs": 320418417, + "observedLargestContentfulPaint": 422, + "observedLargestContentfulPaintTs": 320418417, + "observedLargestContentfulPaintAllFrames": 422, + "observedLargestContentfulPaintAllFramesTs": 320418417, + "observedTraceEnd": 3187, + "observedTraceEndTs": 323182894, + "observedLoad": 879, + "observedLoadTs": 320874570, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 337560396, + "observedDomContentLoadedTs": 319997314, "observedCumulativeLayoutShift": 0.004839192708333333, "observedCumulativeLayoutShiftMainFrame": 0.004839192708333333, "observedTotalCumulativeLayoutShift": 0.004839192708333333, - "observedFirstVisualChange": 493, - "observedFirstVisualChangeTs": 338052813, - "observedLastVisualChange": 843, - "observedLastVisualChangeTs": 338402813, - "observedSpeedIndex": 506, - "observedSpeedIndexTs": 338065977 + "observedFirstVisualChange": 391, + "observedFirstVisualChangeTs": 320387037, + "observedLastVisualChange": 557, + "observedLastVisualChangeTs": 320553037, + "observedSpeedIndex": 398, + "observedSpeedIndexTs": 320393850 }, { "lcpInvalidated": false @@ -165883,19 +167455,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 14, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 136.507, - "throughput": 8389270.179221718, - "maxRtt": 153.497, - "maxServerLatency": 114.94400000000002, - "totalByteWeight": 776040, - "totalTaskTime": 5.449999999999999, - "mainDocumentTransferSize": 5311 + "rtt": 99.974, + "throughput": 13014487.770314343, + "maxRtt": 104.934, + "maxServerLatency": 84.108, + "totalByteWeight": 775914, + "totalTaskTime": 2.8369999999999997, + "mainDocumentTransferSize": 5315 } ] } @@ -165953,7 +167525,7 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-01-23T07:36:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", @@ -165993,7 +167565,7 @@ "http": { "url": "https://impactco2.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:32:02 GMT", + "end_time": "Sun, 24 Dec 2023 01:30:50 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -166001,17 +167573,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:32:00 GMT", - "ETag": "\"ap20hwq5843ukl\"", + "Date": "Sun, 24 Dec 2023 01:30:47 GMT", + "ETag": "\"1bmalhshxf3v9u\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "082135c4-23e5-474d-9166-00ad0567e28d" + "X-Request-ID": "073f1834-87f9-4b1c-9c64-180a62bd5c35" }, - "scan_id": 45536803, + "scan_id": 45752221, "score": 40, - "start_time": "Sun, 17 Dec 2023 01:31:56 GMT", + "start_time": "Sun, 24 Dec 2023 01:30:44 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -166203,15 +167775,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T06:03:51Z", - "next_check_at": "2023-12-17T06:08:50Z", + "last_check_at": "2023-12-24T05:58:12Z", + "next_check_at": "2023-12-24T06:03:11Z", "mute_until": null, "favicon_url": "https://impactco2.fr/favicon-16x16.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:28:58Z", + "tested_at": "2023-12-24T05:53:16Z", "expires_at": "2024-03-03T13:49:08Z", "valid": true, "error": null @@ -166220,11 +167792,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 38, - "connection": 17, - "handshake": 25, - "response": 25, - "total": 104 + "namelookup": 29, + "connection": 20, + "handshake": 26, + "response": 42, + "total": 117 } }, "uptimeGrade": "A", @@ -166257,77 +167829,77 @@ "testssl": [ { "id": "service", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166335,7 +167907,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166343,7 +167915,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166351,7 +167923,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -166359,7 +167931,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -166367,7 +167939,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -166375,497 +167947,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-04 13:49" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-03 13:49" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702792271" + "finding": "1703396669" }, { "id": "HSTS_time", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -166873,7 +168445,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -166882,7 +168454,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -166891,7 +168463,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -166900,7 +168472,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -166909,7 +168481,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -166917,7 +168489,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -166926,7 +168498,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -166935,7 +168507,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -166944,7 +168516,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -166953,14 +168525,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -166969,7 +168541,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -166978,7 +168550,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -166987,7 +168559,7 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -166996,7 +168568,7 @@ }, { "id": "LOGJAM", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167005,7 +168577,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167014,7 +168586,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -167023,7 +168595,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -167032,7 +168604,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -167041,7 +168613,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -167050,392 +168622,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167443,7 +169015,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167451,7 +169023,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167459,7 +169031,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167467,7 +169039,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167475,7 +169047,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167483,497 +169055,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-04 13:49" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-03 13:49" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702792332" + "finding": "1703396726" }, { "id": "HSTS_time", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -167981,7 +169553,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -167990,7 +169562,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -167999,7 +169571,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -168008,7 +169580,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -168017,7 +169589,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -168025,7 +169597,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -168034,7 +169606,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -168043,7 +169615,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -168052,7 +169624,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -168061,14 +169633,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -168077,7 +169649,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -168086,7 +169658,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -168095,7 +169667,7 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -168104,7 +169676,7 @@ }, { "id": "LOGJAM", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168113,7 +169685,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168122,7 +169694,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -168131,7 +169703,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -168140,7 +169712,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -168149,7 +169721,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -168158,315 +169730,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -168818,7 +170390,7 @@ "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -169014,14 +170586,14 @@ "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702792394" + "finding": "1703396786" }, { "id": "HSTS_time", @@ -169926,7 +171498,7 @@ "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -170129,7 +171701,7 @@ "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702792458" + "finding": "1703396846" }, { "id": "HSTS_time", @@ -170692,36 +172264,45 @@ "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "248" + "finding": "240" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.85.0" + "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.88.0" }, { "type": "unknown", - "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.85.0" + "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.88.0" } ], "cookies": [], "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 05:50:09 GMT", - "etag": "\"ap20hwq5843ukl\"", + "date": "Sun, 24 Dec 2023 05:43:27 GMT", + "etag": "\"1bmalhshxf3v9u\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Next.js", - "x-request-id": "06339786-482d-4797-a112-2c0b1801be56" + "x-request-id": "cbeb452a-2436-4ba4-a015-b0f107756dec" }, "endpoints": [ { "hostname": "impactco2.fr", - "ip": "109.232.233.130", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -170753,10 +172334,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -170771,7 +172355,28 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } }, { @@ -170953,7 +172558,7 @@ "name": "Next.js", "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": "14.0.3", + "version": "14.0.4", "icon": "Next.js.svg", "website": "https://nextjs.org", "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", @@ -171092,7 +172697,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 05:49:27", + "@generated": "Sun, 24 Dec 2023 05:42:44", "site": [ { "@name": "https://impactco2.fr", @@ -171246,22 +172851,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -171277,7 +172883,11 @@ "type": "dns", "host": "impactco2.fr.", "matched-at": "impactco2.fr", - "timestamp": "2023-12-17T05:55:52.608306157Z", + "extracted-results": [ + "10 spool.mail.gandi.net.", + "50 fb.mail.gandi.net." + ], + "timestamp": "2023-12-24T05:48:58.349179763Z", "matcher-status": true }, { @@ -171311,30 +172921,29 @@ "matched-at": "impactco2.fr", "extracted-results": [ "ns-129-c.gandi.net.", - "ns-29-a.gandi.net.", - "ns-53-b.gandi.net." + "ns-53-b.gandi.net.", + "ns-29-a.gandi.net." ], - "timestamp": "2023-12-17T05:55:52.646478431Z", + "timestamp": "2023-12-24T05:48:58.349398142Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -171350,11 +172959,7 @@ "type": "dns", "host": "impactco2.fr.", "matched-at": "impactco2.fr", - "extracted-results": [ - "50 fb.mail.gandi.net.", - "10 spool.mail.gandi.net." - ], - "timestamp": "2023-12-17T05:55:53.489052509Z", + "timestamp": "2023-12-24T05:48:58.376071434Z", "matcher-status": true }, { @@ -171393,7 +172998,7 @@ "\"v=spf1 include:_mailcust.gandi.net ?all\"", "\"google-site-verification=_JTbdWm21IJVs9RRaH1M4Qm7bviHvuiJfvz5Eb8y2YU\"" ], - "timestamp": "2023-12-17T05:55:53.54595713Z", + "timestamp": "2023-12-24T05:48:59.213563658Z", "matcher-status": true }, { @@ -171422,8 +173027,8 @@ "GET", "HEAD" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:56:05.117589628Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:49:10.54052518Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171449,8 +173054,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:06.78724152Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:06.819859027Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171482,12 +173087,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639689792Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871026968Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171519,12 +173124,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639739445Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871066943Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171556,12 +173161,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639756948Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871085537Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171597,8 +173202,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639771666Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871107188Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171634,8 +173239,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639784069Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.87112415Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171671,8 +173276,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639796652Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.87114018Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171708,8 +173313,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639809727Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871198549Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171741,12 +173346,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639916958Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871217685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171778,12 +173383,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639929391Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.871232883Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171819,8 +173424,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:16.639943016Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:15.87124696Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", "matcher-status": true }, @@ -171847,8 +173452,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr/robots.txt", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:35.321474851Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:33.866333365Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/robots.txt'", "matcher-status": true }, @@ -171878,8 +173483,8 @@ "type": "http", "host": "https://impactco2.fr", "matched-at": "https://impactco2.fr/sitemap.xml", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T05:57:35.384408128Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:34.026564882Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/sitemap.xml'", "matcher-status": true }, @@ -171917,15 +173522,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantAddress", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "27fd404c02e5c14767e0170401286d0f-38250255@contact.gandi.net" + "49004", + "FR", + "20 avenue du Gresille", + "Angers" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.982962197Z", + "timestamp": "2023-12-24T05:50:34.530320317Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -171963,18 +173571,17 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "nameServers", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "20 avenue du Gresille", - "Angers", - "49004", - "FR" + "ns-129-c.gandi.net", + "ns-29-a.gandi.net", + "ns-53-b.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983006499Z", + "timestamp": "2023-12-24T05:50:34.530359079Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172012,15 +173619,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "expirationDate", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "FR" + "2024-09-15T08:45:46Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983018101Z", + "timestamp": "2023-12-24T05:50:34.530370761Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172058,17 +173665,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantEmail", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "ns-29-a.gandi.net", - "ns-129-c.gandi.net", - "ns-53-b.gandi.net" + "27fd404c02e5c14767e0170401286d0f-38250255@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983026788Z", + "timestamp": "2023-12-24T05:50:34.530379978Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172106,15 +173711,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantPhone", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "false" + "+33.241204120", + "+33.146383141" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983037217Z", + "timestamp": "2023-12-24T05:50:34.530396099Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172152,15 +173758,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantName", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "active" + "AGCE L ENVIRON MAITRISE L ENERGIE" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983050221Z", + "timestamp": "2023-12-24T05:50:34.530411978Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172198,15 +173804,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "2022-09-15T08:45:46Z" + "AGCE L ENVIRON MAITRISE L ENERGIE" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983065119Z", + "timestamp": "2023-12-24T05:50:34.530528817Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172244,15 +173850,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "2023-08-20T05:55:26.86023Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983084115Z", + "timestamp": "2023-12-24T05:50:34.530546149Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172290,15 +173896,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "2024-09-15T08:45:46Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983101077Z", + "timestamp": "2023-12-24T05:50:34.530561869Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172336,15 +173942,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "status", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983117327Z", + "timestamp": "2023-12-24T05:50:34.530579682Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172382,15 +173988,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrationDate", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" + "2022-09-15T08:45:46Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983133477Z", + "timestamp": "2023-12-24T05:50:34.530596524Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, @@ -172428,19 +174034,58 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://impactco2.fr", "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", "extracted-results": [ - "+33.241204120", - "+33.146383141" + "2023-08-20T05:55:26.86023Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T05:57:35.983149507Z", + "timestamp": "2023-12-24T05:50:34.530614798Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", "matcher-status": true }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "ats", + "type": "http", + "host": "https://impactco2.fr", + "matched-at": "https://impactco2.fr/", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:50:59.812265353Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: impactco2.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/'", + "matcher-status": true + }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -172452,7 +174097,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -172466,8 +174112,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T06:04:02.343222666Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:57:01.08772838Z", "matcher-status": true }, { @@ -172481,7 +174127,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -172495,8 +174142,8 @@ "extracted-results": [ "impactco2.fr" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T06:04:02.343335677Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:57:01.087832685Z", "matcher-status": true }, { @@ -172511,7 +174158,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -172525,8 +174173,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T06:04:04.268572202Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:57:02.844106083Z", "matcher-status": true }, { @@ -172541,7 +174189,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -172555,8 +174204,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T06:04:04.480016113Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T05:57:03.064238106Z", "matcher-status": true } ], @@ -172564,7 +174213,7 @@ { "requestedUrl": "https://impactco2.fr/", "finalUrl": "https://impactco2.fr/", - "fetchTime": "2023-12-17T05:49:41.300Z", + "fetchTime": "2023-12-24T05:42:58.120Z", "runWarnings": [], "categories": { "performance": { @@ -172575,7 +174224,7 @@ "snapshot" ], "id": "performance", - "score": 0.9908409118652344 + "score": 0.9901201248168945 }, "accessibility": { "title": "Accessibility", @@ -172627,53 +174276,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6522, + "numericValue": 6632, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1412, - "firstMeaningfulPaint": 1412, - "largestContentfulPaint": 4230, - "interactive": 6522, - "speedIndex": 1896, - "totalBlockingTime": 193, - "maxPotentialFID": 248, + "firstContentfulPaint": 1407, + "firstMeaningfulPaint": 1407, + "largestContentfulPaint": 3923, + "interactive": 6632, + "speedIndex": 1895, + "totalBlockingTime": 192, + "maxPotentialFID": 282, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 243835678, + "observedTimeOriginTs": 246300995, "observedNavigationStart": 0, - "observedNavigationStartTs": 243835678, - "observedFirstPaint": 870, - "observedFirstPaintTs": 244705610, - "observedFirstContentfulPaint": 870, - "observedFirstContentfulPaintTs": 244705610, - "observedFirstContentfulPaintAllFrames": 870, - "observedFirstContentfulPaintAllFramesTs": 244705610, - "observedFirstMeaningfulPaint": 870, - "observedFirstMeaningfulPaintTs": 244705610, - "observedLargestContentfulPaint": 870, - "observedLargestContentfulPaintTs": 244705610, - "observedLargestContentfulPaintAllFrames": 870, - "observedLargestContentfulPaintAllFramesTs": 244705610, - "observedTraceEnd": 4511, - "observedTraceEndTs": 248347012, - "observedLoad": 1002, - "observedLoadTs": 244837866, - "observedDomContentLoaded": 993, - "observedDomContentLoadedTs": 244828985, + "observedNavigationStartTs": 246300995, + "observedFirstPaint": 872, + "observedFirstPaintTs": 247172682, + "observedFirstContentfulPaint": 872, + "observedFirstContentfulPaintTs": 247172682, + "observedFirstContentfulPaintAllFrames": 872, + "observedFirstContentfulPaintAllFramesTs": 247172682, + "observedFirstMeaningfulPaint": 872, + "observedFirstMeaningfulPaintTs": 247172682, + "observedLargestContentfulPaint": 872, + "observedLargestContentfulPaintTs": 247172682, + "observedLargestContentfulPaintAllFrames": 872, + "observedLargestContentfulPaintAllFramesTs": 247172682, + "observedTraceEnd": 4748, + "observedTraceEndTs": 251049110, + "observedLoad": 1016, + "observedLoadTs": 247317484, + "observedDomContentLoaded": 1009, + "observedDomContentLoadedTs": 247310029, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 871, - "observedFirstVisualChangeTs": 244706678, - "observedLastVisualChange": 1471, - "observedLastVisualChangeTs": 245306678, - "observedSpeedIndex": 877, - "observedSpeedIndexTs": 244712878 + "observedFirstVisualChange": 872, + "observedFirstVisualChangeTs": 247172995, + "observedLastVisualChange": 1472, + "observedLastVisualChangeTs": 247772995, + "observedSpeedIndex": 878, + "observedSpeedIndexTs": 247179446 }, { "lcpInvalidated": false @@ -172691,23 +174340,23 @@ "type": "debugdata", "items": [ { - "numRequests": 33, - "numScripts": 13, + "numRequests": 35, + "numScripts": 14, "numStylesheets": 1, "numFonts": 10, - "numTasks": 382, + "numTasks": 394, "numTasksOver10ms": 4, - "numTasksOver25ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.26700000000001, - "throughput": 12408739.672665752, - "maxRtt": 100.716, - "maxServerLatency": 294.983, - "totalByteWeight": 1096596, - "totalTaskTime": 216.78399999999957, - "mainDocumentTransferSize": 60426 + "rtt": 99.281, + "throughput": 15081687.476869863, + "maxRtt": 100.977, + "maxServerLatency": 285.78599999999994, + "totalByteWeight": 1100375, + "totalTaskTime": 222.0759999999994, + "mainDocumentTransferSize": 60629 } ] } @@ -172819,7 +174468,7 @@ "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.9908409118652344, + "lighthouse_performance": 0.9901201248168945, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -172845,7 +174494,7 @@ "http": { "url": "https://kelrisks.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:05:52 GMT", + "end_time": "Sun, 24 Dec 2023 05:48:49 GMT", "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -172855,15 +174504,15 @@ "Content-Language": "en-US", "Content-Length": "3116", "Content-Type": "text/html;charset=UTF-8", - "Date": "Sun, 17 Dec 2023 06:05:51 GMT", + "Date": "Sun, 24 Dec 2023 05:48:48 GMT", "Last-Modified": "Thu, 01 Jan 1970 00:00:01 GMT", - "Set-Cookie": "TS01fba31b=01ce77d600470e122816c7dcfe8db36d4528e5cc02aca4f260abaca420d5c3d3054d7e147ff99cb3fd62769af984d377f72ab805e8; Path=/; Domain=.errial.georisques.gouv.fr", + "Set-Cookie": "TS01fba31b=01ce77d60008204806873b294d7d2a6a912f9549aabfa3e93dbd1a1b69691acfdd7d4186fed32597f1decae8000378314d6102dda8; Path=/; Domain=.errial.georisques.gouv.fr", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "Vary": "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" }, - "scan_id": 45543329, + "scan_id": 45758512, "score": 25, - "start_time": "Sun, 17 Dec 2023 06:05:47 GMT", + "start_time": "Sun, 24 Dec 2023 05:48:44 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -173064,15 +174713,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T06:20:11Z", - "next_check_at": "2023-12-17T06:25:10Z", + "last_check_at": "2023-12-24T06:03:27Z", + "next_check_at": "2023-12-24T06:08:25Z", "mute_until": null, "favicon_url": "https://errial.georisques.gouv.fr/images/favicons/favicon-32x32.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:50:22Z", + "tested_at": "2023-12-24T05:23:36Z", "expires_at": "2024-03-13T06:39:06Z", "valid": true, "error": null @@ -173080,12 +174729,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 387, - "namelookup": 287, - "connection": 115, - "handshake": 230, - "response": 120, - "total": 1139 + "redirect": 488, + "namelookup": 487, + "connection": 144, + "handshake": 294, + "response": 153, + "total": 1565 } }, "uptimeGrade": "A", @@ -173323,7 +174972,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -173463,7 +175112,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -173666,7 +175315,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702793257" + "finding": "1703397072" }, { "id": "HSTS", @@ -174564,7 +176213,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -174767,7 +176416,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702793316" + "finding": "1703397170" }, { "id": "HSTS", @@ -175665,7 +177314,7 @@ "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -175868,7 +177517,7 @@ "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702793373" + "finding": "1703397267" }, { "id": "HSTS", @@ -176766,7 +178415,7 @@ "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -176969,7 +178618,7 @@ "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702793430" + "finding": "1703397363" }, { "id": "HSTS", @@ -177525,7 +179174,7 @@ "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "233" + "finding": "392" } ], "thirdparties": { @@ -177568,7 +179217,7 @@ }, { "type": "unknown", - "url": "https://wwwstats.brgm.fr/piwik.php?action_name=Evaluez%20simplement%20et%20rapidement%20les%20risques%20de%20votre%20bien%20-%20errial.georisques.gouv.fr&idsite=266&rec=1&r=921805&h=6&m=6&s=25&url=https%3A%2F%2Ferrial.georisques.gouv.fr%2F&_id=a27febe9f154aa81&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=6ldpvH&pf_net=421&pf_srv=111&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" + "url": "https://wwwstats.brgm.fr/piwik.php?action_name=Evaluez%20simplement%20et%20rapidement%20les%20risques%20de%20votre%20bien%20-%20errial.georisques.gouv.fr&idsite=266&rec=1&r=146335&h=5&m=49&s=23&url=https%3A%2F%2Ferrial.georisques.gouv.fr%2F&_id=c8899f01658da0a5&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=MmmLrp&pf_net=617&pf_srv=160&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" }, { "type": "google fonts", @@ -177609,7 +179258,7 @@ "value": "1", "domain": "errial.georisques.gouv.fr", "path": "/", - "expires": 1702794985, + "expires": 1703398763, "size": 17, "httpOnly": false, "secure": false, @@ -177621,10 +179270,10 @@ }, { "name": "_pk_id.266.97bc", - "value": "a27febe9f154aa81.1702793185.", + "value": "c8899f01658da0a5.1703396963.", "domain": "errial.georisques.gouv.fr", "path": "/", - "expires": 1736748385, + "expires": 1737352163, "size": 43, "httpOnly": false, "secure": false, @@ -177636,7 +179285,7 @@ }, { "name": "TS01fba31b", - "value": "01ce77d600bf13d803b6491d03e62c953e6772c5ad5d14d44f45caa665aaad101e133be28df37907d69eae262bcd0ad654f1ff4deb", + "value": "01ce77d600ff5680bbc97087869f8b6c72b7ecb808e35d3e85b0106525ed1446e800076eda77946886e3095a4e767694929cde4adc", "domain": ".errial.georisques.gouv.fr", "path": "/", "expires": -1, @@ -177655,16 +179304,16 @@ "content-language": "en-US", "content-length": "3116", "content-type": "text/html;charset=UTF-8", - "date": "Sun, 17 Dec 2023 06:06:24 GMT", + "date": "Sun, 24 Dec 2023 05:49:20 GMT", "last-modified": "Thu, 01 Jan 1970 00:00:01 GMT", - "set-cookie": "TS01fba31b=01ce77d600bf13d803b6491d03e62c953e6772c5ad5d14d44f45caa665aaad101e133be28df37907d69eae262bcd0ad654f1ff4deb; Path=/; Domain=.errial.georisques.gouv.fr", + "set-cookie": "TS01fba31b=01ce77d600ff5680bbc97087869f8b6c72b7ecb808e35d3e85b0106525ed1446e800076eda77946886e3095a4e767694929cde4adc; Path=/; Domain=.errial.georisques.gouv.fr", "strict-transport-security": "max-age=15724800; includeSubDomains", "vary": "Origin\nAccess-Control-Request-Method\nAccess-Control-Request-Headers" }, "endpoints": [ { "hostname": "kelrisks.beta.gouv.fr", - "ip": "109.232.233.130", + "ip": "148.253.75.120", "geoip": { "continent": { "code": "EU", @@ -177720,19 +179369,19 @@ }, { "hostname": "cdn.polyfill.io", - "ip": "146.75.77.26", + "ip": "151.101.201.26", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 5393015, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Santa Clara", + "en": "Santa Clara", + "es": "Santa Clara", + "fr": "Santa Clara", + "ja": "サンタクララ", + "pt-BR": "Santa Clara", + "ru": "Санта-Клара", + "zh-CN": "圣克拉拉" } }, "continent": { @@ -177765,13 +179414,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8719, - "longitude": -87.6589, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 37.3931, + "longitude": -121.962, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "60607" + "code": "95054" }, "registered_country": { "geoname_id": 6252001, @@ -177789,16 +179438,17 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -177806,8 +179456,14 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.202", + "ip": "142.250.72.202", "geoip": { + "city": { + "geoname_id": 5131638, + "names": { + "en": "Plainview" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -177838,9 +179494,13 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "latitude": 40.7746, + "longitude": -73.4761, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "11803" }, "registered_country": { "geoname_id": 6252001, @@ -177855,7 +179515,23 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5128638, + "iso_code": "NY", + "names": { + "de": "New York", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク州", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк", + "zh-CN": "纽约州" + } + } + ] } }, { @@ -177955,7 +179631,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.190.3", + "ip": "142.250.189.195", "geoip": { "continent": { "code": "NA", @@ -178021,7 +179697,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:04:55", + "@generated": "Sun, 24 Dec 2023 05:47:50", "site": [ { "@name": "https://kelrisks.beta.gouv.fr", @@ -178161,73 +179837,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "kelrisks.beta.gouv.fr.", "matched-at": "kelrisks.beta.gouv.fr", - "extracted-results": [ - "betagouv-redirections.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T06:11:59.201604296Z", + "timestamp": "2023-12-24T05:57:53.863160553Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "kelrisks.beta.gouv.fr.", "matched-at": "kelrisks.beta.gouv.fr", - "timestamp": "2023-12-17T06:11:59.257853936Z", + "extracted-results": [ + "betagouv-redirections.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T05:57:54.01936752Z", "matcher-status": true }, { @@ -178266,7 +179942,7 @@ "host": "https://kelrisks.beta.gouv.fr", "matched-at": "https://kelrisks.beta.gouv.fr/", "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:13:16.274184544Z", + "timestamp": "2023-12-24T05:59:47.056856253Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: kelrisks.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://kelrisks.beta.gouv.fr/'", "matcher-status": true }, @@ -178281,7 +179957,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -178296,7 +179973,7 @@ "Let's Encrypt" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:18:58.977241577Z", + "timestamp": "2023-12-24T06:05:39.837682736Z", "matcher-status": true }, { @@ -178310,7 +179987,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -178325,7 +180003,7 @@ "kelrisks.beta.gouv.fr" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:18:58.977349769Z", + "timestamp": "2023-12-24T06:05:39.837789345Z", "matcher-status": true }, { @@ -178340,7 +180018,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -178355,7 +180034,7 @@ "tls12" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:19:00.731804426Z", + "timestamp": "2023-12-24T06:05:42.043051329Z", "matcher-status": true }, { @@ -178370,7 +180049,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -178385,7 +180065,7 @@ "tls13" ], "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:19:00.944041351Z", + "timestamp": "2023-12-24T06:05:42.356799282Z", "matcher-status": true } ], @@ -178393,7 +180073,7 @@ { "requestedUrl": "https://kelrisks.beta.gouv.fr/", "finalUrl": "https://errial.georisques.gouv.fr/", - "fetchTime": "2023-12-17T06:05:09.287Z", + "fetchTime": "2023-12-24T05:48:04.656Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://kelrisks.beta.gouv.fr/) was redirected to https://errial.georisques.gouv.fr/. Try testing the second URL directly." ], @@ -178406,7 +180086,7 @@ "snapshot" ], "id": "performance", - "score": 0.9567533493041992 + "score": 0.9567449569702149 }, "accessibility": { "title": "Accessibility", @@ -178458,53 +180138,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9357, + "numericValue": 10144, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8899, - "firstMeaningfulPaint": 8899, - "largestContentfulPaint": 9275, - "interactive": 9357, - "speedIndex": 9716, - "totalBlockingTime": 61, - "maxPotentialFID": 94, + "firstContentfulPaint": 9304, + "firstMeaningfulPaint": 9454, + "largestContentfulPaint": 9905, + "interactive": 10144, + "speedIndex": 11970, + "totalBlockingTime": 66, + "maxPotentialFID": 182, "cumulativeLayoutShift": 0.03179244465298123, "cumulativeLayoutShiftMainFrame": 0.03179244465298123, "totalCumulativeLayoutShift": 0.03179244465298123, "observedTimeOrigin": 0, - "observedTimeOriginTs": 219132843, + "observedTimeOriginTs": 340065687, "observedNavigationStart": 0, - "observedNavigationStartTs": 219132843, - "observedFirstPaint": 1201, - "observedFirstPaintTs": 220333436, - "observedFirstContentfulPaint": 2635, - "observedFirstContentfulPaintTs": 221767458, - "observedFirstContentfulPaintAllFrames": 2635, - "observedFirstContentfulPaintAllFramesTs": 221767458, - "observedFirstMeaningfulPaint": 2635, - "observedFirstMeaningfulPaintTs": 221767458, - "observedLargestContentfulPaint": 2635, - "observedLargestContentfulPaintTs": 221767458, - "observedLargestContentfulPaintAllFrames": 2635, - "observedLargestContentfulPaintAllFramesTs": 221767458, - "observedTraceEnd": 5251, - "observedTraceEndTs": 224384072, - "observedLoad": 2941, - "observedLoadTs": 222073929, - "observedDomContentLoaded": 2635, - "observedDomContentLoadedTs": 221768258, + "observedNavigationStartTs": 340065687, + "observedFirstPaint": 1750, + "observedFirstPaintTs": 341815238, + "observedFirstContentfulPaint": 3981, + "observedFirstContentfulPaintTs": 344046262, + "observedFirstContentfulPaintAllFrames": 3981, + "observedFirstContentfulPaintAllFramesTs": 344046262, + "observedFirstMeaningfulPaint": 3981, + "observedFirstMeaningfulPaintTs": 344046262, + "observedLargestContentfulPaint": 3981, + "observedLargestContentfulPaintTs": 344046262, + "observedLargestContentfulPaintAllFrames": 3981, + "observedLargestContentfulPaintAllFramesTs": 344046262, + "observedTraceEnd": 6744, + "observedTraceEndTs": 346809521, + "observedLoad": 4435, + "observedLoadTs": 344500433, + "observedDomContentLoaded": 3981, + "observedDomContentLoadedTs": 344046380, "observedCumulativeLayoutShift": 0.03179244465298123, "observedCumulativeLayoutShiftMainFrame": 0.03179244465298123, "observedTotalCumulativeLayoutShift": 0.03179244465298123, - "observedFirstVisualChange": 2641, - "observedFirstVisualChangeTs": 221773843, - "observedLastVisualChange": 3241, - "observedLastVisualChangeTs": 222373843, - "observedSpeedIndex": 2706, - "observedSpeedIndexTs": 221838959 + "observedFirstVisualChange": 3987, + "observedFirstVisualChangeTs": 344052687, + "observedLastVisualChange": 4603, + "observedLastVisualChangeTs": 344668687, + "observedSpeedIndex": 4067, + "observedSpeedIndexTs": 344132734 }, { "lcpInvalidated": false @@ -178526,18 +180206,18 @@ "numScripts": 4, "numStylesheets": 8, "numFonts": 2, - "numTasks": 564, - "numTasksOver10ms": 3, + "numTasks": 598, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.8319999999999999, - "throughput": 6168905.272272573, - "maxRtt": 103.254, - "maxServerLatency": 12.560999999999998, - "totalByteWeight": 1275313, - "totalTaskTime": 207.4659999999991, + "rtt": 1.888, + "throughput": 3901480.9069925756, + "maxRtt": 153.08099999999996, + "maxServerLatency": 18.241999999999997, + "totalByteWeight": 1275357, + "totalTaskTime": 226.4329999999991, "mainDocumentTransferSize": 3675 } ] @@ -178658,7 +180338,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.9567533493041992, + "lighthouse_performance": 0.9567449569702149, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", @@ -178687,7 +180367,7 @@ "http": { "url": "https://lemarche.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:14:45 GMT", + "end_time": "Sun, 24 Dec 2023 05:54:54 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -178696,18 +180376,18 @@ "Content-Length": "61732", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 06:14:43 GMT", + "Date": "Sun, 24 Dec 2023 05:54:52 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=v6x6JiXcJeF1WD6LlafKv1CjF5NvYGgn; expires=Sun, 15 Dec 2024 06:14:43 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HHV6K7RMR4D7P0YXAPRXHC46", + "Set-Cookie": "csrftoken=5Yy2nFEf4yySrva3utTuReW9ZupaDAH7; expires=Sun, 22 Dec 2024 05:54:52 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HJD67XRYEJH3R0NTAMSNDJ38", "Strict-Transport-Security": "max-age=30", "Vary": "Cookie, Origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45543672, + "scan_id": 45758761, "score": 50, - "start_time": "Sun, 17 Dec 2023 06:14:39 GMT", + "start_time": "Sun, 24 Dec 2023 05:54:48 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -178747,7 +180427,7 @@ "data": { "csrftoken": { "domain": "lemarche.inclusion.beta.gouv.fr", - "expires": 1734243284, + "expires": 1734846893, "httponly": true, "max-age": null, "path": "/", @@ -178916,15 +180596,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T06:35:01Z", - "next_check_at": "2023-12-17T06:39:59Z", + "last_check_at": "2023-12-24T06:14:52Z", + "next_check_at": "2023-12-24T06:19:50Z", "mute_until": null, "favicon_url": "https://lemarche.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T05:50:17Z", + "tested_at": "2023-12-24T05:45:04Z", "expires_at": "2024-02-21T16:15:26Z", "valid": true, "error": null @@ -178933,11 +180613,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 284, - "connection": 149, - "handshake": 156, - "response": 340, - "total": 929 + "namelookup": 227, + "connection": 113, + "handshake": 118, + "response": 310, + "total": 769 } }, "uptimeGrade": "A", @@ -178946,7 +180626,7 @@ "nmap": { "host": "lemarche.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "986", "open_ports": [ { "service": { @@ -178955,6 +180635,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", @@ -179402,7 +181089,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", @@ -179647,7 +181334,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702793769" + "finding": "1703397416" }, { "id": "HSTS_time", @@ -180242,70 +181929,70 @@ }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -180313,7 +182000,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -180321,7 +182008,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -180329,7 +182016,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -180337,7 +182024,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -180345,7 +182032,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -180353,581 +182040,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702793833" + "finding": "1703397519" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -180935,7 +182622,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -180944,7 +182631,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -180953,7 +182640,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -180962,7 +182649,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -180971,7 +182658,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -180979,7 +182666,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -180988,7 +182675,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -180997,7 +182684,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -181006,7 +182693,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -181015,14 +182702,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -181031,7 +182718,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -181040,7 +182727,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -181049,7 +182736,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -181058,7 +182745,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -181067,7 +182754,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -181076,7 +182763,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -181085,7 +182772,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -181094,7 +182781,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -181103,7 +182790,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -181112,392 +182799,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181505,7 +183192,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181513,7 +183200,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181521,7 +183208,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181529,7 +183216,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -181537,7 +183224,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -181545,581 +183232,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702793889" + "finding": "1703397618" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -182127,7 +183814,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -182136,7 +183823,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -182145,7 +183832,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -182154,7 +183841,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -182163,7 +183850,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -182171,7 +183858,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -182180,7 +183867,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -182189,7 +183876,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -182198,7 +183885,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -182207,14 +183894,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -182223,7 +183910,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -182232,7 +183919,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -182241,7 +183928,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -182250,7 +183937,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182259,7 +183946,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182268,7 +183955,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -182277,7 +183964,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -182286,7 +183973,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -182295,7 +183982,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -182304,322 +183991,1514 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS max-age is too short" + }, + { + "id": "service", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" + }, + { + "id": "cert_serialNumberLen", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "cert", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "59 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "2023-11-23 16:15" + }, + { + "id": "cert_notAfter", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "2024-02-21 16:15" + }, + { + "id": "cert_extlifeSpan", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "4" + }, + { + "id": "certs_list_ordering_problem", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "LOW", + "finding": "yes" + }, + { + "id": "cert_caIssuers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "2023-11-23 16:15" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "2024-02-21 16:15" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" + }, + { + "id": "intermediate_cert <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "1703397714" + }, + { + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "LOGJAM", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" @@ -182978,7 +185857,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", @@ -183216,14 +186095,14 @@ "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702793943" + "finding": "1703397818" }, { "id": "HSTS_time", @@ -183818,70 +186697,70 @@ }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183889,7 +186768,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183897,7 +186776,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183905,7 +186784,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -183913,7 +186792,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -183921,7 +186800,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -183929,581 +186808,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702793998" + "finding": "1703397916" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -184511,7 +187390,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -184520,7 +187399,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -184529,7 +187408,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -184538,7 +187417,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -184547,7 +187426,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -184555,7 +187434,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -184564,7 +187443,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -184573,7 +187452,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -184582,7 +187461,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -184591,14 +187470,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -184607,7 +187486,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -184616,7 +187495,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -184625,7 +187504,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -184634,7 +187513,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -184643,7 +187522,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -184652,7 +187531,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -184661,7 +187540,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -184670,7 +187549,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -184679,7 +187558,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -184688,392 +187567,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -185081,7 +187960,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -185089,7 +187968,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -185097,7 +187976,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -185105,7 +187984,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -185113,7 +187992,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -185121,581 +188000,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBLnI+5EFayg3VS+lcahLPPxHMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjMxNjE1MjdaFw0yNDAyMjExNjE1MjZaMCoxKDAmBgNVBAMTH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzKzWaujki39uYhcc4Yh90l3qDD1JZC08aRsBaxQAIJu8DdjWxyniOSC/Vdftf3+2raujoqSlwfR2OzcA+Iz5CuBWWhbeRxtbJ/oEwQuCXEip8/cvz7s6Oc17EJ1XEDp4N+3yc4oOBm/pYHfVYqlj1uTX7dKFUFocGNYci8Tz74tN21P/ifOZpQPp6hHKVqKvEuYqvUVd3iUnbQIGMGTN9G16MGAsY2C55cmmAn8kNVPtgxByaiN7OmD5hkWhmueyxQPnBTY8RxAC71NhJQ+NXBQtZbL0Qm503bweyC7pwOv4Vq7Lhaa4SxqXrmHeBxFAfHtnv2p5H346CM3tX1TZAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS2rJFxEIre6IFQYb8qaEHKrrWSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv9Le7KAAAEAwBIMEYCIQCukQ5xtzqdlJMh1hLe13RTT+6QgzceM1G5mHQvmTgTwwIhANQtXf/7h1zzlvyD3mt1vba6MNCy3mfGUi33QWvymevbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL/S3utgAABAMARzBFAiBtcheU4XfjkcXbGoKS1pLBwZMbLJfqAEJHQd1rsB1bOAIhAL8rKCSbxknlo/NClpAMtRiVSU/HzvpSaqUdYt8z6gu8MA0GCSqGSIb3DQEBCwUAA4IBAQCJSe7k62nIXrIciWv/AJtT8zhmYm4lV2C5C0e8LAMBmRbm18/XZfBlcE9aPcdb2FBZGn/CtEjlGqhgG/9Pi2I28FEtHmn6sJpF3sF+wOMm29/XzdD9Cv/NtwnrkkQ5wreWsVNKEYlWue12ILEBKt9v5WWDaZ2AbuUg4FCa+QClkKDFOtaU2BzT686Gj+BLTkDjwRycjlZA5urVhgAIESNj7tyOfkoQ04FLIQW0QPisC+7q/bT/i7x4h8QwWWhgGFlET27y/uidMFZDuLneQflZMVY7pzXxfjS9kGOtIW4OT6XVvsHv9XUiWr98AZiMu3hTzFAmrFk41b/xn4KKom9U\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBLnI+5EFayg3VS+lcahLPPxHMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjMxNjE1MjdaFw0yNDAyMjExNjE1MjZaMCoxKDAmBgNVBAMTH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzKzWaujki39uYhcc4Yh90l3qDD1JZC08aRsBaxQAIJu8DdjWxyniOSC/Vdftf3+2raujoqSlwfR2OzcA+Iz5CuBWWhbeRxtbJ/oEwQuCXEip8/cvz7s6Oc17EJ1XEDp4N+3yc4oOBm/pYHfVYqlj1uTX7dKFUFocGNYci8Tz74tN21P/ifOZpQPp6hHKVqKvEuYqvUVd3iUnbQIGMGTN9G16MGAsY2C55cmmAn8kNVPtgxByaiN7OmD5hkWhmueyxQPnBTY8RxAC71NhJQ+NXBQtZbL0Qm503bweyC7pwOv4Vq7Lhaa4SxqXrmHeBxFAfHtnv2p5H346CM3tX1TZAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS2rJFxEIre6IFQYb8qaEHKrrWSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv9Le7KAAAEAwBIMEYCIQCukQ5xtzqdlJMh1hLe13RTT+6QgzceM1G5mHQvmTgTwwIhANQtXf/7h1zzlvyD3mt1vba6MNCy3mfGUi33QWvymevbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL/S3utgAABAMARzBFAiBtcheU4XfjkcXbGoKS1pLBwZMbLJfqAEJHQd1rsB1bOAIhAL8rKCSbxknlo/NClpAMtRiVSU/HzvpSaqUdYt8z6gu8MA0GCSqGSIb3DQEBCwUAA4IBAQCJSe7k62nIXrIciWv/AJtT8zhmYm4lV2C5C0e8LAMBmRbm18/XZfBlcE9aPcdb2FBZGn/CtEjlGqhgG/9Pi2I28FEtHmn6sJpF3sF+wOMm29/XzdD9Cv/NtwnrkkQ5wreWsVNKEYlWue12ILEBKt9v5WWDaZ2AbuUg4FCa+QClkKDFOtaU2BzT686Gj+BLTkDjwRycjlZA5urVhgAIESNj7tyOfkoQ04FLIQW0QPisC+7q/bT/i7x4h8QwWWhgGFlET27y/uidMFZDuLneQflZMVY7pzXxfjS9kGOtIW4OT6XVvsHv9XUiWr98AZiMu3hTzFAmrFk41b/xn4KKom9U\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702794063" + "finding": "1703398015" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -185703,7 +188582,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -185712,7 +188591,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -185721,7 +188600,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -185730,7 +188609,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -185739,7 +188618,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -185747,7 +188626,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -185756,7 +188635,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -185765,7 +188644,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -185774,7 +188653,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -185783,14 +188662,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -185799,7 +188678,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -185808,7 +188687,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -185817,7 +188696,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -185826,7 +188705,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -185835,7 +188714,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -185844,7 +188723,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -185853,7 +188732,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -185862,7 +188741,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -185871,7 +188750,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -185880,392 +188759,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -186273,7 +189152,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -186281,7 +189160,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -186289,7 +189168,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -186297,7 +189176,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -186305,7 +189184,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -186313,581 +189192,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702794118" + "finding": "1703398113" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -186895,7 +189774,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -186904,7 +189783,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -186913,7 +189792,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -186922,7 +189801,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -186931,7 +189810,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -186939,7 +189818,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -186948,7 +189827,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -186957,7 +189836,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -186966,7 +189845,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -186975,14 +189854,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -186991,7 +189870,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -187000,7 +189879,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -187009,7 +189888,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -187018,7 +189897,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -187027,7 +189906,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -187036,7 +189915,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -187045,7 +189924,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -187054,7 +189933,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -187063,7 +189942,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -187072,392 +189951,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187465,7 +190344,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187473,7 +190352,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187481,7 +190360,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187489,7 +190368,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -187497,7 +190376,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -187505,581 +190384,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702794173" + "finding": "1703398211" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -188087,7 +190966,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -188096,7 +190975,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -188105,7 +190984,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -188114,7 +190993,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -188123,7 +191002,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -188131,7 +191010,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -188140,7 +191019,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -188149,7 +191028,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -188158,7 +191037,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -188167,14 +191046,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -188183,7 +191062,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -188192,7 +191071,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -188201,7 +191080,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -188210,7 +191089,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -188219,7 +191098,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -188228,7 +191107,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -188237,7 +191116,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -188246,7 +191125,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -188255,7 +191134,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -188264,1927 +191143,741 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { - "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "supported" - }, - { - "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" - }, - { - "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "lemarche.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", + "id": "scanTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "lemarche.inclusion.beta.gouv.fr" + "finding": "899" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Bouygues_logo.svg.height-80.png?Signature=gNUj2Dm0TtIsNlmzpDhaHI6vI2U%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_SNCF_2011.svg.height-80.png?Signature=%2BsGN44zGYhQbYdFIJp0sRsULpm4%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo-groupe-la-poste-2021.height-80.png?Signature=bsSfV36P4RAwNQWu3d9%2FULuG6%2F8%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1280px-Logo_Vinci.svg.height-80.png?Signature=Z%2BMp%2Bvn0%2FlMF94lp8rvmWd84PD0%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Suez_2016.height-80.png?Signature=ox%2BlVtQUDsi2fi5eUrqSHJv%2BJxM%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/LOGO-AFPA-VERT-PNG.height-80.png?Signature=daExIFu4Lj26lTyzSTbjYxg%2Bm7Y%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Covea.svg.height-80.png?Signature=oyHBIN2kDpnLvNEkGQjxCl3z3tg%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1200px-Engie_logo.svg.height-80.png?Signature=7sFwB7Gd5Ifhn7YntCG8UV1t9zA%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/search-line_1.2e16d0ba.fill-150x150.png?Signature=S1gyZkmwtMxLl0FiOyqSSjXf7gs%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/reply-all-line_1.2e16d0ba.fill-150x150.png?Signature=bxb4%2FNNmk%2B5f4hROHQKHrDRLIng%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/git-repository-private-line.2e16d0ba.fill-150x150.png?Signature=4QFfp%2Fl74cdLug%2Bi3ObCvRsbMjQ%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/pie-chart-line.2e16d0ba.fill-150x150.png?Signature=KWnDoQ%2BLtaXURSLk5Hk2Q9POD70%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/ruler-line.2e16d0ba.fill-150x150.png?Signature=T6xKUyeCEUe%2BMBUh4flfB%2BCmOXI%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/shape-line.2e16d0ba.fill-150x150.png?Signature=8kREqKLoqmjOAe5m51Oe%2FTh%2BLKQ%3D&Expires=1703400924&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Covered+By+Your+Grace&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + } + ], + "cookies": [ + { + "name": "csrftoken", + "value": "mb9xADMyZu7JQKEjUSr4L6gmRVT3Eo7g", + "domain": "lemarche.inclusion.beta.gouv.fr", + "path": "/", + "expires": 1734846924.298692, + "size": 41, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-length": "61754", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 24 Dec 2023 05:55:24 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=mb9xADMyZu7JQKEjUSr4L6gmRVT3Eo7g; expires=Sun, 22 Dec 2024 05:55:24 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HJD68X37RE6F24JWM0N0WNJN", + "strict-transport-security": "max-age=30", + "vary": "Cookie, Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" }, - { - "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "66 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2023-11-23 16:15" - }, - { - "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-02-21 16:15" - }, - { - "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "4" - }, - { - "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "yes" - }, - { - "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2023-11-23 16:15" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-02-21 16:15" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" - }, - { - "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1702794228" - }, - { - "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "MEDIUM", - "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS max-age is too short" - }, - { - "id": "scanTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "516" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Bouygues_logo.svg.height-80.png?Signature=ihlRotcECrHOvK4Ff3c2pGh56jg%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_SNCF_2011.svg.height-80.png?Signature=M%2FNNFFPxxvvGZ0HbCdjHLPrpw3o%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo-groupe-la-poste-2021.height-80.png?Signature=mAbK0Z1CP8D8wDGcykMX4KiXj2o%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1280px-Logo_Vinci.svg.height-80.png?Signature=vj201J7SDmZeH62UJLjeYYTKw%2BE%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Suez_2016.height-80.png?Signature=y3YEuFp4INq60TsIdSn%2Bgy8iABw%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/LOGO-AFPA-VERT-PNG.height-80.png?Signature=8vBJRLK2IhsjQQvGsCDUv%2FO0r78%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Covea.svg.height-80.png?Signature=fPaFWlcmB0gHcw8vJUdF9siRsVo%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1200px-Engie_logo.svg.height-80.png?Signature=WVywJzLhTlQA6SorUzncpYAAX%2Fc%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/search-line_1.2e16d0ba.fill-150x150.png?Signature=%2BLNXAqj3kQZ6q73Dxh761MrXxVw%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/reply-all-line_1.2e16d0ba.fill-150x150.png?Signature=D4Tjod%2FWLZHlcAkX%2BAm3PQ0fpmA%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/git-repository-private-line.2e16d0ba.fill-150x150.png?Signature=rMEwPYdfRHkKTkVrtnKYxh%2B27oY%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/pie-chart-line.2e16d0ba.fill-150x150.png?Signature=9aqc%2BHN%2FobgC8SG8PZiLWwmGkN4%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/ruler-line.2e16d0ba.fill-150x150.png?Signature=9yseX3KzsaeCpELP0%2Fmio2mQ%2BUU%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/shape-line.2e16d0ba.fill-150x150.png?Signature=mmKBLLDiF83WWGLmzSQhlSGWHok%3D&Expires=1702797314&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Covered+By+Your+Grace&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - } - ], - "cookies": [ - { - "name": "csrftoken", - "value": "BJ8TWFs9HVQqTexqHVU35BgVNxktRS7S", - "domain": "lemarche.inclusion.beta.gouv.fr", - "path": "/", - "expires": 1734243314.687202, - "size": 41, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-length": "61744", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 06:15:14 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=BJ8TWFs9HVQqTexqHVU35BgVNxktRS7S; expires=Sun, 15 Dec 2024 06:15:14 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HHV6M6NZBVFQGDXZ3RHF2MQE", - "strict-transport-security": "max-age=30", - "vary": "Cookie, Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" - }, - "endpoints": [ - { - "hostname": "lemarche.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "c4-prod.cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.148", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", - "geoip": { - "city": { - "geoname_id": 4781530, - "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20190" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "172.253.122.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://lemarche.inclusion.beta.gouv.fr/": { - "status": 200 - } + "endpoints": [ + { + "hostname": "lemarche.inclusion.beta.gouv.fr", + "ip": "185.42.117.109", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "c4-prod.cellar-c2.services.clever-cloud.com", + "ip": "91.208.207.148", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "146.75.93.229", + "geoip": { + "city": { + "geoname_id": 5368361, + "names": { + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "90012" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.250.189.10", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://lemarche.inclusion.beta.gouv.fr/": { + "status": 200 + } }, "technologies": [ { @@ -190476,37 +192169,37 @@ ] }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true @@ -190534,7 +192227,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:14:14", + "@generated": "Sun, 24 Dec 2023 05:54:22", "site": [ { "@name": "https://lemarche.inclusion.beta.gouv.fr", @@ -190709,20 +192402,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -190737,30 +192433,26 @@ "type": "dns", "host": "lemarche.inclusion.beta.gouv.fr.", "matched-at": "lemarche.inclusion.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T06:27:41.462478963Z", + "timestamp": "2023-12-24T06:09:23.402046284Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -190776,27 +192468,30 @@ "type": "dns", "host": "lemarche.inclusion.beta.gouv.fr.", "matched-at": "lemarche.inclusion.beta.gouv.fr", - "timestamp": "2023-12-17T06:27:41.464814507Z", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2023-12-24T06:09:23.402076885Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -190806,37 +192501,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "lemarche.inclusion.beta.gouv.fr", + "matched-at": "_dmarc.lemarche.inclusion.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=DMARC1; p=none\"" ], - "timestamp": "2023-12-17T06:27:41.534569074Z", + "timestamp": "2023-12-24T06:09:23.548441444Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -190852,29 +192544,30 @@ "host": "lemarche.inclusion.beta.gouv.fr.", "matched-at": "lemarche.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ~all\"" + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T06:27:41.537072861Z", + "timestamp": "2023-12-24T06:09:24.40330875Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -190884,17 +192577,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "_dmarc.lemarche.inclusion.beta.gouv.fr", + "matched-at": "lemarche.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T06:27:41.767385634Z", + "timestamp": "2023-12-24T06:09:24.40422113Z", "matcher-status": true }, { @@ -190933,7 +192626,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:27:59.60726949Z", + "timestamp": "2023-12-24T06:09:47.899352891Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -190972,7 +192665,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:27:59.620408998Z", + "timestamp": "2023-12-24T06:09:47.912523703Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191010,7 +192703,7 @@ "AWSAccessKeyId=C8DR0288Y589EJK17A22\"" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:41.849629798Z", + "timestamp": "2023-12-24T06:10:41.910786828Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191032,12 +192725,12 @@ "max-request": 1 } }, - "matcher-name": "alpine.js", + "matcher-name": "jsdelivr", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:42.146956388Z", + "timestamp": "2023-12-24T06:10:42.225500419Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191059,12 +192752,12 @@ "max-request": 1 } }, - "matcher-name": "jsdelivr", + "matcher-name": "alpine.js", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:42.146999789Z", + "timestamp": "2023-12-24T06:10:42.225537177Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191096,12 +192789,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859345628Z", + "timestamp": "2023-12-24T06:11:00.87260097Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191133,12 +192826,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859386364Z", + "timestamp": "2023-12-24T06:11:00.872651323Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191170,12 +192863,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859406451Z", + "timestamp": "2023-12-24T06:11:00.872667764Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191207,12 +192900,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859421219Z", + "timestamp": "2023-12-24T06:11:00.87268195Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191244,12 +192937,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859445774Z", + "timestamp": "2023-12-24T06:11:00.872803064Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191281,12 +192974,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:28:56.859459129Z", + "timestamp": "2023-12-24T06:11:00.872812833Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191328,7 +193021,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr/api/docs/", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:29:04.98418126Z", + "timestamp": "2023-12-24T06:11:12.898073483Z", "curl-command": "curl -X 'GET' -H 'Accept: text/html' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/api/docs/'", "matcher-status": true }, @@ -191367,7 +193060,7 @@ "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:29:20.108369864Z", + "timestamp": "2023-12-24T06:11:33.894893837Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: lemarche.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -191407,7 +193100,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr/", "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:29:32.497588976Z", + "timestamp": "2023-12-24T06:11:49.556047446Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: lemarche.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -191456,8 +193149,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T06:30:24.453753047Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T06:12:35.993883003Z", "matcher-status": true }, { @@ -191471,7 +193164,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -191486,7 +193180,7 @@ "Let's Encrypt" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:30:48.122757122Z", + "timestamp": "2023-12-24T06:12:45.677330332Z", "matcher-status": true }, { @@ -191500,7 +193194,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -191515,7 +193210,7 @@ "lemarche.inclusion.beta.gouv.fr" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:30:48.122962183Z", + "timestamp": "2023-12-24T06:12:45.677468237Z", "matcher-status": true }, { @@ -191530,7 +193225,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -191544,8 +193240,8 @@ "extracted-results": [ "tls12" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T06:32:05.625798346Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T06:12:47.814254026Z", "matcher-status": true }, { @@ -191560,7 +193256,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -191575,7 +193272,7 @@ "tls13" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T06:32:05.799397073Z", + "timestamp": "2023-12-24T06:12:48.460907976Z", "matcher-status": true } ], @@ -191583,7 +193280,7 @@ { "requestedUrl": "https://lemarche.inclusion.beta.gouv.fr/", "finalUrl": "https://lemarche.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T06:14:28.087Z", + "fetchTime": "2023-12-24T05:54:36.381Z", "runWarnings": [], "categories": { "performance": { @@ -191646,53 +193343,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3464, + "numericValue": 3957, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3464, - "firstMeaningfulPaint": 3464, - "largestContentfulPaint": 4144, - "interactive": 3464, - "speedIndex": 3464, + "firstContentfulPaint": 3957, + "firstMeaningfulPaint": 3957, + "largestContentfulPaint": 4666, + "interactive": 3957, + "speedIndex": 4206, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.003995482550726997, - "cumulativeLayoutShiftMainFrame": 0.003995482550726997, - "totalCumulativeLayoutShift": 0.003995482550726997, + "cumulativeLayoutShift": 0.003882065667046441, + "cumulativeLayoutShiftMainFrame": 0.003882065667046441, + "totalCumulativeLayoutShift": 0.003882065667046441, "observedTimeOrigin": 0, - "observedTimeOriginTs": 343389426, + "observedTimeOriginTs": 362599811, "observedNavigationStart": 0, - "observedNavigationStartTs": 343389426, - "observedFirstPaint": 381, - "observedFirstPaintTs": 343770211, - "observedFirstContentfulPaint": 381, - "observedFirstContentfulPaintTs": 343770211, - "observedFirstContentfulPaintAllFrames": 381, - "observedFirstContentfulPaintAllFramesTs": 343770211, - "observedFirstMeaningfulPaint": 381, - "observedFirstMeaningfulPaintTs": 343770211, - "observedLargestContentfulPaint": 381, - "observedLargestContentfulPaintTs": 343770211, - "observedLargestContentfulPaintAllFrames": 381, - "observedLargestContentfulPaintAllFramesTs": 343770211, - "observedTraceEnd": 3716, - "observedTraceEndTs": 347105553, - "observedLoad": 1410, - "observedLoadTs": 344799294, + "observedNavigationStartTs": 362599811, + "observedFirstPaint": 652, + "observedFirstPaintTs": 363252124, + "observedFirstContentfulPaint": 652, + "observedFirstContentfulPaintTs": 363252124, + "observedFirstContentfulPaintAllFrames": 652, + "observedFirstContentfulPaintAllFramesTs": 363252124, + "observedFirstMeaningfulPaint": 652, + "observedFirstMeaningfulPaintTs": 363252124, + "observedLargestContentfulPaint": 652, + "observedLargestContentfulPaintTs": 363252124, + "observedLargestContentfulPaintAllFrames": 652, + "observedLargestContentfulPaintAllFramesTs": 363252124, + "observedTraceEnd": 3913, + "observedTraceEndTs": 366513254, + "observedLoad": 1604, + "observedLoadTs": 364203478, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 343389955, - "observedCumulativeLayoutShift": 0.003995482550726997, - "observedCumulativeLayoutShiftMainFrame": 0.003995482550726997, - "observedTotalCumulativeLayoutShift": 0.003995482550726997, - "observedFirstVisualChange": 380, - "observedFirstVisualChangeTs": 343769426, - "observedLastVisualChange": 1480, - "observedLastVisualChangeTs": 344869426, - "observedSpeedIndex": 906, - "observedSpeedIndexTs": 344295561 + "observedDomContentLoadedTs": 362600341, + "observedCumulativeLayoutShift": 0.003882065667046441, + "observedCumulativeLayoutShiftMainFrame": 0.003882065667046441, + "observedTotalCumulativeLayoutShift": 0.003882065667046441, + "observedFirstVisualChange": 635, + "observedFirstVisualChangeTs": 363234811, + "observedLastVisualChange": 1835, + "observedLastVisualChangeTs": 364434811, + "observedSpeedIndex": 1214, + "observedSpeedIndexTs": 363814114 }, { "lcpInvalidated": false @@ -191714,19 +193411,19 @@ "numScripts": 16, "numStylesheets": 3, "numFonts": 3, - "numTasks": 13, + "numTasks": 16, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 11180896.540301826, - "maxRtt": 81.25800000000001, - "maxServerLatency": 16.17300000000003, - "totalByteWeight": 911517, - "totalTaskTime": 1.587, - "mainDocumentTransferSize": 62253 + "throughput": 6741871.975820589, + "maxRtt": 133.758, + "maxServerLatency": 27.211, + "totalByteWeight": 972542, + "totalTaskTime": 1.727, + "mainDocumentTransferSize": 62267 } ] } @@ -191821,7 +193518,7 @@ "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-21T16:15:00.000Z", @@ -191856,7 +193553,7 @@ "http": { "url": "https://ma-cantine.agriculture.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:26:50 GMT", + "end_time": "Sun, 24 Dec 2023 06:25:13 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -191867,18 +193564,18 @@ "Content-Security-Policy": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 06:26:49 GMT", + "Date": "Sun, 24 Dec 2023 06:25:12 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=GxPnixwdyv77HXSuEUGbvSZfy5XdorfA; expires=Sun, 15 Dec 2024 06:26:49 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "Sozu-Id": "01HHV79CR4NSEGFCT75ZZGB7CT", + "Set-Cookie": "csrftoken=4WJfmZaMCf11pS2p6Wv3rk0Wd0ucZ406; expires=Sun, 22 Dec 2024 06:25:12 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Sozu-Id": "01HJD7ZF8W67GVC26541XRKVDQ", "Transfer-Encoding": "chunked", "Vary": "Cookie, Accept-Language", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45543954, + "scan_id": 45759828, "score": 30, - "start_time": "Sun, 17 Dec 2023 06:26:46 GMT", + "start_time": "Sun, 24 Dec 2023 06:19:51 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -191892,13 +193589,13 @@ "data": { "connect-src": [ "entreprise.data.gouv.fr", - "plateforme.adresse.data.gouv.fr", - "stats.beta.gouv.fr", "ws:", - "client.crisp.chat", "'self'", + "api-adresse.data.gouv.fr", + "plateforme.adresse.data.gouv.fr", "wss://client.relay.crisp.chat", - "api-adresse.data.gouv.fr" + "client.crisp.chat", + "stats.beta.gouv.fr" ], "default-src": [ "'self'" @@ -191908,40 +193605,40 @@ "'self'" ], "frame-src": [ + "ma-cantine-metabase.cleverapps.io", "ma-cantine.crisp.help", - "'self'", - "ma-cantine-metabase.cleverapps.io" + "'self'" ], "img-src": [ - "cellar-c2.services.clever-cloud.com", + "data:", + "'self'", "jedonnemonavis.numerique.gouv.fr", - "image.crisp.chat", "stats.beta.gouv.fr", - "'unsafe-inline'", - "'self'", - "data:", "voxusagers.numerique.gouv.fr", - "www.w3.org" + "image.crisp.chat", + "'unsafe-inline'", + "www.w3.org", + "cellar-c2.services.clever-cloud.com" ], "media-src": [ - "'self'", - "cellar-c2.services.clever-cloud.com" + "cellar-c2.services.clever-cloud.com", + "'self'" ], "object-src": [ - "'self'", - "cellar-c2.services.clever-cloud.com" + "cellar-c2.services.clever-cloud.com", + "'self'" ], "script-src": [ "client.crisp.chat", "'unsafe-inline'", - "'self'", - "stats.beta.gouv.fr" + "stats.beta.gouv.fr", + "'self'" ], "style-src": [ + "netdna.bootstrapcdn.com", "client.crisp.chat", "'unsafe-inline'", - "'self'", - "netdna.bootstrapcdn.com" + "'self'" ] }, "http": true, @@ -191984,7 +193681,7 @@ "data": { "csrftoken": { "domain": "ma-cantine.agriculture.gouv.fr", - "expires": 1734244010, + "expires": 1734848713, "httponly": false, "max-age": null, "path": "/", @@ -192142,15 +193839,15 @@ "email:1740993840", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T06:45:06Z", - "next_check_at": "2023-12-17T06:50:04Z", + "last_check_at": "2023-12-24T06:43:16Z", + "next_check_at": "2023-12-24T06:48:15Z", "mute_until": null, "favicon_url": "https://ma-cantine.agriculture.gouv.fr/static/images/favicon-marianne.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T06:30:10Z", + "tested_at": "2023-12-24T06:03:27Z", "expires_at": "2024-08-03T23:59:59Z", "valid": true, "error": null @@ -192159,11 +193856,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 174, - "connection": 100, - "handshake": 105, - "response": 109, - "total": 488 + "namelookup": 194, + "connection": 146, + "handshake": 152, + "response": 155, + "total": 648 } }, "uptimeGrade": "A", @@ -192172,7 +193869,7 @@ "nmap": { "host": "ma-cantine.agriculture.gouv.fr", "protocol": "tcp", - "closed_ports": "986", + "closed_ports": "987", "open_ports": [ { "service": { @@ -192181,13 +193878,6 @@ "vulnerabilities": [] } }, - { - "service": { - "name": "tcpwrapped", - "id": "179", - "vulnerabilities": [] - } - }, { "service": { "name": "https", @@ -192283,70 +193973,70 @@ "testssl": [ { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192354,7 +194044,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192362,7 +194052,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192370,7 +194060,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -192378,7 +194068,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -192386,7 +194076,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -192394,616 +194084,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIEMjCCAxqgAwIBAgIBATANBgkqhkiG9w0BAQUFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA0MDEwMTAwMDAwMFoXDTI4MTIzMTIzNTk1OVowezELMAkGA1UEBhMCR0IxGzAZBgNVBAgMEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBwwHU2FsZm9yZDEaMBgGA1UECgwRQ29tb2RvIENBIExpbWl0ZWQxITAfBgNVBAMMGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL5AnfRu4ep2hxxNRUSOvkbIgwadwSr+GB+O5AL686tdUIoWMQuaBtDFcCLNSS1UY8y2bmhGC1Pqy0wkwLxyTurxFa70VJoSCsN6sjNg4tqJVfMiWPPe3M/vg4aijJRPn2jymJBGhCfHdr/jzDUsi14HZGWCwEiwqJH5YZ92IFCokcdmtet4YgNW8IoaE+oxox6gmf049vYnMlhvB/VruPsUK6+3qszWY19zjNoFmag4qMsXeDZRrOme9Hg6jc8P2ULimAyrL58OAd7vn5lJ8S3frHRNG5i1R8XlKdH5kBjHYpy+g8cmez6KJcfA3Z3mNWgQIJ2P2N7Sw4ScDV7oL8kCAwEAAaOBwDCBvTAdBgNVHQ4EFgQUoBEKIz6W8Qfs4q8p74Klf9AwpLQwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wewYDVR0fBHQwcjA4oDagNIYyaHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2aWNlcy5jcmwwNqA0oDKGMGh0dHA6Ly9jcmwuY29tb2RvLm5ldC9BQUFDZXJ0aWZpY2F0ZVNlcnZpY2VzLmNybDANBgkqhkiG9w0BAQUFAAOCAQEACFb8AvCb6P+k+tZ7xkSAzk/ExfYAWMymtrwUSWgEdujm7l3sAg9g1o1QGE8mTgHj5rCl7r+8dFRBv/38ErjHT1r0iWAFf2C3BUrz9vHCv8S5dIa2LX1rzNLzRt0vxuBqw8M0Ayx9lt1awg6nCpnBBYurDC/zXDrPbDdVCYfeU0BsWO/8tqtlbgT2G9w84FoVxp7Z8VlIMCFlA2zs6SFz7JsDoeA3raAVGI/6ugLOpyypEBMs1OUIJqsil2D4kF501KKaU73yqWjgom7C12yxow+ev+to51byrvLjKzg6CYG1a4XXvi3tPxq3smPi9WIsgtRqAEFQ8TmDn5XpNpaYbg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1702794551" + "finding": "1703399226" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -193011,7 +194701,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -193020,7 +194710,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -193029,7 +194719,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -193038,7 +194728,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -193047,7 +194737,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -193055,7 +194745,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -193064,7 +194754,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -193073,7 +194763,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -193082,7 +194772,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -193091,14 +194781,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -193107,7 +194797,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -193116,7 +194806,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -193125,7 +194815,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -193134,7 +194824,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -193143,7 +194833,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -193152,7 +194842,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -193161,7 +194851,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -193170,7 +194860,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -193179,7 +194869,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -193188,322 +194878,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -193862,7 +195552,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", @@ -194149,7 +195839,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702794659" + "finding": "1703399293" }, { "id": "HSTS", @@ -194737,70 +196427,70 @@ }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194808,7 +196498,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194816,7 +196506,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194824,7 +196514,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194832,7 +196522,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -194840,7 +196530,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -194848,616 +196538,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702794767" + "finding": "1703399373" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -195465,7 +197155,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -195474,7 +197164,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -195483,7 +197173,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -195492,7 +197182,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -195501,7 +197191,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -195509,7 +197199,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -195518,7 +197208,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -195527,7 +197217,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -195536,7 +197226,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -195545,14 +197235,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -195561,7 +197251,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -195570,7 +197260,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -195579,7 +197269,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -195588,7 +197278,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195597,7 +197287,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195606,7 +197296,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -195615,7 +197305,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -195624,7 +197314,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -195633,7 +197323,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -195642,392 +197332,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -196035,7 +197725,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -196043,7 +197733,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -196051,7 +197741,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -196059,7 +197749,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -196067,7 +197757,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -196075,616 +197765,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHvjCCBaagAwIBAgIQZX1AYszppCfP2yc/7Ah0njANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwODA0MDAwMDAwWhcNMjQwODAzMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAven0X2aMmTmuJeZnpDB36BPTYjma0ESkgNoz3C33ERfKGKdOUgOwtayLyboOXfHSTSIdq/rK3OMKR6lLEO3UexGQcHuyIXi2qRtNuXTQt3sPpdOeM/UKCqirD/Ij1DJ+QkpRBJiM451FGiFZrWxXbO3ztuqozrNTdLRyDMw3Gp3DDtuAuJ8lfQaD5oPhGdpa7B/M29SJ+lEBeS9kAI7qi3prteOK/XVU4vK8UwqkKwSPuGHbvtrwO1lQBwAsBwhL7y5+/KLenQf7T3KMSo/ZGGteMiL/DZ/B9SxPCVz0FU29huCyBBZLLqVtN5R2bZbamO9BLGCEGKwtcZ/zsckmzwIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFFNBho4oITde1R1/MlGkC13MbVWtMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYnAsNpwAAAEAwBHMEUCIQDH/ipj54Ty/ORXxXOm85kgm8tBPL1Wsxw3w6cf6sfx1AIgECQKqqXqqWc9gVBCFJ6dbRd63hEL+D63iZKyFQP44foAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYnAsNrCAAAEAwBHMEUCIQCeJ0kFef/7SX4UigwH1q7EyqeaK+LMbwz57oNB6h8BNgIgXjvtf40hNZNHCdicC4aRk4FgoYyedpvFtc2ZVJgJM/AAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYnAsNqaAAAEAwBHMEUCIBtNyobqByrsboYrEaRxcwXCRn+eSYS5zBNV3fIhei0IAiEA4eApMwDboZ4sc9j03GLL7mSI+e05/xztUjz/3zptysgwDQYJKoZIhvcNAQEMBQADggIBADFLloIoC+7rc2Sb4utMV6xrfskisXfkR1YkSpSgy3xezxfBbL70t5Z62iuHoXvtifsZ2xlEY3CAuMBJiDnCOuObfSmXSvUi0tWu854EHhD9QsbmRfLekX92hnX8Id6ZxiantGiLqHNKEGwepZ54y4eUZdTBD67y43J/IFpO2p2rK8hIQSe5dpIKlyN15fqNiZEuXbf4BF0ku+7oqINgBfVAK8x7TGoEjJzDyPavlDZciIYigHGYrg2EOD6qfXWOSp+E3vUG+Hpea6SxDcz/21h2xfLWf+yvZ7ltGz77bZx/Gw1uuZ52tx2iZ1iUgLXRUDf1LkXOBs1nyNnCTW5peV2fsBg891r9Rd+7hGWHg8LbXKJXvrW9/TNnMU/ZHxnKsiEZrZ51BfEQJMge49/7hinjAWOTOIVevFbIUPaASwbu63jq+NnScuY24NodD6YG89oTiv6wTKVDDt+9QwXr7PmT/Qsab7t5iCTlJTADIW0uA7D3p6e3BroNowmfXZRgSPoku34a2sv/+6gU1KXTiyd+9PY4ysa8xe+LNbSwxWm9N3aGH77SM8LZr1e/ixssMJkCwyNdlCdskp9xX8PXam9nSfFbkDAw8JQHGb6sAMkBrZnjewy7NBtbxesxk4VVcF2I3O6BWYL15jCDKWvRw9rJgtIUq9F9OQpJVI/yUJ3L\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702794880" + "finding": "1703399440" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -196692,7 +198382,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -196701,7 +198391,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -196710,7 +198400,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -196719,7 +198409,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -196728,7 +198418,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -196736,7 +198426,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -196745,7 +198435,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -196754,7 +198444,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -196763,7 +198453,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -196772,14 +198462,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -196788,7 +198478,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -196797,7 +198487,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -196806,7 +198496,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -196815,7 +198505,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -196824,7 +198514,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -196833,7 +198523,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -196842,7 +198532,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -196851,7 +198541,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -196860,7 +198550,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -196869,392 +198559,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197262,7 +198952,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197270,7 +198960,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197278,7 +198968,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197286,7 +198976,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197294,7 +198984,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197302,616 +198992,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHvjCCBaagAwIBAgIQZX1AYszppCfP2yc/7Ah0njANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwODA0MDAwMDAwWhcNMjQwODAzMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAven0X2aMmTmuJeZnpDB36BPTYjma0ESkgNoz3C33ERfKGKdOUgOwtayLyboOXfHSTSIdq/rK3OMKR6lLEO3UexGQcHuyIXi2qRtNuXTQt3sPpdOeM/UKCqirD/Ij1DJ+QkpRBJiM451FGiFZrWxXbO3ztuqozrNTdLRyDMw3Gp3DDtuAuJ8lfQaD5oPhGdpa7B/M29SJ+lEBeS9kAI7qi3prteOK/XVU4vK8UwqkKwSPuGHbvtrwO1lQBwAsBwhL7y5+/KLenQf7T3KMSo/ZGGteMiL/DZ/B9SxPCVz0FU29huCyBBZLLqVtN5R2bZbamO9BLGCEGKwtcZ/zsckmzwIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFFNBho4oITde1R1/MlGkC13MbVWtMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYnAsNpwAAAEAwBHMEUCIQDH/ipj54Ty/ORXxXOm85kgm8tBPL1Wsxw3w6cf6sfx1AIgECQKqqXqqWc9gVBCFJ6dbRd63hEL+D63iZKyFQP44foAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYnAsNrCAAAEAwBHMEUCIQCeJ0kFef/7SX4UigwH1q7EyqeaK+LMbwz57oNB6h8BNgIgXjvtf40hNZNHCdicC4aRk4FgoYyedpvFtc2ZVJgJM/AAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYnAsNqaAAAEAwBHMEUCIBtNyobqByrsboYrEaRxcwXCRn+eSYS5zBNV3fIhei0IAiEA4eApMwDboZ4sc9j03GLL7mSI+e05/xztUjz/3zptysgwDQYJKoZIhvcNAQEMBQADggIBADFLloIoC+7rc2Sb4utMV6xrfskisXfkR1YkSpSgy3xezxfBbL70t5Z62iuHoXvtifsZ2xlEY3CAuMBJiDnCOuObfSmXSvUi0tWu854EHhD9QsbmRfLekX92hnX8Id6ZxiantGiLqHNKEGwepZ54y4eUZdTBD67y43J/IFpO2p2rK8hIQSe5dpIKlyN15fqNiZEuXbf4BF0ku+7oqINgBfVAK8x7TGoEjJzDyPavlDZciIYigHGYrg2EOD6qfXWOSp+E3vUG+Hpea6SxDcz/21h2xfLWf+yvZ7ltGz77bZx/Gw1uuZ52tx2iZ1iUgLXRUDf1LkXOBs1nyNnCTW5peV2fsBg891r9Rd+7hGWHg8LbXKJXvrW9/TNnMU/ZHxnKsiEZrZ51BfEQJMge49/7hinjAWOTOIVevFbIUPaASwbu63jq+NnScuY24NodD6YG89oTiv6wTKVDDt+9QwXr7PmT/Qsab7t5iCTlJTADIW0uA7D3p6e3BroNowmfXZRgSPoku34a2sv/+6gU1KXTiyd+9PY4ysa8xe+LNbSwxWm9N3aGH77SM8LZr1e/ixssMJkCwyNdlCdskp9xX8PXam9nSfFbkDAw8JQHGb6sAMkBrZnjewy7NBtbxesxk4VVcF2I3O6BWYL15jCDKWvRw9rJgtIUq9F9OQpJVI/yUJ3L\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702794988" + "finding": "1703399508" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -197919,7 +199609,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -197928,7 +199618,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -197937,7 +199627,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -197946,7 +199636,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -197955,7 +199645,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -197963,7 +199653,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -197972,7 +199662,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -197981,7 +199671,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -197990,7 +199680,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -197999,14 +199689,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -198015,7 +199705,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -198024,7 +199714,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -198033,7 +199723,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -198042,7 +199732,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -198051,7 +199741,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -198060,7 +199750,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -198069,7 +199759,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -198078,7 +199768,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -198087,7 +199777,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -198096,392 +199786,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198489,7 +200179,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198497,7 +200187,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198505,7 +200195,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198513,7 +200203,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198521,7 +200211,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198529,616 +200219,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHvjCCBaagAwIBAgIQZX1AYszppCfP2yc/7Ah0njANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwODA0MDAwMDAwWhcNMjQwODAzMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAven0X2aMmTmuJeZnpDB36BPTYjma0ESkgNoz3C33ERfKGKdOUgOwtayLyboOXfHSTSIdq/rK3OMKR6lLEO3UexGQcHuyIXi2qRtNuXTQt3sPpdOeM/UKCqirD/Ij1DJ+QkpRBJiM451FGiFZrWxXbO3ztuqozrNTdLRyDMw3Gp3DDtuAuJ8lfQaD5oPhGdpa7B/M29SJ+lEBeS9kAI7qi3prteOK/XVU4vK8UwqkKwSPuGHbvtrwO1lQBwAsBwhL7y5+/KLenQf7T3KMSo/ZGGteMiL/DZ/B9SxPCVz0FU29huCyBBZLLqVtN5R2bZbamO9BLGCEGKwtcZ/zsckmzwIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFFNBho4oITde1R1/MlGkC13MbVWtMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYnAsNpwAAAEAwBHMEUCIQDH/ipj54Ty/ORXxXOm85kgm8tBPL1Wsxw3w6cf6sfx1AIgECQKqqXqqWc9gVBCFJ6dbRd63hEL+D63iZKyFQP44foAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYnAsNrCAAAEAwBHMEUCIQCeJ0kFef/7SX4UigwH1q7EyqeaK+LMbwz57oNB6h8BNgIgXjvtf40hNZNHCdicC4aRk4FgoYyedpvFtc2ZVJgJM/AAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYnAsNqaAAAEAwBHMEUCIBtNyobqByrsboYrEaRxcwXCRn+eSYS5zBNV3fIhei0IAiEA4eApMwDboZ4sc9j03GLL7mSI+e05/xztUjz/3zptysgwDQYJKoZIhvcNAQEMBQADggIBADFLloIoC+7rc2Sb4utMV6xrfskisXfkR1YkSpSgy3xezxfBbL70t5Z62iuHoXvtifsZ2xlEY3CAuMBJiDnCOuObfSmXSvUi0tWu854EHhD9QsbmRfLekX92hnX8Id6ZxiantGiLqHNKEGwepZ54y4eUZdTBD67y43J/IFpO2p2rK8hIQSe5dpIKlyN15fqNiZEuXbf4BF0ku+7oqINgBfVAK8x7TGoEjJzDyPavlDZciIYigHGYrg2EOD6qfXWOSp+E3vUG+Hpea6SxDcz/21h2xfLWf+yvZ7ltGz77bZx/Gw1uuZ52tx2iZ1iUgLXRUDf1LkXOBs1nyNnCTW5peV2fsBg891r9Rd+7hGWHg8LbXKJXvrW9/TNnMU/ZHxnKsiEZrZ51BfEQJMge49/7hinjAWOTOIVevFbIUPaASwbu63jq+NnScuY24NodD6YG89oTiv6wTKVDDt+9QwXr7PmT/Qsab7t5iCTlJTADIW0uA7D3p6e3BroNowmfXZRgSPoku34a2sv/+6gU1KXTiyd+9PY4ysa8xe+LNbSwxWm9N3aGH77SM8LZr1e/ixssMJkCwyNdlCdskp9xX8PXam9nSfFbkDAw8JQHGb6sAMkBrZnjewy7NBtbxesxk4VVcF2I3O6BWYL15jCDKWvRw9rJgtIUq9F9OQpJVI/yUJ3L\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702795096" + "finding": "1703399580" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -199146,7 +200836,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -199155,7 +200845,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -199164,7 +200854,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -199173,7 +200863,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -199182,7 +200872,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -199190,7 +200880,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -199199,7 +200889,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -199208,7 +200898,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -199217,7 +200907,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -199226,14 +200916,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -199242,7 +200932,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -199251,7 +200941,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -199260,7 +200950,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -199269,7 +200959,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199278,7 +200968,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199287,7 +200977,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -199296,7 +200986,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -199305,7 +200995,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -199314,7 +201004,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -199323,322 +201013,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -199997,7 +201687,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", @@ -200284,7 +201974,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702795205" + "finding": "1703399648" }, { "id": "HSTS", @@ -200872,70 +202562,70 @@ }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200943,7 +202633,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200951,7 +202641,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200959,7 +202649,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -200967,7 +202657,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -200975,7 +202665,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -200983,616 +202673,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702795314" + "finding": "1703399716" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -201600,7 +203290,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -201609,7 +203299,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -201618,7 +203308,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -201627,7 +203317,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -201636,7 +203326,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -201644,7 +203334,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -201653,7 +203343,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -201662,7 +203352,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -201671,7 +203361,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -201680,14 +203370,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -201696,7 +203386,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -201705,7 +203395,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -201714,7 +203404,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -201723,7 +203413,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -201732,7 +203422,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -201741,7 +203431,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -201750,7 +203440,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -201759,7 +203449,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -201768,7 +203458,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -201777,392 +203467,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202170,7 +203860,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202178,7 +203868,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202186,7 +203876,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -202194,7 +203884,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -202202,7 +203892,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -202210,616 +203900,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHvjCCBaagAwIBAgIQZX1AYszppCfP2yc/7Ah0njANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwODA0MDAwMDAwWhcNMjQwODAzMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAven0X2aMmTmuJeZnpDB36BPTYjma0ESkgNoz3C33ERfKGKdOUgOwtayLyboOXfHSTSIdq/rK3OMKR6lLEO3UexGQcHuyIXi2qRtNuXTQt3sPpdOeM/UKCqirD/Ij1DJ+QkpRBJiM451FGiFZrWxXbO3ztuqozrNTdLRyDMw3Gp3DDtuAuJ8lfQaD5oPhGdpa7B/M29SJ+lEBeS9kAI7qi3prteOK/XVU4vK8UwqkKwSPuGHbvtrwO1lQBwAsBwhL7y5+/KLenQf7T3KMSo/ZGGteMiL/DZ/B9SxPCVz0FU29huCyBBZLLqVtN5R2bZbamO9BLGCEGKwtcZ/zsckmzwIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFFNBho4oITde1R1/MlGkC13MbVWtMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYnAsNpwAAAEAwBHMEUCIQDH/ipj54Ty/ORXxXOm85kgm8tBPL1Wsxw3w6cf6sfx1AIgECQKqqXqqWc9gVBCFJ6dbRd63hEL+D63iZKyFQP44foAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYnAsNrCAAAEAwBHMEUCIQCeJ0kFef/7SX4UigwH1q7EyqeaK+LMbwz57oNB6h8BNgIgXjvtf40hNZNHCdicC4aRk4FgoYyedpvFtc2ZVJgJM/AAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYnAsNqaAAAEAwBHMEUCIBtNyobqByrsboYrEaRxcwXCRn+eSYS5zBNV3fIhei0IAiEA4eApMwDboZ4sc9j03GLL7mSI+e05/xztUjz/3zptysgwDQYJKoZIhvcNAQEMBQADggIBADFLloIoC+7rc2Sb4utMV6xrfskisXfkR1YkSpSgy3xezxfBbL70t5Z62iuHoXvtifsZ2xlEY3CAuMBJiDnCOuObfSmXSvUi0tWu854EHhD9QsbmRfLekX92hnX8Id6ZxiantGiLqHNKEGwepZ54y4eUZdTBD67y43J/IFpO2p2rK8hIQSe5dpIKlyN15fqNiZEuXbf4BF0ku+7oqINgBfVAK8x7TGoEjJzDyPavlDZciIYigHGYrg2EOD6qfXWOSp+E3vUG+Hpea6SxDcz/21h2xfLWf+yvZ7ltGz77bZx/Gw1uuZ52tx2iZ1iUgLXRUDf1LkXOBs1nyNnCTW5peV2fsBg891r9Rd+7hGWHg8LbXKJXvrW9/TNnMU/ZHxnKsiEZrZ51BfEQJMge49/7hinjAWOTOIVevFbIUPaASwbu63jq+NnScuY24NodD6YG89oTiv6wTKVDDt+9QwXr7PmT/Qsab7t5iCTlJTADIW0uA7D3p6e3BroNowmfXZRgSPoku34a2sv/+6gU1KXTiyd+9PY4ysa8xe+LNbSwxWm9N3aGH77SM8LZr1e/ixssMJkCwyNdlCdskp9xX8PXam9nSfFbkDAw8JQHGb6sAMkBrZnjewy7NBtbxesxk4VVcF2I3O6BWYL15jCDKWvRw9rJgtIUq9F9OQpJVI/yUJ3L\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "230 >= 60 days" + "finding": "223 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702795429" + "finding": "1703399786" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -202827,7 +204517,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -202836,7 +204526,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -202845,7 +204535,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -202854,7 +204544,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -202863,7 +204553,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -202871,7 +204561,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -202880,7 +204570,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -202889,7 +204579,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -202898,7 +204588,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -202907,14 +204597,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -202923,7 +204613,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -202932,7 +204622,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -202941,7 +204631,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -202950,7 +204640,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -202959,7 +204649,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -202968,7 +204658,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -202977,7 +204667,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -202986,7 +204676,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -202995,7 +204685,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -203004,332 +204694,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "989" + "finding": "629" } ], "thirdparties": { @@ -203348,11 +205038,11 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-6-27" + "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-6-25" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1701711390519" + "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1703159644707" }, { "type": "unknown", @@ -203362,10 +205052,10 @@ "cookies": [ { "name": "csrftoken", - "value": "ZJaAR59S2Y3HV33g2sBNNKEz9Bf7Krus", + "value": "CJfVNa0w9IiRqDUYjj1B36zIreUw2xLE", "domain": "ma-cantine.agriculture.gouv.fr", "path": "/", - "expires": 1734244043.711956, + "expires": 1734848750.50861, "size": 41, "httpOnly": false, "secure": false, @@ -203383,10 +205073,10 @@ "content-security-policy": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 06:27:23 GMT", + "date": "Sun, 24 Dec 2023 06:25:50 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=ZJaAR59S2Y3HV33g2sBNNKEz9Bf7Krus; expires=Sun, 15 Dec 2024 06:27:23 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "sozu-id": "01HHV7AEPH7Q2414AHZEFSMEAZ", + "set-cookie": "csrftoken=CJfVNa0w9IiRqDUYjj1B36zIreUw2xLE; expires=Sun, 22 Dec 2024 06:25:50 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "sozu-id": "01HJD80MR5XB019W2EGPSCZV16", "transfer-encoding": "chunked", "vary": "Cookie, Accept-Language", "x-content-type-options": "nosniff", @@ -203395,7 +205085,7 @@ "endpoints": [ { "hostname": "ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", + "ip": "91.208.207.216", "geoip": { "continent": { "code": "EU", @@ -203475,7 +205165,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:26:18", + "@generated": "Sun, 24 Dec 2023 06:19:23", "site": [ { "@name": "https://ma-cantine.agriculture.gouv.fr", @@ -203622,73 +205312,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "ma-cantine.agriculture.gouv.fr.", "matched-at": "ma-cantine.agriculture.gouv.fr", - "extracted-results": [ - "domain.par.clever-cloud.com." - ], - "timestamp": "2023-12-17T06:41:32.125058577Z", + "timestamp": "2023-12-24T06:39:59.565152254Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "ma-cantine.agriculture.gouv.fr.", "matched-at": "ma-cantine.agriculture.gouv.fr", - "timestamp": "2023-12-17T06:41:32.125299676Z", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2023-12-24T06:39:59.596601893Z", "matcher-status": true }, { @@ -203716,8 +205406,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:41:46.244563341Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:06.473316645Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203753,8 +205443,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628408447Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.399718889Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203790,8 +205480,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628459823Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.399782027Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203827,8 +205517,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628480461Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.399818465Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203864,8 +205554,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628495269Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.399837861Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203901,8 +205591,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628504025Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.399854071Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203938,8 +205628,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:42:50.628513352Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:40:51.39986929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -203978,8 +205668,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr/", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:43:30.91006495Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:41:19.553640707Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: ma-cantine.agriculture.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr/'", "matcher-status": true }, @@ -204018,8 +205708,8 @@ "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr/", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:43:30.910583315Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:41:19.553689899Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: ma-cantine.agriculture.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr/'", "matcher-status": true }, @@ -204069,7 +205759,7 @@ "SSH-2.0-OpenSSH_9.4" ], "ip": "91.208.207.214", - "timestamp": "2023-12-17T06:46:02.222061108Z", + "timestamp": "2023-12-24T06:42:12.238325535Z", "matcher-status": true }, { @@ -204083,7 +205773,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -204097,8 +205788,8 @@ "extracted-results": [ "GEANT Vereniging" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:46:11.507128023Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:42:20.064724999Z", "matcher-status": true }, { @@ -204112,7 +205803,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -204127,8 +205819,8 @@ "ma-cantine.agriculture.gouv.fr", "www.ma-cantine.agriculture.gouv.fr" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:46:11.507267493Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:42:20.064860521Z", "matcher-status": true }, { @@ -204143,7 +205835,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -204157,8 +205850,8 @@ "extracted-results": [ "tls12" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:46:14.258033809Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:43:06.563117606Z", "matcher-status": true }, { @@ -204173,7 +205866,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -204187,8 +205881,8 @@ "extracted-results": [ "tls13" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T06:46:14.610497452Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T06:43:06.982735956Z", "matcher-status": true } ], @@ -204196,7 +205890,7 @@ { "requestedUrl": "https://ma-cantine.agriculture.gouv.fr/", "finalUrl": "https://ma-cantine.agriculture.gouv.fr/", - "fetchTime": "2023-12-17T06:26:34.373Z", + "fetchTime": "2023-12-24T06:19:38.825Z", "runWarnings": [], "categories": { "performance": { @@ -204207,7 +205901,7 @@ "snapshot" ], "id": "performance", - "score": 0.8693662643432617 + "score": 0.8698602676391601 }, "accessibility": { "title": "Accessibility", @@ -204259,53 +205953,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7477, + "numericValue": 8280, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7477, - "firstMeaningfulPaint": 7477, - "largestContentfulPaint": 7779, - "interactive": 7477, - "speedIndex": 7477, + "firstContentfulPaint": 7278, + "firstMeaningfulPaint": 8280, + "largestContentfulPaint": 8776, + "interactive": 8280, + "speedIndex": 7278, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.7724269104003907, - "cumulativeLayoutShiftMainFrame": 0.7724269104003907, - "totalCumulativeLayoutShift": 0.7724269104003907, + "cumulativeLayoutShift": 0.7692710876464843, + "cumulativeLayoutShiftMainFrame": 0.7692710876464843, + "totalCumulativeLayoutShift": 0.7692710876464843, "observedTimeOrigin": 0, - "observedTimeOriginTs": 947016020, + "observedTimeOriginTs": 863606811, "observedNavigationStart": 0, - "observedNavigationStartTs": 947016020, - "observedFirstPaint": 1421, - "observedFirstPaintTs": 948437513, - "observedFirstContentfulPaint": 1421, - "observedFirstContentfulPaintTs": 948437513, - "observedFirstContentfulPaintAllFrames": 1421, - "observedFirstContentfulPaintAllFramesTs": 948437513, - "observedFirstMeaningfulPaint": 1532, - "observedFirstMeaningfulPaintTs": 948548201, - "observedLargestContentfulPaint": 1673, - "observedLargestContentfulPaintTs": 948688732, - "observedLargestContentfulPaintAllFrames": 1673, - "observedLargestContentfulPaintAllFramesTs": 948688732, - "observedTraceEnd": 4750, - "observedTraceEndTs": 951766116, - "observedLoad": 2441, - "observedLoadTs": 949457308, + "observedNavigationStartTs": 863606811, + "observedFirstPaint": 1056, + "observedFirstPaintTs": 864662703, + "observedFirstContentfulPaint": 1056, + "observedFirstContentfulPaintTs": 864662703, + "observedFirstContentfulPaintAllFrames": 1056, + "observedFirstContentfulPaintAllFramesTs": 864662703, + "observedFirstMeaningfulPaint": 1379, + "observedFirstMeaningfulPaintTs": 864985835, + "observedLargestContentfulPaint": 1379, + "observedLargestContentfulPaintTs": 864985835, + "observedLargestContentfulPaintAllFrames": 1379, + "observedLargestContentfulPaintAllFramesTs": 864985835, + "observedTraceEnd": 4512, + "observedTraceEndTs": 868119072, + "observedLoad": 2204, + "observedLoadTs": 865810316, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 947016565, - "observedCumulativeLayoutShift": 0.7724269104003907, - "observedCumulativeLayoutShiftMainFrame": 0.7724269104003907, - "observedTotalCumulativeLayoutShift": 0.7724269104003907, - "observedFirstVisualChange": 1496, - "observedFirstVisualChangeTs": 948512020, - "observedLastVisualChange": 2412, - "observedLastVisualChangeTs": 949428020, - "observedSpeedIndex": 1827, - "observedSpeedIndexTs": 948843045 + "observedDomContentLoadedTs": 863607533, + "observedCumulativeLayoutShift": 0.7692710876464843, + "observedCumulativeLayoutShiftMainFrame": 0.7692710876464843, + "observedTotalCumulativeLayoutShift": 0.7692710876464843, + "observedFirstVisualChange": 1208, + "observedFirstVisualChangeTs": 864814811, + "observedLastVisualChange": 1825, + "observedLastVisualChangeTs": 865431811, + "observedSpeedIndex": 1445, + "observedSpeedIndexTs": 865052063 }, { "lcpInvalidated": false @@ -204327,18 +206021,18 @@ "numScripts": 3, "numStylesheets": 2, "numFonts": 5, - "numTasks": 32, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.8870000000000005, - "throughput": 7781093.5782529535, - "maxRtt": 150.754, - "maxServerLatency": 17.506, - "totalByteWeight": 1733473, - "totalTaskTime": 4.4609999999999985, + "rtt": 2.0070000000000006, + "throughput": 11353197.853175985, + "maxRtt": 101.105, + "maxServerLatency": 12.333000000000002, + "totalByteWeight": 1730883, + "totalTaskTime": 2.107, "mainDocumentTransferSize": 2714 } ] @@ -204436,7 +206130,7 @@ "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 14, + "nmapOpenPortsCount": 13, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-08-03T23:59:00.000Z", @@ -204445,7 +206139,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.8693662643432617, + "lighthouse_performance": 0.8698602676391601, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -204480,7 +206174,7 @@ "http": { "url": "https://mediature.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:30:47 GMT", + "end_time": "Sun, 24 Dec 2023 06:19:05 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -204493,7 +206187,7 @@ "Cross-Origin-Embedder-Policy": "require-corp", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 06:30:46 GMT", + "Date": "Sun, 24 Dec 2023 06:19:04 GMT", "ETag": "\"bxgfa2g4qudnf\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", @@ -204505,13 +206199,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "5f3f8d40-de74-4447-bde6-6c14fd6ed43f", + "X-Request-ID": "89c3df6b-5ee5-41dd-be83-4a4f28c235e4", "X-XSS-Protection": "0", "x-nextjs-cache": "HIT" }, - "scan_id": 45544062, + "scan_id": 45759806, "score": 40, - "start_time": "Sun, 17 Dec 2023 06:30:41 GMT", + "start_time": "Sun, 24 Dec 2023 06:18:59 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -204527,20 +206221,20 @@ "'self'" ], "connect-src": [ - "https://storage.crisp.chat/users/upload/", "'self'", "https://client.crisp.chat/static/", - "https://sentry.incubateur.net/", + "wss://client.relay.crisp.chat/", "https://api-adresse.data.gouv.fr/", - "wss://client.relay.crisp.chat/" + "https://storage.crisp.chat/users/upload/", + "https://sentry.incubateur.net/" ], "default-src": [ "'self'" ], "font-src": [ - "'self'", "https:", - "data:" + "data:", + "'self'" ], "form-action": [ "'self'" @@ -204549,25 +206243,25 @@ "'self'" ], "img-src": [ - "'self'", + "data:", "https://*.crisp.chat/", - "data:" + "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "'self'", + "https://client.crisp.chat/", "'unsafe-inline'", - "https://client.crisp.chat/" + "'self'" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'self'", + "https:", "'unsafe-inline'", - "https:" + "'self'" ], "upgrade-insecure-requests": [ "'none'" @@ -204768,77 +206462,77 @@ "testssl": [ { "id": "service", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -204846,7 +206540,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -204854,7 +206548,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -204862,7 +206556,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -204870,7 +206564,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -204878,7 +206572,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -204886,483 +206580,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:26" }, { "id": "cert_notAfter", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-15 14:26" }, { "id": "cert_extlifeSpan", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702794757" + "finding": "1703398820" }, { "id": "HSTS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -205370,7 +207064,7 @@ }, { "id": "heartbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -205379,7 +207073,7 @@ }, { "id": "CCS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -205388,7 +207082,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -205397,7 +207091,7 @@ }, { "id": "ROBOT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -205406,7 +207100,7 @@ }, { "id": "secure_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -205414,7 +207108,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -205423,7 +207117,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -205432,7 +207126,7 @@ }, { "id": "BREACH", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -205441,7 +207135,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -205450,14 +207144,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -205466,7 +207160,7 @@ }, { "id": "FREAK", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -205475,7 +207169,7 @@ }, { "id": "DROWN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -205484,7 +207178,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -205493,7 +207187,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -205502,7 +207196,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -205511,7 +207205,7 @@ }, { "id": "BEAST", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -205520,7 +207214,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -205529,7 +207223,7 @@ }, { "id": "winshock", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -205538,7 +207232,7 @@ }, { "id": "RC4", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -205547,399 +207241,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205947,7 +207641,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205955,7 +207649,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205963,7 +207657,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205971,7 +207665,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205979,7 +207673,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205987,483 +207681,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:26" }, { "id": "cert_notAfter", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-15 14:26" }, { "id": "cert_extlifeSpan", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702794853" + "finding": "1703398872" }, { "id": "HSTS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -206471,7 +208165,7 @@ }, { "id": "heartbleed", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -206480,7 +208174,7 @@ }, { "id": "CCS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -206489,7 +208183,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -206498,7 +208192,7 @@ }, { "id": "ROBOT", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -206507,7 +208201,7 @@ }, { "id": "secure_renego", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -206515,7 +208209,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -206524,7 +208218,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -206533,7 +208227,7 @@ }, { "id": "BREACH", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -206542,7 +208236,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -206551,14 +208245,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -206567,7 +208261,7 @@ }, { "id": "FREAK", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -206576,7 +208270,7 @@ }, { "id": "DROWN", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -206585,7 +208279,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -206594,7 +208288,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -206603,7 +208297,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -206612,7 +208306,7 @@ }, { "id": "BEAST", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -206621,7 +208315,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -206630,7 +208324,7 @@ }, { "id": "winshock", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -206639,7 +208333,7 @@ }, { "id": "RC4", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -206648,332 +208342,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "197" + "finding": "107" } ], "thirdparties": { @@ -207243,7 +208937,38 @@ "url": "https://www.mediateur-public.fr/_next/static/chunks/app/(public)/about-us/page-76fb4df6673ebc6b.js" } ], - "cookies": [], + "cookies": [ + { + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Fwww.mediateur-public.fr", + "domain": "www.mediateur-public.fr", + "path": "/", + "expires": -1, + "size": 68, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__Host-next-auth.csrf-token", + "value": "f7e3f8c0225ea7be16b93eee91d5349ccb13f07551511557288a860c514c7312%7Ce4fca80f94c58d9d60a9ed4d7020e65a6dded4803075c261dc9b86a8c4855419", + "domain": "www.mediateur-public.fr", + "path": "/", + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", @@ -207252,7 +208977,7 @@ "cross-origin-embedder-policy": "require-corp", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 06:31:16 GMT", + "date": "Sun, 24 Dec 2023 06:19:36 GMT", "etag": "\"bxgfa2g4qudnf\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -207264,13 +208989,13 @@ "x-frame-options": "SAMEORIGIN", "x-nextjs-cache": "HIT", "x-permitted-cross-domain-policies": "none", - "x-request-id": "696a3f5c-5324-4af9-9c64-d31516176a24", + "x-request-id": "605f6083-c3fa-4630-87f8-acffe1855463", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "mediature.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -207326,7 +209051,7 @@ }, { "hostname": "www.mediateur-public.fr", - "ip": "80.247.12.255", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -207526,7 +209251,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:30:15", + "@generated": "Sun, 24 Dec 2023 06:18:34", "site": [ { "@name": "https://mediature.beta.gouv.fr", @@ -207583,13 +209308,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, - { - "name": "Re-examine Cache-control Directives", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" - }, { "name": "Sec-Fetch-Dest Header is Missing", "riskcode": "0", @@ -207662,7 +209380,7 @@ "type": "dns", "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", - "timestamp": "2023-12-17T06:36:00.831319154Z", + "timestamp": "2023-12-24T06:22:30.908572191Z", "matcher-status": true }, { @@ -207702,27 +209420,24 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T06:36:00.831392424Z", + "timestamp": "2023-12-24T06:22:31.002681923Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -207738,10 +209453,10 @@ "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", "extracted-results": [ - "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"", - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T06:36:00.961964811Z", + "timestamp": "2023-12-24T06:22:31.912923107Z", "matcher-status": true }, { @@ -207780,24 +209495,27 @@ "extracted-results": [ "0 parse.mailjet.com." ], - "timestamp": "2023-12-17T06:36:01.808983523Z", + "timestamp": "2023-12-24T06:22:32.060520984Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -207813,10 +209531,48 @@ "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"", + "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"" ], - "timestamp": "2023-12-17T06:36:01.946986215Z", + "timestamp": "2023-12-24T06:22:32.221629823Z", + "matcher-status": true + }, + { + "template": "http/miscellaneous/security-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/security-txt", + "template-id": "security-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", + "info": { + "name": "security.txt File", + "author": [ + "bad5ect0r", + "noraj" + ], + "tags": [ + "misc", + "generic" + ], + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", + "reference": [ + "https://securitytxt.org/", + "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" + ], + "severity": "info", + "metadata": { + "max-request": 2, + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true + } + }, + "type": "http", + "host": "https://mediature.beta.gouv.fr", + "matched-at": "https://www.mediateur-public.fr/.well-known/security.txt", + "extracted-results": [ + " https://github.com/inclusion-numerique/mediature/issues" + ], + "ip": "148.253.96.193", + "timestamp": "2023-12-24T06:23:24.683519237Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.beta.gouv.fr/.well-known/security.txt'", "matcher-status": true }, { @@ -207830,7 +209586,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -207845,7 +209602,7 @@ "Let's Encrypt" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T06:41:02.846995346Z", + "timestamp": "2023-12-24T06:26:35.797093196Z", "matcher-status": true }, { @@ -207859,7 +209616,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -207874,7 +209632,7 @@ "mediature.beta.gouv.fr" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T06:41:02.847126381Z", + "timestamp": "2023-12-24T06:26:35.797207388Z", "matcher-status": true }, { @@ -207889,7 +209647,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -207904,7 +209663,7 @@ "tls12" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T06:41:05.581256622Z", + "timestamp": "2023-12-24T06:26:37.667933529Z", "matcher-status": true }, { @@ -207919,7 +209678,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -207934,7 +209694,7 @@ "tls13" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T06:41:05.89460583Z", + "timestamp": "2023-12-24T06:26:37.856696908Z", "matcher-status": true } ], @@ -207942,7 +209702,7 @@ { "requestedUrl": "https://mediature.beta.gouv.fr/", "finalUrl": "https://www.mediateur-public.fr/", - "fetchTime": "2023-12-17T06:30:29.352Z", + "fetchTime": "2023-12-24T06:18:48.582Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mediature.beta.gouv.fr/) was redirected to https://www.mediateur-public.fr/. Try testing the second URL directly." ], @@ -208007,53 +209767,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1965, + "numericValue": 1957, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1965, - "firstMeaningfulPaint": 1965, - "largestContentfulPaint": 4748, - "interactive": 1965, - "speedIndex": 3184, + "firstContentfulPaint": 1957, + "firstMeaningfulPaint": 1957, + "largestContentfulPaint": 4808, + "interactive": 1957, + "speedIndex": 2368, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.007273163265652127, "cumulativeLayoutShiftMainFrame": 0.007273163265652127, "totalCumulativeLayoutShift": 0.007273163265652127, "observedTimeOrigin": 0, - "observedTimeOriginTs": 284388234, + "observedTimeOriginTs": 329481729, "observedNavigationStart": 0, - "observedNavigationStartTs": 284388234, - "observedFirstPaint": 485, - "observedFirstPaintTs": 284873326, - "observedFirstContentfulPaint": 485, - "observedFirstContentfulPaintTs": 284873326, - "observedFirstContentfulPaintAllFrames": 485, - "observedFirstContentfulPaintAllFramesTs": 284873326, - "observedFirstMeaningfulPaint": 1520, - "observedFirstMeaningfulPaintTs": 285908242, - "observedLargestContentfulPaint": 1520, - "observedLargestContentfulPaintTs": 285908242, - "observedLargestContentfulPaintAllFrames": 1520, - "observedLargestContentfulPaintAllFramesTs": 285908242, - "observedTraceEnd": 4160, - "observedTraceEndTs": 288548442, - "observedLoad": 1399, - "observedLoadTs": 285787479, + "observedNavigationStartTs": 329481729, + "observedFirstPaint": 280, + "observedFirstPaintTs": 329762077, + "observedFirstContentfulPaint": 280, + "observedFirstContentfulPaintTs": 329762077, + "observedFirstContentfulPaintAllFrames": 280, + "observedFirstContentfulPaintAllFramesTs": 329762077, + "observedFirstMeaningfulPaint": 944, + "observedFirstMeaningfulPaintTs": 330425965, + "observedLargestContentfulPaint": 944, + "observedLargestContentfulPaintTs": 330425965, + "observedLargestContentfulPaintAllFrames": 944, + "observedLargestContentfulPaintAllFramesTs": 330425965, + "observedTraceEnd": 3454, + "observedTraceEndTs": 332936129, + "observedLoad": 791, + "observedLoadTs": 330273196, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 284388776, + "observedDomContentLoadedTs": 329482283, "observedCumulativeLayoutShift": 0.007273163265652127, "observedCumulativeLayoutShiftMainFrame": 0.007273163265652127, "observedTotalCumulativeLayoutShift": 0.007273163265652127, - "observedFirstVisualChange": 1000, - "observedFirstVisualChangeTs": 285388234, - "observedLastVisualChange": 1700, - "observedLastVisualChangeTs": 286088234, - "observedSpeedIndex": 1540, - "observedSpeedIndexTs": 285928562 + "observedFirstVisualChange": 805, + "observedFirstVisualChangeTs": 330286729, + "observedLastVisualChange": 1055, + "observedLastVisualChangeTs": 330536729, + "observedSpeedIndex": 961, + "observedSpeedIndexTs": 330442615 }, { "lcpInvalidated": false @@ -208075,19 +209835,19 @@ "numScripts": 38, "numStylesheets": 3, "numFonts": 3, - "numTasks": 31, + "numTasks": 21, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 149.63299999999998, - "throughput": 13131586.164443873, - "maxRtt": 150.238, - "maxServerLatency": 21.81200000000007, - "totalByteWeight": 832062, - "totalTaskTime": 2.388, - "mainDocumentTransferSize": 4691 + "rtt": 80.86699999999999, + "throughput": 22119026.80312985, + "maxRtt": 85.059, + "maxServerLatency": 6.757999999999996, + "totalByteWeight": 831851, + "totalTaskTime": 4.063999999999998, + "mainDocumentTransferSize": 4682 } ] } @@ -208179,8 +209939,8 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-02-15T14:26:00.000Z", "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 66, "lighthouse_performance": 0.5, @@ -208218,42 +209978,120 @@ "http": { "url": "https://mediature.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:45:26 GMT", - "grade": "D+", + "end_time": "Sun, 24 Dec 2023 06:29:21 GMT", + "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { + "Cache-Control": "s-maxage=31536000, stale-while-revalidate", "Connection": "keep-alive", - "Content-Encoding": "identity", - "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 06:45:25 GMT", - "Strict-Transport-Security": "max-age=31536000", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "Content-Type": "text/html; charset=utf-8", + "Cross-Origin-Embedder-Policy": "require-corp", + "Cross-Origin-Opener-Policy": "same-origin", + "Cross-Origin-Resource-Policy": "same-origin", + "Date": "Sun, 24 Dec 2023 06:29:20 GMT", + "ETag": "\"168ei117ooldnf\"", + "Origin-Agent-Cluster": "?1", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=31536000, max-age=15552000; includeSubDomains", "Transfer-Encoding": "chunked", - "X-Request-ID": "ad3d9cc6-f6f1-4d74-95b8-4be5ba8af5e0" + "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "5b203a98-cd5c-45e0-af1b-e1464d9dc95c", + "X-XSS-Protection": "0", + "x-nextjs-cache": "HIT" }, - "scan_id": 45544419, - "score": 40, - "start_time": "Sun, 17 Dec 2023 06:45:21 GMT", + "scan_id": 45760026, + "score": 50, + "start_time": "Sun, 24 Dec 2023 06:29:17 GMT", "state": "FINISHED", - "status_code": 503, - "tests_failed": 4, - "tests_passed": 8, + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, "tests_quantity": 12, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "'self'", + "https://client.crisp.chat/static/", + "wss://client.relay.crisp.chat/", + "https://api-adresse.data.gouv.fr/", + "https://storage.crisp.chat/users/upload/", + "https://sentry.incubateur.net/" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "https:", + "data:", + "'self'" + ], + "form-action": [ + "'self'" + ], + "frame-ancestors": [ + "'self'" + ], + "img-src": [ + "data:", + "https://*.crisp.chat/", + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "https://client.crisp.chat/", + "'unsafe-inline'", + "'self'" + ], + "script-src-attr": [ + "'none'" + ], + "style-src": [ + "https:", + "'unsafe-inline'", + "'self'" + ], + "upgrade-insecure-requests": [ + "'none'" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": false, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "contribute": { "expectation": "contribute-json-only-required-on-mozilla-properties", @@ -208312,13 +210150,13 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": null, + "destination": "https://mediature.incubateur.net/", "redirects": true, "route": [ "http://mediature.incubateur.net/", "https://mediature.incubateur.net/" ], - "status_code": null + "status_code": 200 }, "pass": true, "result": "redirection-to-https", @@ -208329,29 +210167,29 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "no-referrer", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", + "data": "max-age=31536000, max-age=15552000; includeSubDomains", "includeSubDomains": false, - "max-age": 31536000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-header-invalid", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -208360,41 +210198,41 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-but-no-scripts-loaded", - "score_description": "Subresource Integrity (SRI) is not needed since site contains no script tags", + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": "nosniff" }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null + "data": "SAMEORIGIN" }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 }, "x-xss-protection": { "expectation": "x-xss-protection-1-mode-block", "name": "x-xss-protection", "output": { - "data": null + "data": "0" }, "pass": false, - "result": "x-xss-protection-not-implemented", - "score_description": "X-XSS-Protection header not implemented", + "result": "x-xss-protection-disabled", + "score_description": "X-XSS-Protection header set to \"0\" (disabled)", "score_modifier": -10 } } @@ -208427,77 +210265,77 @@ "testssl": [ { "id": "service", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -208505,7 +210343,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -208513,7 +210351,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -208521,7 +210359,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -208529,7 +210367,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -208537,7 +210375,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -208545,497 +210383,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:24" }, { "id": "cert_notAfter", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-15 14:24" }, { "id": "cert_extlifeSpan", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702795598" + "finding": "1703399435" + }, + { + "id": "HSTS_multiple", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "MEDIUM", + "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "mediature.incubateur.net/5.104.101.30", + "id": "X-Frame-Options", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" + }, + { + "id": "X-XSS-Protection", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "mediature.incubateur.net/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -209043,7 +210923,7 @@ }, { "id": "heartbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -209052,7 +210932,7 @@ }, { "id": "CCS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -209061,7 +210941,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -209070,7 +210950,7 @@ }, { "id": "ROBOT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -209079,7 +210959,7 @@ }, { "id": "secure_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -209087,7 +210967,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -209096,7 +210976,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -209105,16 +210985,16 @@ }, { "id": "BREACH", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -209123,14 +211003,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -209139,7 +211019,7 @@ }, { "id": "FREAK", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -209148,7 +211028,7 @@ }, { "id": "DROWN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -209157,7 +211037,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -209166,7 +211046,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -209175,7 +211055,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -209184,7 +211064,7 @@ }, { "id": "BEAST", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -209193,7 +211073,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -209202,7 +211082,7 @@ }, { "id": "winshock", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -209211,7 +211091,7 @@ }, { "id": "RC4", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -209220,392 +211100,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209613,7 +211493,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209621,7 +211501,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209629,7 +211509,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209637,7 +211517,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -209645,7 +211525,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -209653,497 +211533,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:24" }, { "id": "cert_notAfter", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-15 14:24" }, { "id": "cert_extlifeSpan", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702795654" + "finding": "1703399489" + }, + { + "id": "HSTS_multiple", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "MEDIUM", + "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { - "id": "security_headers", - "ip": "mediature.incubateur.net/109.232.236.90", + "id": "X-Frame-Options", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", - "severity": "MEDIUM", - "finding": "--" + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" + }, + { + "id": "X-XSS-Protection", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "mediature.incubateur.net/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -210151,7 +212073,7 @@ }, { "id": "heartbleed", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -210160,7 +212082,7 @@ }, { "id": "CCS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -210169,7 +212091,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -210178,7 +212100,7 @@ }, { "id": "ROBOT", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -210187,7 +212109,7 @@ }, { "id": "secure_renego", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -210195,7 +212117,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -210204,7 +212126,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -210213,16 +212135,16 @@ }, { "id": "BREACH", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -210231,14 +212153,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -210247,7 +212169,7 @@ }, { "id": "FREAK", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -210256,7 +212178,7 @@ }, { "id": "DROWN", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -210265,7 +212187,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -210274,7 +212196,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -210283,7 +212205,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -210292,7 +212214,7 @@ }, { "id": "BEAST", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -210301,7 +212223,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -210310,7 +212232,7 @@ }, { "id": "winshock", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -210319,7 +212241,7 @@ }, { "id": "RC4", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -210328,336 +212250,352 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "115" + "finding": "112" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "content-encoding": "identity", - "content-type": "text/html", - "date": "Sun, 17 Dec 2023 06:45:57 GMT", - "strict-transport-security": "max-age=31536000", - "x-request-id": "211c180e-bc89-4150-b2d8-38beb5817f8b" + "cache-control": "s-maxage=31536000, stale-while-revalidate", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests", + "content-type": "text/html; charset=utf-8", + "cross-origin-embedder-policy": "require-corp", + "cross-origin-opener-policy": "same-origin", + "cross-origin-resource-policy": "same-origin", + "date": "Sun, 24 Dec 2023 06:29:53 GMT", + "etag": "\"168ei117ooldnf\"", + "origin-agent-cluster": "?1", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=31536000\nmax-age=15552000; includeSubDomains", + "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding", + "x-content-type-options": "nosniff", + "x-dns-prefetch-control": "off", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-nextjs-cache": "HIT", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "3e438245-4710-4bac-a81d-1abf6ff27180", + "x-xss-protection": "0" }, "endpoints": [ { @@ -210721,10 +212659,136 @@ "wappalyzer": { "urls": { "https://mediature.incubateur.net/": { - "status": 503 + "status": 200 } }, "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": null, + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "mui", + "name": "MUI", + "description": "MUI(formerly Material UI) is a simple and customisable component library to build faster, beautiful, and more accessible React applications.", + "confidence": 100, + "version": null, + "icon": "MUI.svg", + "website": "https://mui.com", + "cpe": null, + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "13.1.6", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "emotion", + "name": "Emotion", + "description": "Emotion is a library designed for writing CSS styles with JavaScript.", + "confidence": 100, + "version": null, + "icon": "Emotion.png", + "website": "https://emotion.sh", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ], + "rootPath": true + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -210783,13 +212847,47 @@ } ], "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:44:51", + "@generated": "Sun, 24 Dec 2023 06:28:52", "site": [ { "@name": "https://mediature.incubateur.net", @@ -210798,11 +212896,39 @@ "@ssl": "true", "alerts": [ { - "name": "Content Security Policy (CSP) Header Not Set", + "name": "CSP: Wildcard Directive", "riskcode": "2", "confidence": "3", "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: script-src unsafe-inline", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: style-src unsafe-inline", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "Vulnerable JS Library", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

The identified library nextjs, version 13.1.6 is vulnerable.

" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" }, { "name": "Permissions Policy Header Not Set", @@ -210811,6 +212937,48 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec)", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) headers were found, a response with multiple HSTS header entries is not compliant with the specification (RFC 6797) and only the first HSTS header will be processed others will be ignored by user agents or the HSTS policy may be incorrectly applied.

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL).

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" + }, + { + "name": "Content-Type Header Missing", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The Content-Type header was either missing or empty.

" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, { "name": "Non-Storable Content", "riskcode": "0", @@ -210818,6 +212986,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + }, { "name": "Sec-Fetch-Dest Header is Missing", "riskcode": "0", @@ -210845,12 +213020,59 @@ "confidence": "3", "riskdesc": "Informational (High)", "desc": "

Specifies if a navigation request was initiated by a user.

" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" } ] } ] }, "nuclei": [ + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "mediature.incubateur.net.", + "matched-at": "_dmarc.mediature.incubateur.net", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T06:32:52.940853627Z", + "matcher-status": true + }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -210883,7 +213105,7 @@ "type": "dns", "host": "mediature.incubateur.net.", "matched-at": "mediature.incubateur.net", - "timestamp": "2023-12-17T06:48:59.453108884Z", + "timestamp": "2023-12-24T06:32:53.088599629Z", "matcher-status": true }, { @@ -210916,30 +213138,30 @@ "host": "mediature.incubateur.net.", "matched-at": "mediature.incubateur.net", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T06:48:59.499461583Z", + "timestamp": "2023-12-24T06:32:53.090456695Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -210949,17 +213171,16 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "mediature.incubateur.net.", - "matched-at": "_dmarc.mediature.incubateur.net", + "matched-at": "mediature.incubateur.net", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "0 parse.mailjet.com." ], - "timestamp": "2023-12-17T06:48:59.508304932Z", + "timestamp": "2023-12-24T06:32:53.157318735Z", "matcher-status": true }, { @@ -210995,197 +213216,41 @@ "host": "mediature.incubateur.net.", "matched-at": "mediature.incubateur.net", "extracted-results": [ - "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"", - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"" + "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"", + "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"" ], - "timestamp": "2023-12-17T06:49:00.267585242Z", + "timestamp": "2023-12-24T06:32:53.850560075Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "http/miscellaneous/options-method.yaml", + "template-url": "https://templates.nuclei.sh/public/options-method", + "template-id": "options-method", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", "info": { - "name": "MX Record Detection", + "name": "Allowed Options Method", "author": [ "pdteam" ], "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "mediature.incubateur.net", - "extracted-results": [ - "0 parse.mailjet.com." - ], - "timestamp": "2023-12-17T06:49:00.507568716Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.027894846Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.027954048Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.027969506Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", + "misc", "generic" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "content-security-policy", "type": "http", "host": "https://mediature.incubateur.net", "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.027983523Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", + "extracted-results": [ + "GET", + "HEAD" + ], + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:32:59.940722205Z", + "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", "matcher-status": true }, { @@ -211220,82 +213285,8 @@ "type": "http", "host": "https://mediature.incubateur.net", "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.028000254Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.028015763Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.028029519Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:33:36.211916461Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", "matcher-status": true }, @@ -211327,87 +213318,51 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mediature.incubateur.net", "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.028044116Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:33:36.211960664Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "http/miscellaneous/security-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/security-txt", + "template-id": "security-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "security.txt File", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "bad5ect0r", + "noraj" ], "tags": [ - "misconfig", - "headers", + "misc", "generic" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.02805705Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", + "reference": [ + "https://securitytxt.org/", + "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 2, + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, - "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:49:51.028069895Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", + "matched-at": "https://mediature.incubateur.net/.well-known/security.txt", + "extracted-results": [ + " https://github.com/inclusion-numerique/mediature/issues" + ], + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:33:45.775553147Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net/.well-known/security.txt'", "matcher-status": true }, { @@ -211421,7 +213376,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -211435,8 +213391,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:53:57.994425579Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:36:57.929770868Z", "matcher-status": true }, { @@ -211450,7 +213406,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -211464,8 +213421,8 @@ "extracted-results": [ "mediature.incubateur.net" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:53:57.994550523Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:36:57.929888068Z", "matcher-status": true }, { @@ -211480,7 +213437,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -211494,8 +213452,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:54:02.75779675Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:36:59.325263471Z", "matcher-status": true }, { @@ -211510,7 +213468,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -211524,12 +213483,166 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T06:54:02.933882122Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T06:36:59.517537915Z", "matcher-status": true } ], - "lhr": null, + "lhr": [ + { + "requestedUrl": "https://mediature.incubateur.net/", + "finalUrl": "https://mediature.incubateur.net/", + "fetchTime": "2023-12-24T06:29:06.130Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.5 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.98 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 1210, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1210, + "firstMeaningfulPaint": 1210, + "largestContentfulPaint": 4060, + "interactive": 1210, + "speedIndex": 1920, + "totalBlockingTime": 0, + "maxPotentialFID": 16, + "cumulativeLayoutShift": 0.007273163265652127, + "cumulativeLayoutShiftMainFrame": 0.007273163265652127, + "totalCumulativeLayoutShift": 0.007273163265652127, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 404365242, + "observedNavigationStart": 0, + "observedNavigationStartTs": 404365242, + "observedFirstPaint": 319, + "observedFirstPaintTs": 404684524, + "observedFirstContentfulPaint": 319, + "observedFirstContentfulPaintTs": 404684524, + "observedFirstContentfulPaintAllFrames": 319, + "observedFirstContentfulPaintAllFramesTs": 404684524, + "observedFirstMeaningfulPaint": 980, + "observedFirstMeaningfulPaintTs": 405345465, + "observedLargestContentfulPaint": 980, + "observedLargestContentfulPaintTs": 405345465, + "observedLargestContentfulPaintAllFrames": 980, + "observedLargestContentfulPaintAllFramesTs": 405345465, + "observedTraceEnd": 3514, + "observedTraceEndTs": 407879112, + "observedLoad": 852, + "observedLoadTs": 405216912, + "observedDomContentLoaded": 1, + "observedDomContentLoadedTs": 404365773, + "observedCumulativeLayoutShift": 0.007273163265652127, + "observedCumulativeLayoutShiftMainFrame": 0.007273163265652127, + "observedTotalCumulativeLayoutShift": 0.007273163265652127, + "observedFirstVisualChange": 651, + "observedFirstVisualChangeTs": 405016242, + "observedLastVisualChange": 1085, + "observedLastVisualChangeTs": 405450242, + "observedSpeedIndex": 988, + "observedSpeedIndexTs": 405353619 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 64, + "numScripts": 38, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 14, + "numTasksOver10ms": 0, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 82.607, + "throughput": 17780100.906447273, + "maxRtt": 84.84100000000001, + "maxServerLatency": 10.224999999999994, + "totalByteWeight": 831682, + "totalTaskTime": 4.985, + "mainDocumentTransferSize": 4674 + } + ] + } + } + } + } + ], "screenshot": true, "stats": { "grade": "F", @@ -211607,7 +213720,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "D+", + "httpGrade": "C", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -211618,6 +213731,16 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, + "lighthouse_performance": 0.5, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.98, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", "statsGrade": "F", "githubRepositoryGrade": "F", "budgetPageGrade": "F", @@ -211634,7 +213757,7 @@ "http": { "url": "https://mes-aides.1jeune1solution.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:47:50 GMT", + "end_time": "Sun, 24 Dec 2023 06:37:29 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -211642,17 +213765,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 06:47:49 GMT", - "ETag": "W/\"657c4f8e-dcb\"", - "Last-Modified": "Fri, 15 Dec 2023 13:07:26 GMT", + "Date": "Sun, 24 Dec 2023 06:37:28 GMT", + "ETag": "W/\"6585a305-dcb\"", + "Last-Modified": "Fri, 22 Dec 2023 14:53:57 GMT", "Server": "nginx/1.18.0", "Strict-Transport-Security": "max-age=32850000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding" }, - "scan_id": 45544484, + "scan_id": 45760221, "score": 40, - "start_time": "Sun, 17 Dec 2023 06:47:46 GMT", + "start_time": "Sun, 24 Dec 2023 06:37:25 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -211837,32 +213960,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T06:54:35Z", - "next_check_at": "2023-12-17T06:59:32Z", + "last_check_at": "2023-12-24T06:39:17Z", + "next_check_at": "2023-12-24T06:44:15Z", "mute_until": null, "favicon_url": "https://mes-aides.1jeune1solution.beta.gouv.fr/img/favicon/android-chrome-192x192.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T06:24:44Z", + "tested_at": "2023-12-24T05:54:34Z", "expires_at": "2024-01-27T07:22:01Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.989, "timings": { "redirect": 0, - "namelookup": 174, - "connection": 144, - "handshake": 150, - "response": 144, - "total": 612 + "namelookup": 273, + "connection": 143, + "handshake": 185, + "response": 154, + "total": 755 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "B" }, "nmap": { "host": "mes-aides.1jeune1solution.beta.gouv.fr", @@ -211874,13 +213997,13 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.4p1 Debian 5+deb11u2", + "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { "cvss": "5.0", + "id": "PRION:CVE-2016-20012", "type": "prion", - "is_exploit": "false", - "id": "PRION:CVE-2016-20012" + "is_exploit": "false" } ] } @@ -212300,7 +214423,7 @@ "ip": "mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -212503,7 +214626,7 @@ "ip": "mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "1702796051" + "finding": "1703399943" }, { "id": "HSTS_time", @@ -213080,9 +215203,9 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 06:53:08 GMT", - "etag": "W/\"657c4f8e-dcb\"", - "last-modified": "Fri, 15 Dec 2023 13:07:26 GMT", + "date": "Sun, 24 Dec 2023 06:38:00 GMT", + "etag": "W/\"6585a305-dcb\"", + "last-modified": "Fri, 22 Dec 2023 14:53:57 GMT", "server": "nginx/1.18.0", "strict-transport-security": "max-age=32850000; includeSubDomains", "vary": "Accept-Encoding" @@ -213414,7 +215537,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 06:52:29", + "@generated": "Sun, 24 Dec 2023 06:37:01", "site": [ { "@name": "https://mes-aides.1jeune1solution.beta.gouv.fr", @@ -213599,7 +215722,7 @@ "type": "dns", "host": "mes-aides.1jeune1solution.beta.gouv.fr.", "matched-at": "mes-aides.1jeune1solution.beta.gouv.fr", - "timestamp": "2023-12-17T06:55:16.588455058Z", + "timestamp": "2023-12-24T06:40:09.486554623Z", "matcher-status": true }, { @@ -213637,7 +215760,7 @@ "extracted-results": [ "\"google-site-verification=HPmBmQL1wAjNXTwozfdLx1SVDAacoObm-CFsvx53DzY\"" ], - "timestamp": "2023-12-17T06:55:17.582554468Z", + "timestamp": "2023-12-24T06:40:10.32238791Z", "matcher-status": true }, { @@ -213676,7 +215799,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:55:28.357808157Z", + "timestamp": "2023-12-24T06:40:21.038916702Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213708,7 +215831,7 @@ "nginx/1.18.0" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:55:28.365218926Z", + "timestamp": "2023-12-24T06:40:21.046290943Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213735,7 +215858,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:55:51.180380489Z", + "timestamp": "2023-12-24T06:40:44.196624622Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213767,12 +215890,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153122248Z", + "timestamp": "2023-12-24T06:40:53.124986884Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213804,12 +215927,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.15316072Z", + "timestamp": "2023-12-24T06:40:53.125032239Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213841,12 +215964,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153171309Z", + "timestamp": "2023-12-24T06:40:53.12504925Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213878,12 +216001,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153180757Z", + "timestamp": "2023-12-24T06:40:53.125062054Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213915,12 +216038,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153198751Z", + "timestamp": "2023-12-24T06:40:53.125078234Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213952,12 +216075,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153215011Z", + "timestamp": "2023-12-24T06:40:53.125092291Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -213989,12 +216112,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.15324703Z", + "timestamp": "2023-12-24T06:40:53.125106948Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -214026,12 +216149,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153267058Z", + "timestamp": "2023-12-24T06:40:53.125120653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -214063,12 +216186,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153278629Z", + "timestamp": "2023-12-24T06:40:53.125138106Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -214100,12 +216223,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:00.153292225Z", + "timestamp": "2023-12-24T06:40:53.125149667Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -214133,7 +216256,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:09.381895056Z", + "timestamp": "2023-12-24T06:41:02.477991913Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -214161,7 +216284,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:09.383145272Z", + "timestamp": "2023-12-24T06:41:02.509677441Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -214201,7 +216324,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/", "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:21.847567163Z", + "timestamp": "2023-12-24T06:41:15.026490235Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mes-aides.1jeune1solution.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/'", "matcher-status": true }, @@ -214248,10 +216371,10 @@ "host": "mes-aides.1jeune1solution.beta.gouv.fr:22", "matched-at": "mes-aides.1jeune1solution.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2" + "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:41.255506534Z", + "timestamp": "2023-12-24T06:41:34.504947722Z", "matcher-status": true }, { @@ -214265,7 +216388,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -214280,7 +216404,7 @@ "Let's Encrypt" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:42.805011794Z", + "timestamp": "2023-12-24T06:41:36.131413797Z", "matcher-status": true }, { @@ -214294,7 +216418,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -214306,11 +216431,11 @@ "host": "mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "mes-aides.1jeune1solution.beta.gouv.fr:443", "extracted-results": [ - "www.mes-aides.1jeune1solution.beta.gouv.fr", - "mes-aides.1jeune1solution.beta.gouv.fr" + "mes-aides.1jeune1solution.beta.gouv.fr", + "www.mes-aides.1jeune1solution.beta.gouv.fr" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:42.805109867Z", + "timestamp": "2023-12-24T06:41:36.131518121Z", "matcher-status": true }, { @@ -214325,7 +216450,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -214340,7 +216466,7 @@ "tls12" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:44.630419361Z", + "timestamp": "2023-12-24T06:41:37.700395608Z", "matcher-status": true }, { @@ -214355,7 +216481,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -214370,7 +216497,7 @@ "tls13" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T06:56:44.827399894Z", + "timestamp": "2023-12-24T06:41:37.894512039Z", "matcher-status": true } ], @@ -214378,7 +216505,7 @@ { "requestedUrl": "https://mes-aides.1jeune1solution.beta.gouv.fr/", "finalUrl": "https://mes-aides.1jeune1solution.beta.gouv.fr/", - "fetchTime": "2023-12-17T06:52:42.853Z", + "fetchTime": "2023-12-24T06:37:15.074Z", "runWarnings": [], "categories": { "performance": { @@ -214441,53 +216568,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2677, + "numericValue": 2698, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2427, - "firstMeaningfulPaint": 2525, - "largestContentfulPaint": 2677, - "interactive": 2677, - "speedIndex": 2777, - "totalBlockingTime": 62, - "maxPotentialFID": 174, - "cumulativeLayoutShift": 0.03651063368055556, - "cumulativeLayoutShiftMainFrame": 0.03651063368055556, - "totalCumulativeLayoutShift": 0.03651063368055556, + "firstContentfulPaint": 2438, + "firstMeaningfulPaint": 2530, + "largestContentfulPaint": 2683, + "interactive": 2698, + "speedIndex": 2775, + "totalBlockingTime": 67, + "maxPotentialFID": 183, + "cumulativeLayoutShift": 0.03899305555555556, + "cumulativeLayoutShiftMainFrame": 0.03899305555555556, + "totalCumulativeLayoutShift": 0.03899305555555556, "observedTimeOrigin": 0, - "observedTimeOriginTs": 287172155, + "observedTimeOriginTs": 236161231, "observedNavigationStart": 0, - "observedNavigationStartTs": 287172155, + "observedNavigationStartTs": 236161231, "observedFirstPaint": 833, - "observedFirstPaintTs": 288005078, + "observedFirstPaintTs": 236994460, "observedFirstContentfulPaint": 833, - "observedFirstContentfulPaintTs": 288005078, + "observedFirstContentfulPaintTs": 236994460, "observedFirstContentfulPaintAllFrames": 833, - "observedFirstContentfulPaintAllFramesTs": 288005078, + "observedFirstContentfulPaintAllFramesTs": 236994460, "observedFirstMeaningfulPaint": 833, - "observedFirstMeaningfulPaintTs": 288005078, + "observedFirstMeaningfulPaintTs": 236994460, "observedLargestContentfulPaint": 833, - "observedLargestContentfulPaintTs": 288005078, + "observedLargestContentfulPaintTs": 236994460, "observedLargestContentfulPaintAllFrames": 833, - "observedLargestContentfulPaintAllFramesTs": 288005078, + "observedLargestContentfulPaintAllFramesTs": 236994460, "observedTraceEnd": 3415, - "observedTraceEndTs": 290587602, + "observedTraceEndTs": 239576412, "observedLoad": 1108, - "observedLoadTs": 288280301, - "observedDomContentLoaded": 816, - "observedDomContentLoadedTs": 287988022, - "observedCumulativeLayoutShift": 0.03651063368055556, - "observedCumulativeLayoutShiftMainFrame": 0.03651063368055556, - "observedTotalCumulativeLayoutShift": 0.03651063368055556, - "observedFirstVisualChange": 832, - "observedFirstVisualChangeTs": 288004155, - "observedLastVisualChange": 1266, - "observedLastVisualChangeTs": 288438155, - "observedSpeedIndex": 855, - "observedSpeedIndexTs": 288027478 + "observedLoadTs": 237269337, + "observedDomContentLoaded": 817, + "observedDomContentLoadedTs": 236977803, + "observedCumulativeLayoutShift": 0.03899305555555556, + "observedCumulativeLayoutShiftMainFrame": 0.03899305555555556, + "observedTotalCumulativeLayoutShift": 0.03899305555555556, + "observedFirstVisualChange": 845, + "observedFirstVisualChangeTs": 237006231, + "observedLastVisualChange": 1262, + "observedLastVisualChangeTs": 237423231, + "observedSpeedIndex": 867, + "observedSpeedIndexTs": 237028018 }, { "lcpInvalidated": false @@ -214509,19 +216636,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 593, + "numTasks": 599, "numTasksOver10ms": 2, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 83.577, - "throughput": 19808912.789595626, - "maxRtt": 85.51100000000001, - "maxServerLatency": 9.632000000000005, - "totalByteWeight": 686983, - "totalTaskTime": 199.47399999999888, - "mainDocumentTransferSize": 1482 + "rtt": 82.838, + "throughput": 15221579.833421765, + "maxRtt": 85.552, + "maxServerLatency": 1.7209999999999894, + "totalByteWeight": 687163, + "totalTaskTime": 197.95199999999878, + "mainDocumentTransferSize": 1481 } ] } @@ -214629,8 +216756,8 @@ "sonarcloud": null, "summary": { "httpGrade": "D+", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.989, + "apdexGrade": "B", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "C", @@ -214669,7 +216796,7 @@ "http": { "url": "https://mesevenementsemploi.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:03:54 GMT", + "end_time": "Sun, 24 Dec 2023 06:51:02 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -214680,14 +216807,14 @@ "Content-Encoding": "gzip", "Content-Length": "1332", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 07:03:53 GMT", + "Date": "Sun, 24 Dec 2023 06:51:00 GMT", "Last-Modified": "Tue, 05 Dec 2023 16:06:11 GMT", - "Set-Cookie": "TS01e1f9f1=01b3abf0a2eb3e7db1c9f1e4e0ef57a429efa3c0160fc6a483f0ca94a08b8d4e9fb09db93602aded71fab42cb4dd666aab7fc34105; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", + "Set-Cookie": "TS01e1f9f1=01b3abf0a2c1f7c42e4f6304170333c197e7074e6c45d92f07796424fa81bb7b1457f4b1c865df5dc6207bcb97dc8d0d3a4b1fdc13; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", "Vary": "Accept-Encoding" }, - "scan_id": 45544872, + "scan_id": 45760579, "score": 20, - "start_time": "Sun, 17 Dec 2023 07:03:50 GMT", + "start_time": "Sun, 24 Dec 2023 06:47:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -215233,7 +217360,7 @@ "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "128 >= 60 days" + "finding": "121 >= 60 days" }, { "id": "cert_notBefore", @@ -216010,11 +218137,11 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lq9564i6iabnqrpz" + "url": "https://hd.pe.fr/event?s=620985&idclient=lqj4sfu0bg8s6sak" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lq9564i6iabnqrpz" + "url": "https://hd.pe.fr/event?s=620985&idclient=lqj4sfu0bg8s6sak" }, { "type": "google fonts", @@ -216050,11 +218177,11 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=389&version=1847960380" + "url": "https://hd.pe.fr/event?s=620985&idclient=lqj4sfu0bg8s6sak" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lq9564i6iabnqrpz" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=403&version=1847960380" }, { "type": "google fonts", @@ -216074,39 +218201,29 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/engine?pkgId=389&version=-1244703445" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/engine?pkgId=403&version=-1781372008" + }, + { + "type": "unknown", + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/data?pkgId=403&applicationLang=fr" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/data?pkgId=389&applicationLang=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/service/modalEmbeddedMessageService/fond.png" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn242&u=hvu4qa5tuuq&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1702796668673&tl=fr&al=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn242&u=7arxvt1rru&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1703400691988&tl=fr&al=fr" } ], "cookies": [ - { - "name": "ADRUM_BTa", - "value": "R:75|g:d219dab2-8dd0-408d-96a6-d655b1d9f4c7|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", - "domain": "mesevenementsemploi.pole-emploi.fr", - "path": "/", - "expires": 1702796696.947194, - "size": 103, - "httpOnly": false, - "secure": false, - "session": false, - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, { "name": "TS01e1f9f1", - "value": "01b3abf0a2769a951f796f219742831d164326ea85dc83086c706005795a68fa6860fe5208746ad058b3511d98ea4a4c0db78bfd0bcfb05b56661411c2e90a639880fb8d3e87ae4dca06c00daedc7f29a1c4cffd9dde6b94ce8fd645948345753e8c7bc6801d3d2e44455d42f6dd79ac710a25c19e087dd9e2260cbde0eff8a4972529aa02", + "value": "01b3abf0a27449670c1b34d25a4ade2e0b58129e8a85ae9ac62d3801eb2c75baf8ef28f45b4426a1e32e0bb0565239063a7b044e6e", "domain": ".mesevenementsemploi.pole-emploi.fr", "path": "/", "expires": -1, - "size": 276, + "size": 116, "httpOnly": true, "secure": true, "session": true, @@ -216115,12 +218232,12 @@ "sourcePort": 443 }, { - "name": "ADRUM_BTs", - "value": "R:75|s:f", + "name": "ADRUM_BTa", + "value": "R:75|g:0673794e-b019-4b0f-95a0-56a92e1cb42f|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1702796696.692321, - "size": 17, + "expires": 1703400720.027699, + "size": 103, "httpOnly": false, "secure": false, "session": false, @@ -216133,7 +218250,7 @@ "value": "None", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1702796696.947215, + "expires": 1703400720.027718, "size": 12, "httpOnly": false, "secure": true, @@ -216144,11 +218261,11 @@ }, { "name": "TCPID", - "value": "12312074265732451060", + "value": "123120651296781059742", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736751866, - "size": 25, + "expires": 1737355889, + "size": 26, "httpOnly": false, "secure": false, "session": false, @@ -216159,10 +218276,10 @@ }, { "name": "_pcid", - "value": "%7B%22browserId%22%3A%22lq9564i6iabnqrpz%22%2C%22_t%22%3A%22m5xk3lue%22%7D", + "value": "%7B%22browserId%22%3A%22lqj4sfu0bg8s6sak%22%2C%22_t%22%3A%22m67jpx6a%22%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736924666, + "expires": 1737528689, "size": 79, "httpOnly": false, "secure": true, @@ -216174,11 +218291,11 @@ }, { "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAKwAPANYBmVGABmIAL5A", + "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAGwB2AFYAHAB6CARiAC%2BQA", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736924666, - "size": 96, + "expires": 1737528689, + "size": 100, "httpOnly": false, "secure": true, "session": false, @@ -216192,7 +218309,7 @@ "value": "%7B%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736924666, + "expires": 1737528689, "size": 13, "httpOnly": false, "secure": true, @@ -216204,11 +218321,11 @@ }, { "name": "ADRUM_BT1", - "value": "R:75|i:2321403", + "value": "R:75|i:2321410|e:162", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1702796696.94723, - "size": 23, + "expires": 1703400720.027756, + "size": 29, "httpOnly": false, "secure": false, "session": false, @@ -216221,7 +218338,7 @@ "value": "%22optin%22", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1736924666, + "expires": 1737528689, "size": 21, "httpOnly": false, "secure": true, @@ -216239,9 +218356,9 @@ "content-encoding": "gzip", "content-length": "1332", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 07:04:25 GMT", + "date": "Sun, 24 Dec 2023 06:51:28 GMT", "last-modified": "Tue, 05 Dec 2023 16:06:11 GMT", - "set-cookie": "TS01e1f9f1=01b3abf0a25024178ce57dfbcce2959a3999759047dc83086c706005795a68fa6860fe5208f789bfcafef3e8e797af27faf9199c94; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", + "set-cookie": "TS01e1f9f1=01b3abf0a27449670c1b34d25a4ade2e0b58129e8a85ae9ac62d3801eb2c75baf8ef28f45b4426a1e32e0bb0565239063a7b044e6e; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", "vary": "Accept-Encoding" }, "endpoints": [ @@ -216303,7 +218420,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.115.95", + "ip": "142.251.16.95", "geoip": { "continent": { "code": "NA", @@ -216357,7 +218474,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.122.94", + "ip": "172.253.63.94", "geoip": { "continent": { "code": "NA", @@ -216479,7 +218596,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.10", + "ip": "54.230.163.47", "geoip": { "continent": { "code": "NA", @@ -216657,7 +218774,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "52.47.146.33", + "ip": "13.37.40.156", "geoip": { "city": { "geoname_id": 2988507, @@ -216751,7 +218868,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.42", + "ip": "18.160.18.49", "geoip": { "continent": { "code": "NA", @@ -216973,7 +219090,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:03:23", + "@generated": "Sun, 24 Dec 2023 06:47:23", "site": [ { "@name": "https://mesevenementsemploi.pole-emploi.fr", @@ -217118,661 +219235,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mesevenementsemploi.pole-emploi.fr.", - "matched-at": "mesevenementsemploi.pole-emploi.fr", - "timestamp": "2023-12-17T07:06:25.993823172Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612030908Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612071374Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612085871Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612100378Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612139411Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612153958Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.61216572Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612177632Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612192009Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:17.612205835Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/external-service-interaction.yaml", - "template-url": "https://templates.nuclei.sh/public/external-service-interaction", - "template-id": "external-service-interaction", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/external-service-interaction.yaml", - "info": { - "name": "External Service Interaction", - "author": [ - "andreluna" - ], - "tags": [ - "http", - "misc", - "oast" - ], - "description": "External Service interaction via Host Header Injection.", - "reference": [ - "https://portswigger.net/kb/issues/00300210_external-service-interaction-http", - "https://success.qualys.com/support/s/article/000006843", - "https://owasp.org/www-project-web-security-testing-guide/latest/4-web_application_security_testing/07-input_validation_testing/17-testing_for_host_header_injection" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-918", - "cwe-406" - ] - } - }, - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:33.002790319Z", - "interaction": { - "protocol": "dns", - "unique-id": "clv9rskqhqmfbgcchge0pbmormni85w4h", - "full-id": "clv9rskqhqmfbgcchge0pbmormni85w4h", - "q-type": "A", - "raw-request": ";; opcode: QUERY, status: NOERROR, id: 3579\n;; flags:; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags: do; udp: 1224\n\n;; QUESTION SECTION:\n;clv9rskqhqmfbgcchge0pbmormni85w4h.oast.live.\tIN\t A\n", - "raw-response": ";; opcode: QUERY, status: NOERROR, id: 3579\n;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2\n\n;; QUESTION SECTION:\n;clv9rskqhqmfbgcchge0pbmormni85w4h.oast.live.\tIN\t A\n\n;; ANSWER SECTION:\nclv9rskqhqmfbgcchge0pbmormni85w4h.oast.live.\t3600\tIN\tA\t178.128.210.172\n\n;; AUTHORITY SECTION:\nclv9rskqhqmfbgcchge0pbmormni85w4h.oast.live.\t3600\tIN\tNS\tns1.oast.live.\nclv9rskqhqmfbgcchge0pbmormni85w4h.oast.live.\t3600\tIN\tNS\tns2.oast.live.\n\n;; ADDITIONAL SECTION:\nns1.oast.live.\t3600\tIN\tA\t178.128.210.172\nns2.oast.live.\t3600\tIN\tA\t178.128.210.172\n", - "remote-address": "40.78.225.233", - "timestamp": "2023-12-17T07:07:27.907724867Z" - }, - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'Host: clv9rskqhqmfbgcchge0pbmormni85w4h.oast.live' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/bigip-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/bigip-detect", - "template-id": "bigip-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/bigip-detect.yaml", - "info": { - "name": "BIGIP - Detection", - "author": [ - "pr3r00t", - "0x240x23elu" - ], - "tags": [ - "bigip", - "tech", - "f5" - ], - "reference": [ - "https://www.intelisecure.com/how-to-decode-big-ip-f5-persistence-cookie-values", - "https://support.f5.com/csp/article/k23254150" - ], - "severity": "info", - "metadata": { - "max-request": 2 - } - }, - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:39.397562617Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "bigip", - "type": "http", - "host": "https://mesevenementsemploi.pole-emploi.fr", - "matched-at": "https://mesevenementsemploi.pole-emploi.fr/", - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:07:43.22967702Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mesevenementsemploi.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mesevenementsemploi.pole-emploi.fr", - "matched-at": "mesevenementsemploi.pole-emploi.fr:443", - "extracted-results": [ - "Entrust, Inc." - ], - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:12:28.577845865Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mesevenementsemploi.pole-emploi.fr", - "matched-at": "mesevenementsemploi.pole-emploi.fr:443", - "extracted-results": [ - "mesevenementsemploi.pole-emploi.fr", - "www.mesevenementsemploi.pole-emploi.fr" - ], - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:12:28.578088468Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mesevenementsemploi.pole-emploi.fr", - "matched-at": "mesevenementsemploi.pole-emploi.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:12:29.974002338Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mesevenementsemploi.pole-emploi.fr", - "matched-at": "mesevenementsemploi.pole-emploi.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "185.215.64.42", - "timestamp": "2023-12-17T07:12:30.179263867Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://mesevenementsemploi.pole-emploi.fr/", "finalUrl": "https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/", - "fetchTime": "2023-12-17T07:03:38.638Z", + "fetchTime": "2023-12-24T06:47:37.606Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mesevenementsemploi.pole-emploi.fr/) was redirected to https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/. Try testing the second URL directly." ], @@ -217785,7 +219253,7 @@ "snapshot" ], "id": "performance", - "score": 0.6630634307861328 + "score": 0.609858512878418 }, "accessibility": { "title": "Accessibility", @@ -217817,7 +219285,7 @@ "snapshot" ], "id": "seo", - "score": 0.92 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -217837,53 +219305,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10085, + "numericValue": 9937, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5166, - "firstMeaningfulPaint": 5532, - "largestContentfulPaint": 9920, - "interactive": 10085, - "speedIndex": 8928, - "totalBlockingTime": 253, - "maxPotentialFID": 195, - "cumulativeLayoutShift": 0.21315553686353897, - "cumulativeLayoutShiftMainFrame": 0.21315553686353897, - "totalCumulativeLayoutShift": 0.21315553686353897, + "firstContentfulPaint": 5170, + "firstMeaningfulPaint": 5531, + "largestContentfulPaint": 9799, + "interactive": 9937, + "speedIndex": 12823, + "totalBlockingTime": 222, + "maxPotentialFID": 168, + "cumulativeLayoutShift": 0.18029417588975696, + "cumulativeLayoutShiftMainFrame": 0.18029417588975696, + "totalCumulativeLayoutShift": 0.18029417588975696, "observedTimeOrigin": 0, - "observedTimeOriginTs": 217201012, + "observedTimeOriginTs": 434561136, "observedNavigationStart": 0, - "observedNavigationStartTs": 217201012, - "observedFirstPaint": 1679, - "observedFirstPaintTs": 218880099, - "observedFirstContentfulPaint": 1679, - "observedFirstContentfulPaintTs": 218880099, - "observedFirstContentfulPaintAllFrames": 1679, - "observedFirstContentfulPaintAllFramesTs": 218880099, - "observedFirstMeaningfulPaint": 2090, - "observedFirstMeaningfulPaintTs": 219291044, - "observedLargestContentfulPaint": 2055, - "observedLargestContentfulPaintTs": 219255687, - "observedLargestContentfulPaintAllFrames": 2055, - "observedLargestContentfulPaintAllFramesTs": 219255687, - "observedTraceEnd": 4737, - "observedTraceEndTs": 221938116, - "observedLoad": 2431, - "observedLoadTs": 219632448, - "observedDomContentLoaded": 1320, - "observedDomContentLoadedTs": 218520871, - "observedCumulativeLayoutShift": 0.21315553686353897, - "observedCumulativeLayoutShiftMainFrame": 0.21315553686353897, - "observedTotalCumulativeLayoutShift": 0.21315553686353897, - "observedFirstVisualChange": 1690, - "observedFirstVisualChangeTs": 218891012, - "observedLastVisualChange": 2156, - "observedLastVisualChangeTs": 219357012, - "observedSpeedIndex": 1796, - "observedSpeedIndexTs": 218997406 + "observedNavigationStartTs": 434561136, + "observedFirstPaint": 1721, + "observedFirstPaintTs": 436281924, + "observedFirstContentfulPaint": 1721, + "observedFirstContentfulPaintTs": 436281924, + "observedFirstContentfulPaintAllFrames": 1721, + "observedFirstContentfulPaintAllFramesTs": 436281924, + "observedFirstMeaningfulPaint": 2179, + "observedFirstMeaningfulPaintTs": 436740550, + "observedLargestContentfulPaint": 2014, + "observedLargestContentfulPaintTs": 436575212, + "observedLargestContentfulPaintAllFrames": 2014, + "observedLargestContentfulPaintAllFramesTs": 436575212, + "observedTraceEnd": 4817, + "observedTraceEndTs": 439377740, + "observedLoad": 2510, + "observedLoadTs": 437071554, + "observedDomContentLoaded": 1350, + "observedDomContentLoadedTs": 435910951, + "observedCumulativeLayoutShift": 0.18029417588975696, + "observedCumulativeLayoutShiftMainFrame": 0.18029417588975696, + "observedTotalCumulativeLayoutShift": 0.18029417588975696, + "observedFirstVisualChange": 1721, + "observedFirstVisualChangeTs": 436282136, + "observedLastVisualChange": 4371, + "observedLastVisualChangeTs": 438932136, + "observedSpeedIndex": 3729, + "observedSpeedIndexTs": 438290634 }, { "lcpInvalidated": false @@ -217901,22 +219369,22 @@ "type": "debugdata", "items": [ { - "numRequests": 53, + "numRequests": 54, "numScripts": 15, "numStylesheets": 5, "numFonts": 3, - "numTasks": 1135, - "numTasksOver10ms": 8, - "numTasksOver25ms": 3, + "numTasks": 1154, + "numTasksOver10ms": 9, + "numTasksOver25ms": 2, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.355, - "throughput": 6375628.263601565, - "maxRtt": 93.264, - "maxServerLatency": 12.330000000000002, - "totalByteWeight": 2028662, - "totalTaskTime": 403.3339999999985, + "rtt": 5.136, + "throughput": 5996234.206277154, + "maxRtt": 97.115, + "maxServerLatency": 10.674000000000003, + "totalByteWeight": 2045465, + "totalTaskTime": 396.2479999999978, "mainDocumentTransferSize": 1810 } ] @@ -218018,16 +219486,16 @@ "testsslExpireDate": "2024-04-23T10:07:00.000Z", "testsslGrade": "A", "cookiesGrade": "E", - "cookiesCount": 10, + "cookiesCount": 9, "trackersGrade": "F", - "trackersCount": 23, - "lighthouse_performance": 0.6630634307861328, + "trackersCount": 24, + "lighthouse_performance": 0.609858512878418, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, + "lighthouse_seo": 0.85, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", @@ -218047,7 +219515,7 @@ "http": { "url": "https://mobilic.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:32:26 GMT", + "end_time": "Sun, 24 Dec 2023 04:45:07 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -218056,7 +219524,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 04:32:25 GMT", + "Date": "Sun, 24 Dec 2023 04:45:06 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -218064,9 +219532,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45540257, + "scan_id": 45756296, "score": 75, - "start_time": "Sun, 17 Dec 2023 04:32:21 GMT", + "start_time": "Sun, 24 Dec 2023 04:45:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -218251,15 +219719,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T07:11:01Z", - "next_check_at": "2023-12-17T07:15:59Z", + "last_check_at": "2023-12-24T06:56:51Z", + "next_check_at": "2023-12-24T07:01:48Z", "mute_until": null, - "favicon_url": "https://mobilic.beta.gouv.fr/logos/logo180.png", + "favicon_url": "https://mobilic.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T06:51:11Z", + "tested_at": "2023-12-24T06:27:01Z", "expires_at": "2024-02-13T15:13:20Z", "valid": true, "error": null @@ -218268,11 +219736,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 188, - "connection": 143, - "handshake": 149, - "response": 188, - "total": 667 + "namelookup": 92, + "connection": 79, + "handshake": 86, + "response": 97, + "total": 354 } }, "uptimeGrade": "A", @@ -218305,77 +219773,77 @@ "testssl": [ { "id": "service", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218383,7 +219851,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218391,7 +219859,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218399,7 +219867,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -218407,7 +219875,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -218415,7 +219883,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -218423,490 +219891,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "047DAD3307A7B3BE0A13FF8E7D1F992A04B7" }, { "id": "cert_serialNumberLen", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "0398AB062AA5F20124A35A92A1C85E4EC3AD08F8" }, { "id": "cert_fingerprintSHA256", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "D4C4E1252206EA85451BDC3811CED02C892669AFEB65A5978644627048F4FD72" }, { "id": "cert", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "2023-11-15 15:13" }, { "id": "cert_notAfter", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "2024-02-13 15:13" }, { "id": "cert_extlifeSpan", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", - "finding": "1702796874" + "finding": "1703400973" }, { "id": "HSTS_time", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -218914,7 +220382,7 @@ }, { "id": "heartbleed", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -218923,7 +220391,7 @@ }, { "id": "CCS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -218932,7 +220400,7 @@ }, { "id": "ticketbleed", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -218941,7 +220409,7 @@ }, { "id": "ROBOT", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -218950,7 +220418,7 @@ }, { "id": "secure_renego", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -218958,7 +220426,7 @@ }, { "id": "secure_client_renego", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -218967,7 +220435,7 @@ }, { "id": "CRIME_TLS", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -218976,7 +220444,7 @@ }, { "id": "BREACH", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -218985,7 +220453,7 @@ }, { "id": "POODLE_SSL", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -218994,14 +220462,14 @@ }, { "id": "fallback_SCSV", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -219010,7 +220478,7 @@ }, { "id": "FREAK", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -219019,7 +220487,7 @@ }, { "id": "DROWN", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -219028,7 +220496,7 @@ }, { "id": "DROWN_hint", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -219037,7 +220505,7 @@ }, { "id": "LOGJAM", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -219046,7 +220514,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -219055,7 +220523,7 @@ }, { "id": "BEAST", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -219064,7 +220532,7 @@ }, { "id": "LUCKY13", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -219073,7 +220541,7 @@ }, { "id": "winshock", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -219082,7 +220550,7 @@ }, { "id": "RC4", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -219091,325 +220559,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mobilic.beta.gouv.fr/185.231.167.184", + "ip": "mobilic.beta.gouv.fr/185.179.148.183", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "61" } ], "thirdparties": { @@ -219468,7 +220936,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219476,7 +220944,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219484,7 +220952,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219492,7 +220960,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219500,7 +220968,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219508,7 +220976,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219516,7 +220984,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219524,7 +220992,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219532,7 +221000,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219540,7 +221008,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219548,7 +221016,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219556,7 +221024,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219564,7 +221032,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219572,7 +221040,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219580,7 +221048,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219588,7 +221056,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219596,7 +221064,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219604,7 +221072,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219612,7 +221080,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=80&q=85", + "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219620,7 +221088,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=80&q=85", + "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219636,7 +221104,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349912-16d3ffad0ff4cd5e46c6be5ad1c98e19196450202c75f3f448f5e51038238ba8-d?mw=80&q=85", + "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219644,7 +221112,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.16/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219652,7 +221120,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -219660,7 +221128,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.16/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -219668,7 +221136,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.15/css/player.css", + "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219676,7 +221144,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737351156-805f8c946e43d69f73f3ad782f68fa953d125268f3cb006162bef1d5dd879517-d?mw=80&q=85", + "url": "https://i.vimeocdn.com/video/1737349912-16d3ffad0ff4cd5e46c6be5ad1c98e19196450202c75f3f448f5e51038238ba8-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219684,7 +221152,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=80&q=85", + "url": "https://i.vimeocdn.com/video/1737351156-805f8c946e43d69f73f3ad782f68fa953d125268f3cb006162bef1d5dd879517-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -219716,7 +221184,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=a3f2858e30d594c29f3f46cdf43307e899c148de1702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e58a7b8aefd2debf7e69a00f27e46286b364a42c1703400920", "details": { "id": "vimeo", "message": "use peertube" @@ -219740,7 +221208,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e5b5cfef0493e86232521886f4976878970840421702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=61ff5a891e0ff96236e21431f1bfbd83ec6b80521703400920", "details": { "id": "vimeo", "message": "use peertube" @@ -219764,7 +221232,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=0fd73c7b98b5fbb1079023376a5b22ee3f92cad01702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=0a88b7e7b4d4145ef5665f5a53a3da9661b0a55a1703400920", "details": { "id": "vimeo", "message": "use peertube" @@ -219780,7 +221248,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349912-16d3ffad0ff4cd5e46c6be5ad1c98e19196450202c75f3f448f5e51038238ba8-d?mw=400&mh=393", + "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=400&mh=393", "details": { "id": "vimeo", "message": "use peertube" @@ -219788,7 +221256,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=cf3810357e2bf9406a22b7e2c482cea12f0076341702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=a50fedad489bbe40eaad086e6af765c8c77cfb221703400920", "details": { "id": "vimeo", "message": "use peertube" @@ -219812,12 +221280,16 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=86f3d1cdd5a1d431419c8bac9930bf9c583dbe8b1702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=fb25691bf909e7c03a7b806c92bb988fbc8c7be51703400920", "details": { "id": "vimeo", "message": "use peertube" } }, + { + "type": "unknown", + "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-6-55" + }, { "type": "vimeo", "url": "https://f.vimeocdn.com/js_opt/modules/utils/vuid.min.js", @@ -219836,16 +221308,12 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=9d1069fb51658a1b14d9f4573a96e8583a028c1f1702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=20c8a60f80959f2a9fe3d95216031f7a2607d6261703400920", "details": { "id": "vimeo", "message": "use peertube" } }, - { - "type": "unknown", - "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-7-7" - }, { "type": "vimeo", "url": "https://f.vimeocdn.com/js_opt/modules/utils/vuid.min.js", @@ -219856,7 +221324,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=400&mh=393", + "url": "https://i.vimeocdn.com/video/1737349912-16d3ffad0ff4cd5e46c6be5ad1c98e19196450202c75f3f448f5e51038238ba8-d?mw=400&mh=393", "details": { "id": "vimeo", "message": "use peertube" @@ -219864,7 +221332,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=f3d6b9198a181fd98d99104fbbffe6a63af5239a1702796824", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=352b40e59735f7b77f98a8706c095c06d56fcf5c1703400920", "details": { "id": "vimeo", "message": "use peertube" @@ -219872,11 +221340,11 @@ }, { "type": "unknown", - "url": "https://vimeo.com/ablincoln/vuid?pid=a3f2858e30d594c29f3f46cdf43307e899c148de1702796824" + "url": "https://vimeo.com/ablincoln/vuid?pid=e58a7b8aefd2debf7e69a00f27e46286b364a42c1703400920" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1702572610416" + "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1703153878994" }, { "type": "unknown", @@ -219889,7 +221357,7 @@ "value": "1", "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1702798625, + "expires": 1703402720, "size": 17, "httpOnly": false, "secure": false, @@ -219901,10 +221369,10 @@ }, { "name": "_pk_id.163.5533", - "value": "c9200230c04deef1.1702796825.", + "value": "f54b8313466d7425.1703400921.", "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1736752025, + "expires": 1737356121, "size": 43, "httpOnly": false, "secure": false, @@ -219916,10 +221384,10 @@ }, { "name": "bln_challengejs", - "value": "8X-ZEyC27UxRwgek1s-dx7POhedWfCf1uEOCMGvDBPuODlsyW_NpwgG_86Reo9QdhtgtAbqCpGqmPg-59BM2nMJ89cDfgYgu3AIZi9x6ZyCuu9EUjoKyzi-bgkyLywU4m1fn1Bu9RU5mgReca_bbklN8AjBwpBda_KkD4rblAxF4yDp6fKlFqNFfjIcIcY_eXcEe6eD4WgFsX_KEOKaaZePwXZuZARW6tEnXJmgz4O0Oud76r2EZguyqjCydD40goOblfrOPQPrWoHVZtF5_ew", + "value": "LPz5PpULV8YGt2ZpzFErRZjyo3zmhK2lxhx6feh1iPcza1ZgRbjtiXWrrBeWHqASLOwa5il3wSyXkJQaEPGvzNJg9-LA-Km0WvjzkWhrQ0mx9xC-3Z6HvVHdxhxrTKgkRPs6MyAiTXlccLqTZKNEkMaMW6mFf8ACy5OKuzWWJjOiuqk2_-7OwcyOkwwKsgzCAY10qh0jfa9KmxJMxlL4Bg_pUvm18Fn4eXRO0gqb3DUwsAPjX1DxytETZRmi-obz4pxoyyJ8jh4kRFJD9Nj0kA", "domain": ".beta.gouv.fr", "path": "/", - "expires": 1702797723.436718, + "expires": 1703401817.905273, "size": 293, "httpOnly": false, "secure": false, @@ -219934,25 +221402,25 @@ "age": "0", "cache-control": "max-age=0", "content-encoding": "gzip", - "content-security-policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.data.gouv.fr https://client.axept.io/ https://api.axept.io; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.data.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://stats.data.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/;", + "content-security-policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.data.gouv.fr https://client.axept.io/ https://api.axept.io; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.data.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.data.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 07:07:03 GMT", - "etag": "W/\"657753b9-c6f\"", - "last-modified": "Mon, 11 Dec 2023 18:23:53 GMT", + "date": "Sun, 24 Dec 2023 06:55:19 GMT", + "etag": "W/\"6580868d-c6f\"", + "last-modified": "Mon, 18 Dec 2023 17:51:09 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "deny", - "x-request-id": "a4bad4123e87fcf536589a769e2f200a", - "x-varnish": "23782920", + "x-request-id": "2e50531a33b249b489be587da9d2dee6", + "x-varnish": "20682332", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "mobilic.beta.gouv.fr", - "ip": "185.231.167.184", + "ip": "185.179.148.183", "geoip": { "continent": { "code": "EU", @@ -220008,7 +221476,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.63.95", + "ip": "142.251.32.10", "geoip": { "continent": { "code": "NA", @@ -220062,15 +221530,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", + "ip": "146.75.77.229", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 4887398, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -220103,13 +221575,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20190" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, @@ -220127,15 +221599,16 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -220233,8 +221706,42 @@ }, { "hostname": "client.crisp.chat", - "ip": "104.18.34.181", + "ip": "172.64.153.75", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -220273,15 +221780,19 @@ }, { "hostname": "f.vimeocdn.com", - "ip": "146.75.38.109", + "ip": "146.75.78.109", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 4887398, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -220314,13 +221825,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20190" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, @@ -220338,15 +221849,16 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -220354,15 +221866,19 @@ }, { "hostname": "i.vimeocdn.com", - "ip": "146.75.36.217", + "ip": "146.75.76.217", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 4887398, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -220395,13 +221911,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20190" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, @@ -220419,15 +221935,16 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -220605,7 +222122,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:05:40", + "@generated": "Sun, 24 Dec 2023 06:53:49", "site": [ { "@name": "https://mobilic.beta.gouv.fr", @@ -220702,41 +222219,6 @@ ] }, "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mobilic.beta.gouv.fr.", - "matched-at": "mobilic.beta.gouv.fr", - "timestamp": "2023-12-17T07:09:18.78473417Z", - "matcher-status": true - }, { "template": "dns/mx-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", @@ -220774,7 +222256,7 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T07:09:19.699132409Z", + "timestamp": "2023-12-24T06:57:41.406795652Z", "matcher-status": true }, { @@ -220814,7 +222296,42 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T07:09:19.701146931Z", + "timestamp": "2023-12-24T06:57:41.597630165Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "mobilic.beta.gouv.fr.", + "matched-at": "mobilic.beta.gouv.fr", + "timestamp": "2023-12-24T06:57:41.676266608Z", "matcher-status": true }, { @@ -220847,10 +222364,10 @@ "host": "mobilic.beta.gouv.fr.", "matched-at": "mobilic.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T07:09:19.859591645Z", + "timestamp": "2023-12-24T06:57:42.387699055Z", "matcher-status": true }, { @@ -220886,10 +222403,10 @@ "host": "mobilic.beta.gouv.fr.", "matched-at": "mobilic.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"brevo-code:e54d286e740248bbb7abb72db6a1a5c4\"" + "\"brevo-code:e54d286e740248bbb7abb72db6a1a5c4\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T07:09:19.934097968Z", + "timestamp": "2023-12-24T06:57:42.609015081Z", "matcher-status": true }, { @@ -220928,8 +222445,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:09:30.520175154Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:57:54.915813613Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -220955,8 +222472,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:09:54.216930501Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:20.805102607Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -220992,8 +222509,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293756482Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.933884131Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221029,8 +222546,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293808499Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.933943341Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221066,8 +222583,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293830901Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.933964881Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221103,8 +222620,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293849224Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.933981522Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221140,8 +222657,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293865124Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.934225279Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221177,8 +222694,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293882316Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.934272698Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221214,8 +222731,8 @@ "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:10:03.293897003Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T06:58:30.934293025Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -221230,7 +222747,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -221244,8 +222762,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:12:06.382977958Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T07:00:38.353928501Z", "matcher-status": true }, { @@ -221259,7 +222777,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -221273,8 +222792,8 @@ "extracted-results": [ "mobilic.beta.gouv.fr" ], - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:12:06.383082442Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T07:00:38.354046061Z", "matcher-status": true }, { @@ -221289,7 +222808,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -221303,8 +222823,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:12:08.336495421Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T07:00:39.997894542Z", "matcher-status": true }, { @@ -221319,7 +222839,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -221333,8 +222854,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.231.167.184", - "timestamp": "2023-12-17T07:12:08.537623379Z", + "ip": "185.179.148.183", + "timestamp": "2023-12-24T07:00:40.216941658Z", "matcher-status": true } ], @@ -221342,7 +222863,7 @@ { "requestedUrl": "https://mobilic.beta.gouv.fr/", "finalUrl": "https://mobilic.beta.gouv.fr/", - "fetchTime": "2023-12-17T07:05:54.857Z", + "fetchTime": "2023-12-24T06:54:04.045Z", "runWarnings": [], "categories": { "performance": { @@ -221353,7 +222874,7 @@ "snapshot" ], "id": "performance", - "score": 0.21698131561279296 + "score": 0.21473445892333984 }, "accessibility": { "title": "Accessibility", @@ -221405,53 +222926,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11309, + "numericValue": 11202, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8966, - "firstMeaningfulPaint": 8983, - "largestContentfulPaint": 12612, - "interactive": 11309, - "speedIndex": 8966, - "totalBlockingTime": 1024, - "maxPotentialFID": 241, - "cumulativeLayoutShift": 0.0008294270833333335, - "cumulativeLayoutShiftMainFrame": 0.0008294270833333335, - "totalCumulativeLayoutShift": 0.0008294270833333335, + "firstContentfulPaint": 8740, + "firstMeaningfulPaint": 8752, + "largestContentfulPaint": 12400, + "interactive": 11202, + "speedIndex": 9189, + "totalBlockingTime": 1085, + "maxPotentialFID": 855, + "cumulativeLayoutShift": 0.0008440958658854168, + "cumulativeLayoutShiftMainFrame": 0.0008440958658854168, + "totalCumulativeLayoutShift": 0.0008440958658854168, "observedTimeOrigin": 0, - "observedTimeOriginTs": 214079086, + "observedTimeOriginTs": 705942718, "observedNavigationStart": 0, - "observedNavigationStartTs": 214079086, - "observedFirstPaint": 1315, - "observedFirstPaintTs": 215394108, - "observedFirstContentfulPaint": 1315, - "observedFirstContentfulPaintTs": 215394108, - "observedFirstContentfulPaintAllFrames": 1315, - "observedFirstContentfulPaintAllFramesTs": 215394108, - "observedFirstMeaningfulPaint": 1315, - "observedFirstMeaningfulPaintTs": 215394108, - "observedLargestContentfulPaint": 1584, - "observedLargestContentfulPaintTs": 215663365, - "observedLargestContentfulPaintAllFrames": 1584, - "observedLargestContentfulPaintAllFramesTs": 215663365, - "observedTraceEnd": 4600, - "observedTraceEndTs": 218679516, - "observedLoad": 2292, - "observedLoadTs": 216370694, - "observedDomContentLoaded": 1351, - "observedDomContentLoadedTs": 215430517, - "observedCumulativeLayoutShift": 0.0008294270833333335, - "observedCumulativeLayoutShiftMainFrame": 0.0008294270833333335, - "observedTotalCumulativeLayoutShift": 0.0008294270833333335, - "observedFirstVisualChange": 1312, - "observedFirstVisualChangeTs": 215391086, - "observedLastVisualChange": 4328, - "observedLastVisualChangeTs": 218407086, - "observedSpeedIndex": 2017, - "observedSpeedIndexTs": 216095856 + "observedNavigationStartTs": 705942718, + "observedFirstPaint": 1412, + "observedFirstPaintTs": 707354976, + "observedFirstContentfulPaint": 1412, + "observedFirstContentfulPaintTs": 707354976, + "observedFirstContentfulPaintAllFrames": 1412, + "observedFirstContentfulPaintAllFramesTs": 707354976, + "observedFirstMeaningfulPaint": 1412, + "observedFirstMeaningfulPaintTs": 707354976, + "observedLargestContentfulPaint": 1615, + "observedLargestContentfulPaintTs": 707558035, + "observedLargestContentfulPaintAllFrames": 1615, + "observedLargestContentfulPaintAllFramesTs": 707558035, + "observedTraceEnd": 4670, + "observedTraceEndTs": 710612521, + "observedLoad": 2361, + "observedLoadTs": 708303266, + "observedDomContentLoaded": 1455, + "observedDomContentLoadedTs": 707398009, + "observedCumulativeLayoutShift": 0.0008440958658854168, + "observedCumulativeLayoutShiftMainFrame": 0.0008440958658854168, + "observedTotalCumulativeLayoutShift": 0.0008440958658854168, + "observedFirstVisualChange": 1412, + "observedFirstVisualChangeTs": 707354718, + "observedLastVisualChange": 4428, + "observedLastVisualChangeTs": 710370718, + "observedSpeedIndex": 2117, + "observedSpeedIndexTs": 708059510 }, { "lcpInvalidated": false @@ -221473,19 +222994,19 @@ "numScripts": 27, "numStylesheets": 12, "numFonts": 13, - "numTasks": 2276, - "numTasksOver10ms": 24, - "numTasksOver25ms": 13, + "numTasks": 2285, + "numTasksOver10ms": 23, + "numTasksOver25ms": 15, "numTasksOver50ms": 8, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 3.561, - "throughput": 28057213.28957128, - "maxRtt": 88.21300000000002, - "maxServerLatency": 119.155, - "totalByteWeight": 2532409, - "totalTaskTime": 1791.7260000000115, - "mainDocumentTransferSize": 2080 + "rtt": 1.469, + "throughput": 25578061.203323252, + "maxRtt": 104.859, + "maxServerLatency": 120.091, + "totalByteWeight": 2544189, + "totalTaskTime": 1824.2450000000179, + "mainDocumentTransferSize": 2076 } ] } @@ -221583,7 +223104,7 @@ "cookiesCount": 3, "trackersGrade": "F", "trackersCount": 66, - "lighthouse_performance": 0.21698131561279296, + "lighthouse_performance": 0.21473445892333984, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.94, "lighthouse_accessibilityGrade": "A", @@ -221612,7 +223133,7 @@ "http": { "url": "https://app.moncomptepro.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:08:56 GMT", + "end_time": "Sun, 24 Dec 2023 07:03:37 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -221624,12 +223145,12 @@ "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 07:08:55 GMT", + "Date": "Sun, 24 Dec 2023 07:03:35 GMT", "Expires": "0", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", "Server": "nginx", - "Set-Cookie": "session=s%3APk0um8T1bmgDiMgMr_J-RHCGx4eWTlmk.rFD69ODCA%2FzVl1g6agam9rBtsQLbFBQIcarNfPbvp1w; Path=/; Expires=Mon, 18 Dec 2023 07:08:55 GMT; HttpOnly; Secure; SameSite=Lax", + "Set-Cookie": "session=s%3ACQO-tSa1UkRNARB6ZzzW1SrBgEj_qYA_.ZJnHp84ymtRTE3ykvI9hms5kJIqSjY1du4vmbrRjkaM; Path=/; Expires=Mon, 25 Dec 2023 07:03:35 GMT; HttpOnly; Secure; SameSite=Lax", "Strict-Transport-Security": "max-age=15552000", "Surrogate-Control": "no-store", "Transfer-Encoding": "chunked", @@ -221641,9 +223162,9 @@ "X-Robots-Tag": "noindex,nofollow", "X-XSS-Protection": "0" }, - "scan_id": 45545027, + "scan_id": 45760907, "score": 120, - "start_time": "Sun, 17 Dec 2023 07:08:51 GMT", + "start_time": "Sun, 24 Dec 2023 07:03:32 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -221666,20 +223187,20 @@ "'self'" ], "font-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "form-action": [ - "'self'", - "*" + "*", + "'self'" ], "frame-ancestors": [ "'self'" ], "img-src": [ "stats.data.gouv.fr", - "'self'", - "data:" + "data:", + "'self'" ], "object-src": [ "'none'" @@ -221738,7 +223259,7 @@ "data": { "session": { "domain": "app.moncomptepro.beta.gouv.fr", - "expires": 1702883335, + "expires": 1703487815, "httponly": true, "max-age": null, "path": "/", @@ -221887,42 +223408,42 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", + "version": "8.2p1 Ubuntu 4ubuntu0.10", "vulnerabilities": [ { + "is_exploit": "false", "id": "CVE-2020-15778", "cvss": "6.8", - "is_exploit": "false", "type": "cve" }, { + "is_exploit": "true", "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "cvss": "6.8", - "is_exploit": "true", "type": "githubexploit" }, { + "is_exploit": "true", "id": "10213DBE-F683-58BB-B6D3-353173626207", "cvss": "6.8", - "is_exploit": "true", "type": "githubexploit" }, { + "is_exploit": "false", "id": "PRION:CVE-2020-12062", "cvss": "5.0", - "is_exploit": "false", "type": "prion" }, { + "is_exploit": "false", "id": "PRION:CVE-2016-20012", "cvss": "5.0", - "is_exploit": "false", "type": "prion" }, { + "is_exploit": "false", "id": "CVE-2020-12062", "cvss": "5.0", - "is_exploit": "false", "type": "cve" } ] @@ -222304,7 +223825,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "OK", - "finding": "54 >= 30 days" + "finding": "47 >= 30 days" }, { "id": "cert_notBefore", @@ -222465,7 +223986,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "1702797020" + "finding": "1703401501" }, { "id": "HSTS_time", @@ -223077,7 +224598,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "54" + "finding": "55" } ], "thirdparties": { @@ -223088,7 +224609,7 @@ "value": "1", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1702798766, + "expires": 1703403248, "size": 16, "httpOnly": false, "secure": false, @@ -223100,10 +224621,10 @@ }, { "name": "_pk_id.85.5d49", - "value": "274e2c0952aa37ed.1702796967.", + "value": "b365ae0610309f79.1703401448.", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1736752167, + "expires": 1737356648, "size": 42, "httpOnly": false, "secure": false, @@ -223115,11 +224636,11 @@ }, { "name": "session", - "value": "s%3A4ILigxClD_D-VrNz5tKRH19Ku_Zl1jCM.AK509V6%2F4Olt9Cr%2Fdmmm6G6BaUreNG0KqPOeJAnTQvY", + "value": "s%3A837kdW3rWR7bHl4LH27Gr8uUn4f57umW.O6tN4RnFP5g2YVErY3EyBpKcoVKTHlpo4f0d5Pzm%2FAQ", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1702883365.652519, - "size": 91, + "expires": 1703487847.175311, + "size": 89, "httpOnly": true, "secure": true, "session": false, @@ -223137,12 +224658,12 @@ "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 07:09:25 GMT", + "date": "Sun, 24 Dec 2023 07:04:07 GMT", "expires": "0", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", "server": "nginx", - "set-cookie": "session=s%3A4ILigxClD_D-VrNz5tKRH19Ku_Zl1jCM.AK509V6%2F4Olt9Cr%2Fdmmm6G6BaUreNG0KqPOeJAnTQvY; Path=/; Expires=Mon, 18 Dec 2023 07:09:25 GMT; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "session=s%3A837kdW3rWR7bHl4LH27Gr8uUn4f57umW.O6tN4RnFP5g2YVErY3EyBpKcoVKTHlpo4f0d5Pzm%2FAQ; Path=/; Expires=Mon, 25 Dec 2023 07:04:07 GMT; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=15552000", "surrogate-control": "no-store", "transfer-encoding": "chunked", @@ -223284,7 +224805,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:08:26", + "@generated": "Sun, 24 Dec 2023 07:03:06", "site": [ { "@name": "https://app.moncomptepro.beta.gouv.fr", @@ -223413,7 +224934,7 @@ "type": "dns", "host": "app.moncomptepro.beta.gouv.fr.", "matched-at": "app.moncomptepro.beta.gouv.fr", - "timestamp": "2023-12-17T07:11:25.066264202Z", + "timestamp": "2023-12-24T07:06:07.067966486Z", "matcher-status": true }, { @@ -223442,7 +224963,7 @@ "GET,HEAD" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:11:32.060196708Z", + "timestamp": "2023-12-24T07:06:13.903837251Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223481,7 +225002,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:11:36.746821713Z", + "timestamp": "2023-12-24T07:06:18.618289996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223508,7 +225029,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:00.726690798Z", + "timestamp": "2023-12-24T07:06:42.764118252Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223535,7 +225056,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:00.770407965Z", + "timestamp": "2023-12-24T07:06:42.832263529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223572,7 +225093,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:10.438825161Z", + "timestamp": "2023-12-24T07:06:52.642115036Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223609,7 +225130,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:10.438874123Z", + "timestamp": "2023-12-24T07:06:52.64215468Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223646,7 +225167,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:10.438899259Z", + "timestamp": "2023-12-24T07:06:52.642173555Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -223685,7 +225206,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:12.911342636Z", + "timestamp": "2023-12-24T07:06:55.075543667Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -223713,7 +225234,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:31.469864132Z", + "timestamp": "2023-12-24T07:07:13.874565908Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -223753,7 +225274,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:32.771055142Z", + "timestamp": "2023-12-24T07:07:15.20117584Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.moncomptepro.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/'", "matcher-status": true }, @@ -223793,7 +225314,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/", "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:12:32.77109741Z", + "timestamp": "2023-12-24T07:07:15.201221675Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.moncomptepro.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/'", "matcher-status": true }, @@ -223840,10 +225361,10 @@ "host": "app.moncomptepro.beta.gouv.fr:22", "matched-at": "app.moncomptepro.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:13:21.940338811Z", + "timestamp": "2023-12-24T07:07:56.307797105Z", "matcher-status": true }, { @@ -223857,7 +225378,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -223872,7 +225394,7 @@ "Let's Encrypt" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:14:12.007817678Z", + "timestamp": "2023-12-24T07:08:54.952384379Z", "matcher-status": true }, { @@ -223886,7 +225408,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -223902,7 +225425,7 @@ "auth.api.gouv.fr" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:14:12.007930638Z", + "timestamp": "2023-12-24T07:08:54.952504933Z", "matcher-status": true }, { @@ -223917,7 +225440,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -223932,7 +225456,7 @@ "tls12" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:14:13.534443102Z", + "timestamp": "2023-12-24T07:08:56.145816059Z", "matcher-status": true }, { @@ -223947,7 +225471,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -223962,7 +225487,7 @@ "tls13" ], "ip": "213.32.72.48", - "timestamp": "2023-12-17T07:14:13.733543709Z", + "timestamp": "2023-12-24T07:08:56.337226385Z", "matcher-status": true } ], @@ -223970,7 +225495,7 @@ { "requestedUrl": "https://app.moncomptepro.beta.gouv.fr/", "finalUrl": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", - "fetchTime": "2023-12-17T07:08:40.623Z", + "fetchTime": "2023-12-24T07:03:21.128Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://app.moncomptepro.beta.gouv.fr/) was redirected to https://app.moncomptepro.beta.gouv.fr/users/start-sign-in. Try testing the second URL directly." ], @@ -224035,53 +225560,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5615, + "numericValue": 5601, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5615, - "firstMeaningfulPaint": 5615, - "largestContentfulPaint": 5984, - "interactive": 5615, - "speedIndex": 5615, + "firstContentfulPaint": 5601, + "firstMeaningfulPaint": 5601, + "largestContentfulPaint": 5974, + "interactive": 5601, + "speedIndex": 5601, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0007976561652289495, "cumulativeLayoutShiftMainFrame": 0.0007976561652289495, "totalCumulativeLayoutShift": 0.0007976561652289495, "observedTimeOrigin": 0, - "observedTimeOriginTs": 226228417, + "observedTimeOriginTs": 275479874, "observedNavigationStart": 0, - "observedNavigationStartTs": 226228417, - "observedFirstPaint": 645, - "observedFirstPaintTs": 226873365, - "observedFirstContentfulPaint": 645, - "observedFirstContentfulPaintTs": 226873365, - "observedFirstContentfulPaintAllFrames": 645, - "observedFirstContentfulPaintAllFramesTs": 226873365, - "observedFirstMeaningfulPaint": 645, - "observedFirstMeaningfulPaintTs": 226873365, - "observedLargestContentfulPaint": 645, - "observedLargestContentfulPaintTs": 226873365, - "observedLargestContentfulPaintAllFrames": 645, - "observedLargestContentfulPaintAllFramesTs": 226873365, - "observedTraceEnd": 3302, - "observedTraceEndTs": 229530600, - "observedLoad": 994, - "observedLoadTs": 227222525, + "observedNavigationStartTs": 275479874, + "observedFirstPaint": 684, + "observedFirstPaintTs": 276163970, + "observedFirstContentfulPaint": 684, + "observedFirstContentfulPaintTs": 276163970, + "observedFirstContentfulPaintAllFrames": 684, + "observedFirstContentfulPaintAllFramesTs": 276163970, + "observedFirstMeaningfulPaint": 684, + "observedFirstMeaningfulPaintTs": 276163970, + "observedLargestContentfulPaint": 684, + "observedLargestContentfulPaintTs": 276163970, + "observedLargestContentfulPaintAllFrames": 684, + "observedLargestContentfulPaintAllFramesTs": 276163970, + "observedTraceEnd": 3333, + "observedTraceEndTs": 278812968, + "observedLoad": 1019, + "observedLoadTs": 276498409, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 226228939, + "observedDomContentLoadedTs": 275480564, "observedCumulativeLayoutShift": 0.0007976561652289495, "observedCumulativeLayoutShiftMainFrame": 0.0007976561652289495, "observedTotalCumulativeLayoutShift": 0.0007976561652289495, - "observedFirstVisualChange": 645, - "observedFirstVisualChangeTs": 226873417, - "observedLastVisualChange": 3145, - "observedLastVisualChangeTs": 229373417, - "observedSpeedIndex": 683, - "observedSpeedIndexTs": 226911090 + "observedFirstVisualChange": 659, + "observedFirstVisualChangeTs": 276138874, + "observedLastVisualChange": 3158, + "observedLastVisualChangeTs": 278637874, + "observedSpeedIndex": 696, + "observedSpeedIndexTs": 276175786 }, { "lcpInvalidated": false @@ -224109,13 +225634,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 84.438, - "throughput": 16233773.748676483, - "maxRtt": 85.99, - "maxServerLatency": 10.776999999999987, - "totalByteWeight": 1011184, - "totalTaskTime": 2.1719999999999997, - "mainDocumentTransferSize": 3234 + "rtt": 84.962, + "throughput": 16469462.405474836, + "maxRtt": 85.384, + "maxServerLatency": 6.04500000000003, + "totalByteWeight": 1011463, + "totalTaskTime": 2.248, + "mainDocumentTransferSize": 3241 } ] } @@ -224248,33 +225773,33 @@ "http": { "url": "https://mon-entreprise.urssaf.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:28:27 GMT", - "grade": "D+", + "end_time": "Sun, 24 Dec 2023 07:06:25 GMT", + "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Age": "0", "Cache-Control": "public,max-age=0,must-revalidate", - "Cache-Status": "\"Netlify Edge\"; fwd=stale", + "Cache-Status": "\"Netlify Edge\"; hit", "Content-Encoding": "gzip", + "Content-Length": "11710", "Content-Security-Policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 07:28:27 GMT", - "Etag": "\"4cd0279b40c3707cbf0f3544d5cbb3a5-ssl-df\"", + "Date": "Sun, 24 Dec 2023 07:06:25 GMT", + "Etag": "\"6dd19fb9f3da6efec81d1b30d81962dd-ssl-df\"", "Server": "Netlify", "Strict-Transport-Security": "max-age=31536000", - "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Nf-Request-Id": "01HHVAT8DNM9N46F3QDYAHK4S2" + "X-Nf-Request-Id": "01HJDAAYMZ31T4K433Y9XQKBE0" }, - "scan_id": 45545405, - "score": 40, - "start_time": "Sun, 17 Dec 2023 07:23:11 GMT", + "scan_id": 45760973, + "score": 0, + "start_time": "Sun, 24 Dec 2023 07:06:24 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 7, + "tests_failed": 7, + "tests_passed": 5, "tests_quantity": 12, "details": { "content-security-policy": { @@ -224283,17 +225808,17 @@ "output": { "data": { "connect-src": [ - "'self'", - "*.algolia.net", - "*.algolianet.com", + "*.incubateur.net", "user-images.githubusercontent.com", - "jedonnemonavis.numerique.gouv.fr", + "'self'", "mon-entreprise.zammad.com", "raw.githubusercontent.com", - "tm.urssaf.fr", - "api.recherche-entreprises.fabrique.social.gouv.fr", - "*.incubateur.net", + "jedonnemonavis.numerique.gouv.fr", + "*.algolia.net", "geo.api.gouv.fr", + "api.recherche-entreprises.fabrique.social.gouv.fr", + "tm.urssaf.fr", + "*.algolianet.com", "polyfill.io" ], "default-src": [ @@ -224301,42 +225826,42 @@ "'self'" ], "form-action": [ - "*.sibforms.com", - "'self'", + "mon-entreprise.zammad.com", "*.incubateur.net", - "mon-entreprise.zammad.com" + "*.sibforms.com", + "'self'" ], "frame-src": [ - "'self'", - "https://www.youtube-nocookie.com", "https://place-des-entreprises.beta.gouv.fr", + "https://www.youtube-nocookie.com", + "'self'", "https://stackblitz.com", - "https://reso-staging.osc-fr1.scalingo.io", - "https://codesandbox.io" + "https://codesandbox.io", + "https://reso-staging.osc-fr1.scalingo.io" ], "img-src": [ - "'self'", - "data:", "user-images.githubusercontent.com", + "data:", + "mon-entreprise.urssaf.fr", + "'self'", "jedonnemonavis.numerique.gouv.fr", - "tm.urssaf.fr", - "mon-entreprise.urssaf.fr" + "tm.urssaf.fr" ], "script-src": [ - "stonly.com", + "*.incubateur.net", + "code.jquery.com", "'self'", - "'unsafe-inline'", "mon-entreprise.zammad.com", + "stonly.com", "tm.urssaf.fr", - "code.jquery.com", - "*.incubateur.net", - "'unsafe-eval'", - "polyfill.io" + "polyfill.io", + "'unsafe-inline'", + "'unsafe-eval'" ], "style-src": [ - "'self'", + "mon-entreprise.zammad.com", "'unsafe-inline'", - "mon-entreprise.zammad.com" + "'self'" ] }, "http": true, @@ -224410,8 +225935,8 @@ "preloaded": false }, "pass": true, - "result": "hpkp-not-implemented", - "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "result": "hpkp-invalid-cert", + "score_description": "HTTP Public Key Pinning (HPKP) header cannot be set, as site contains an invalid certificate chain", "score_modifier": 0 }, "redirection": { @@ -224420,16 +225945,13 @@ "output": { "destination": "https://mon-entreprise.urssaf.fr/", "redirects": true, - "route": [ - "http://mon-entreprise.urssaf.fr/", - "https://mon-entreprise.urssaf.fr/" - ], + "route": [], "status_code": 200 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-invalid-cert", + "score_description": "Invalid certificate chain encountered during redirection", + "score_modifier": -20 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -224448,16 +225970,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000", + "data": null, "includeSubDomains": false, - "max-age": 31536000, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -224540,77 +226062,77 @@ "testssl": [ { "id": "service", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224618,7 +226140,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224626,7 +226148,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224634,7 +226156,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -224642,7 +226164,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -224650,7 +226172,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -224658,469 +226180,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "20EBFE6A683801699168E4219B0C3E51" + "finding": "84D1318BEE30D01E4735933E8DE5F386" }, { "id": "cert_serialNumberLen", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "99DD0D0CE642621928F130FEFF008634A5B3C56B" + "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" }, { "id": "cert_fingerprintSHA256", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "250A927ED42603FB8EA6F9ADD87BDB1F5B7E2AF3BA53DA4B5C8FE01D9516A727" + "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "cert", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIHxzCCBi+gAwIBAgIRAITRMYvuMNAeRzWTPo3l84YwDQYJKoZIhvcNAQEMBQAwgZAxCzAJBgNVBAYTAlBUMT0wOwYDVQQKDDRNYXJrZXRXYXJlIC0gU29sdcOnw7VlcyBwYXJhIE1lcmNhZG9zIERpZ2l0YWlzLCBMZGEuMUIwQAYDVQQDEzlNYXJrZXRXYXJlIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENBIDMwHhcNMjMxMTI5MDAwMDAwWhcNMjQxMTI4MjM1OTU5WjCBhjELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMTswOQYDVQQKEzJBR0VOQ0UgQ0VOVFJBTEUgREVTIE9SR0FOSVNNRVMgREUgU0VDVVJJVEUgU09DSUFMRTEhMB8GA1UEAxMYbW9uLWVudHJlcHJpc2UudXJzc2FmLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4VCaCIjGCLJzNFKezYrTK/mVFKTeMqomUkbGgGwHOfct6L/kEVqqL5imgcYrFg8KX2lC8wXQQzHxKZ/oTx8Ixkm2PMyi3Y0xWXgSwrp9Vz6mBxgL59aQ7tTQj+7QrpvO5IXelGo5iIxmJ5PzeAPodfGH0/EqsFcyC5e1/sa8xacFP1tmj/Y8vQEMLhfClOB7krtfm2K59i/wywH4GXk1rXv9zW27XBr6ny9xWKYFLP2vYgjl5Aqn285sRBQI2kkTjoT/cu0OM2M+gQYhXm9ZFXhDXuXuCoHJ3J7wOqGC9CA4BmWuWRwS2JnH6m1Hz9P9SijLfXqhI9n9NO9KbY6UwIDAQABo4IDojCCA54wHwYDVR0jBBgwFoAUoCUHdkIduNj/x0BuG6oT2R0H83swHQYDVR0OBBYEFMXDEzD8loMherVeZPFQa5ufpDk9MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIiMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3JsLnNlY3RpZ28uY29tL01hcmtldFdhcmVSU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EzLmNybDCBkAYIKwYBBQUHAQEEgYMwgYAwWQYIKwYBBQUHMAKGTWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vTWFya2V0V2FyZVJTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQTMuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGMGiIUPQAABAMARjBEAiBrN0RIYEuBikYN6BazG7fg+q/t6ae8NAduVqNqHgMNNgIgEyF2oLAQT4ELZfWMbH70iYara5cr693Jd++yCqQWd2wAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYwaIhVkAAAEAwBGMEQCIGgci+dKwAHxR3mLbz6z4fPJutB9vqOOt+iiXOqnRHayAiAXMPuQ7v7HJ5LqbOe2v2HaBCHn8CBjKrLov4VoGreTcAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjBoiFGgAAAQDAEcwRQIgNyUExfW+LGn+Dpm2COpGP2P9cnLJkWFpzYQAr/0OmvsCIQCwmXK9Nk+/fQOjp7XAkx3gH4MQxxGlkqWeKmrIAGlPYjBhBgNVHREEWjBYghhtb24tZW50cmVwcmlzZS51cnNzYWYuZnKCG215Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcoIfd3d3Lm15Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcjANBgkqhkiG9w0BAQwFAAOCAYEAkEtuCByHtkCjYjI5S/1E2VTTaHY2X3jz5bNE/zgwf/WMngQFL8AEzML8yTPlCBBsjj/MrREqO7o7+dQBWL6GUgVvXFj/x/DqmnfbVQSRlafZ1NPvAvvHNqvuSaOf0DmPyhhbvAbp6cVWhVsAutbqKhv9TfrOPNlRXlQXJ7INvUHe0H7dlkPW5PqTq6GxVEE+L7P4nXqomg7IzI3ppSEBnnIDpbmcV0wfb4bFaDrewVbtnTJ7EKBqtXYsAf9h96SYiRzbRlIZSjyGNv9iTgdonaNmcfdp8CHg+UwcUT5Ae3BaRZsCcuwpj113H+Gj3h/QD81Hgo28cuIuVAXUpH2hv+blQx5r8oWUs0HKQaZwbJx8cDFg60TnMR7pzaqSJzM1SXdJJjwSqiOIFk+Ce/kr7Mcqpe8+aEXE20rk6Y+pKgNo4aD40VGPlUXxQfSUeifAbRCHMoCqUNXaA0dlnTRvt3UnFjENLE1fjRN24O5RqeJBXubqD9HTnjbesT4ShqAI\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "mon-entreprise.urssaf.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "*.netlify.app" }, { "id": "cert_subjectAltName", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "mon-entreprise.urssaf.fr mycompanyinfrance.urssaf.fr www.mycompanyinfrance.urssaf.fr" }, { "id": "cert_trust", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", - "severity": "OK", - "finding": "passed." + "severity": "CRITICAL", + "finding": "failed (chain incomplete)." }, { "id": "cert_certificatePolicies_EV", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", - "severity": "HIGH", - "finding": "expires < 30 days (9)" + "severity": "OK", + "finding": "340 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "2022-12-26 00:00" + "finding": "2023-11-29 00:00" }, { "id": "cert_notAfter", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", - "severity": "HIGH", - "finding": "2023-12-26 23:59" + "severity": "OK", + "finding": "2024-11-28 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "http://crl.usertrust.com/MarketWareServerCA2.crl" + "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "http://ocsp.usertrust.com" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" }, { "id": "certificate_transparency", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "MarketWare Server CA 2 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "65CF938FD9FB34200C9F6DF93DED73AA5B71C369CC74A7C491F0E47A1D5E74BE" + "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "2014-10-27 00:00" + "finding": "2023-11-29 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", - "finding": "2024-10-26 23:59" + "finding": "2024-11-28 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "MarketWare Server CA 2 <-- USERTrust RSA Certification Authority" + "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "+10894 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "1702798159" + "finding": "1703401650" }, { "id": "HTTP_headerAge", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "10894 seconds" + "finding": "0 seconds" }, { "id": "HSTS_time", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "Netlify" }, { "id": "banner_application", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Content-Security-Policy", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com" }, { "id": "Cache-Control", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "public,max-age=0,must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -225128,7 +226650,7 @@ }, { "id": "heartbleed", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -225137,7 +226659,7 @@ }, { "id": "CCS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -225146,7 +226668,7 @@ }, { "id": "ticketbleed", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -225155,7 +226677,7 @@ }, { "id": "ROBOT", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -225164,7 +226686,7 @@ }, { "id": "secure_renego", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -225172,7 +226694,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -225181,7 +226703,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -225190,7 +226712,7 @@ }, { "id": "BREACH", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -225199,7 +226721,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -225208,14 +226730,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -225224,7 +226746,7 @@ }, { "id": "FREAK", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -225233,7 +226755,7 @@ }, { "id": "DROWN", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -225242,16 +226764,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=250A927ED42603FB8EA6F9ADD87BDB1F5B7E2AF3BA53DA4B5C8FE01D9516A727" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "LOGJAM", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -225260,7 +226782,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -225269,7 +226791,7 @@ }, { "id": "BEAST", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -225278,7 +226800,7 @@ }, { "id": "LUCKY13", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -225287,7 +226809,7 @@ }, { "id": "winshock", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -225296,7 +226818,7 @@ }, { "id": "RC4", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -225305,318 +226827,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "key_exchange_score", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "0" }, { "id": "cipher_strength_score", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "0" }, { "id": "final_score", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "0" }, { "id": "overall_grade", - "ip": "mon-entreprise.urssaf.fr/44.219.53.183", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "CRITICAL", + "finding": "T" + }, + { + "id": "grade_cap_reason_1", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "service", @@ -225860,7 +227389,7 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "OK", - "finding": "SHA256 with RSA" + "finding": "SHA384 with RSA" }, { "id": "cert_keySize", @@ -225888,7 +227417,7 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "20EBFE6A683801699168E4219B0C3E51" + "finding": "84D1318BEE30D01E4735933E8DE5F386" }, { "id": "cert_serialNumberLen", @@ -225902,21 +227431,21 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "99DD0D0CE642621928F130FEFF008634A5B3C56B" + "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" }, { "id": "cert_fingerprintSHA256", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "250A927ED42603FB8EA6F9ADD87BDB1F5B7E2AF3BA53DA4B5C8FE01D9516A727" + "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "cert", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -225950,8 +227479,8 @@ "id": "cert_chain_of_trust", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", - "severity": "OK", - "finding": "passed." + "severity": "CRITICAL", + "finding": "failed (chain incomplete)." }, { "id": "cert_certificatePolicies_EV", @@ -225964,22 +227493,22 @@ "id": "cert_expirationStatus", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", - "severity": "HIGH", - "finding": "expires < 30 days (9)" + "severity": "OK", + "finding": "340 >= 60 days" }, { "id": "cert_notBefore", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "2022-12-26 00:00" + "finding": "2023-11-29 00:00" }, { "id": "cert_notAfter", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", - "severity": "HIGH", - "finding": "2023-12-26 23:59" + "severity": "OK", + "finding": "2024-11-28 23:59" }, { "id": "cert_extlifeSpan", @@ -226000,14 +227529,14 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "http://crl.usertrust.com/MarketWareServerCA2.crl" + "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "http://ocsp.usertrust.com" + "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", @@ -226048,43 +227577,43 @@ "id": "certs_list_ordering_problem", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", - "severity": "INFO", - "finding": "no" + "severity": "LOW", + "finding": "yes" }, { "id": "cert_caIssuers", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "MarketWare Server CA 2 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" + "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "65CF938FD9FB34200C9F6DF93DED73AA5B71C369CC74A7C491F0E47A1D5E74BE" + "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "intermediate_cert_notBefore <#1>", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "2014-10-27 00:00" + "finding": "2023-11-29 00:00" }, { "id": "intermediate_cert_notAfter <#1>", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "OK", - "finding": "2024-10-26 23:59" + "finding": "2024-11-28 23:59" }, { "id": "intermediate_cert_expiration <#1>", @@ -226098,7 +227627,7 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "MarketWare Server CA 2 <-- USERTrust RSA Certification Authority" + "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" }, { "id": "intermediate_cert_badOCSP", @@ -226119,21 +227648,21 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+13 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "1702798196" + "finding": "1703401690" }, { "id": "HTTP_headerAge", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "0 seconds" + "finding": "13 seconds" }, { "id": "HSTS_time", @@ -226327,7 +227856,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=250A927ED42603FB8EA6F9ADD87BDB1F5B7E2AF3BA53DA4B5C8FE01D9516A727" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "LOGJAM", @@ -226647,63 +228176,70 @@ "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "key_exchange_score", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "0" }, { "id": "key_exchange_score_weighted", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "27" + "finding": "0" }, { "id": "cipher_strength_score", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "0" }, { "id": "cipher_strength_score_weighted", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "24" + "finding": "0" }, { "id": "final_score", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "81" + "finding": "0" }, { "id": "overall_grade", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "CRITICAL", + "finding": "T" + }, + { + "id": "grade_cap_reason_1", + "ip": "mon-entreprise.urssaf.fr/35.169.59.174", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", "ip": "mon-entreprise.urssaf.fr/35.169.59.174", "port": "443", "severity": "INFO", - "finding": "77" + "finding": "81" } ], "thirdparties": { @@ -226722,24 +228258,25 @@ }, { "type": "unknown", - "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=b7866222-7c38-4bde-836d-20e47c0c129a&vc=false&vm=exempt&ts=1702798129123&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" + "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=5f352c99-9f09-4757-8d14-2d765f3e02fc&vc=false&vm=exempt&ts=1703401619660&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" } ], "cookies": [], "headers": { "accept-ranges": "bytes", - "age": "0", + "age": "8580", "cache-control": "public,max-age=0,must-revalidate", - "cache-status": "\"Netlify Edge\"; fwd=stale", + "cache-status": "\"Netlify Edge\"; hit", "content-encoding": "br", + "content-length": "10966", "content-security-policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 07:28:47 GMT", - "etag": "\"4cd0279b40c3707cbf0f3544d5cbb3a5-ssl-df\"", + "date": "Sun, 24 Dec 2023 07:06:58 GMT", + "etag": "\"6dd19fb9f3da6efec81d1b30d81962dd-ssl-df\"", "server": "Netlify", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", - "x-nf-request-id": "01HHVATWPVVY9KTERGF8ARDTYB" + "x-nf-request-id": "01HJDABZ1MJV4F19JYMT22WBA6" }, "endpoints": [ { @@ -226823,7 +228360,7 @@ }, { "hostname": "polyfill.io", - "ip": "151.101.65.26", + "ip": "151.101.129.26", "geoip": { "continent": { "code": "NA", @@ -226967,7 +228504,7 @@ }, { "hostname": "tm.urssaf.fr", - "ip": "99.84.191.68", + "ip": "99.84.191.47", "geoip": { "continent": { "code": "NA", @@ -227275,7 +228812,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:22:46", + "@generated": "Sun, 24 Dec 2023 07:05:59", "site": [ { "@name": "https://mon-entreprise.urssaf.fr", @@ -227460,7 +228997,7 @@ { "requestedUrl": "https://mon-entreprise.urssaf.fr/", "finalUrl": "https://mon-entreprise.urssaf.fr/", - "fetchTime": "2023-12-17T07:23:00.684Z", + "fetchTime": "2023-12-24T07:06:13.815Z", "runWarnings": [], "categories": { "performance": { @@ -227523,53 +229060,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8052, + "numericValue": 7633, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4270, - "firstMeaningfulPaint": 4270, - "largestContentfulPaint": 4270, - "interactive": 8052, - "speedIndex": 4270, - "totalBlockingTime": 2969, - "maxPotentialFID": 3019, - "cumulativeLayoutShift": 0.0027206751505533854, - "cumulativeLayoutShiftMainFrame": 0.0027206751505533854, - "totalCumulativeLayoutShift": 0.0027206751505533854, + "firstContentfulPaint": 3743, + "firstMeaningfulPaint": 3743, + "largestContentfulPaint": 3804, + "interactive": 7633, + "speedIndex": 3743, + "totalBlockingTime": 2721, + "maxPotentialFID": 2771, + "cumulativeLayoutShift": 0.03069560443030463, + "cumulativeLayoutShiftMainFrame": 0.03069560443030463, + "totalCumulativeLayoutShift": 0.03069560443030463, "observedTimeOrigin": 0, - "observedTimeOriginTs": 226380201, + "observedTimeOriginTs": 228459026, "observedNavigationStart": 0, - "observedNavigationStartTs": 226380201, - "observedFirstPaint": 205, - "observedFirstPaintTs": 226585237, - "observedFirstContentfulPaint": 205, - "observedFirstContentfulPaintTs": 226585237, - "observedFirstContentfulPaintAllFrames": 205, - "observedFirstContentfulPaintAllFramesTs": 226585237, - "observedFirstMeaningfulPaint": 205, - "observedFirstMeaningfulPaintTs": 226585237, - "observedLargestContentfulPaint": 205, - "observedLargestContentfulPaintTs": 226585237, - "observedLargestContentfulPaintAllFrames": 205, - "observedLargestContentfulPaintAllFramesTs": 226585237, - "observedTraceEnd": 3422, - "observedTraceEndTs": 229802622, - "observedLoad": 303, - "observedLoadTs": 226683008, - "observedDomContentLoaded": 299, - "observedDomContentLoadedTs": 226679573, - "observedCumulativeLayoutShift": 0.0027206751505533854, - "observedCumulativeLayoutShiftMainFrame": 0.0027206751505533854, - "observedTotalCumulativeLayoutShift": 0.0027206751505533854, - "observedFirstVisualChange": 177, - "observedFirstVisualChangeTs": 226557201, - "observedLastVisualChange": 227, - "observedLastVisualChangeTs": 226607201, - "observedSpeedIndex": 181, - "observedSpeedIndexTs": 226561437 + "observedNavigationStartTs": 228459026, + "observedFirstPaint": 134, + "observedFirstPaintTs": 228592574, + "observedFirstContentfulPaint": 134, + "observedFirstContentfulPaintTs": 228592574, + "observedFirstContentfulPaintAllFrames": 134, + "observedFirstContentfulPaintAllFramesTs": 228592574, + "observedFirstMeaningfulPaint": 134, + "observedFirstMeaningfulPaintTs": 228592574, + "observedLargestContentfulPaint": 134, + "observedLargestContentfulPaintTs": 228592574, + "observedLargestContentfulPaintAllFrames": 134, + "observedLargestContentfulPaintAllFramesTs": 228592574, + "observedTraceEnd": 3355, + "observedTraceEndTs": 231814185, + "observedLoad": 296, + "observedLoadTs": 228754818, + "observedDomContentLoaded": 293, + "observedDomContentLoadedTs": 228751527, + "observedCumulativeLayoutShift": 0.03069560443030463, + "observedCumulativeLayoutShiftMainFrame": 0.03069560443030463, + "observedTotalCumulativeLayoutShift": 0.03069560443030463, + "observedFirstVisualChange": 131, + "observedFirstVisualChangeTs": 228590026, + "observedLastVisualChange": 231, + "observedLastVisualChangeTs": 228690026, + "observedSpeedIndex": 140, + "observedSpeedIndexTs": 228598689 }, { "lcpInvalidated": false @@ -227591,19 +229128,19 @@ "numScripts": 6, "numStylesheets": 1, "numFonts": 4, - "numTasks": 1165, + "numTasks": 1173, "numTasksOver10ms": 5, - "numTasksOver25ms": 4, - "numTasksOver50ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 1.327, - "throughput": 170880226.42401725, - "maxRtt": 83.26400000000001, - "maxServerLatency": 96.93200000000002, - "totalByteWeight": 664126, - "totalTaskTime": 1067.6189999999754, - "mainDocumentTransferSize": 11831 + "rtt": 5.25, + "throughput": 113927031.01290084, + "maxRtt": 88.13900000000001, + "maxServerLatency": 112.226, + "totalByteWeight": 666288, + "totalTaskTime": 949.2590000000095, + "mainDocumentTransferSize": 11900 } ] } @@ -227618,11 +229155,7 @@ "url": "https://github.com", "uri": "betagouv/mon-entreprise" }, - "budget_page": { - "grade": "A", - "url": "https://mon-entreprise.urssaf.fr", - "uri": "budget" - }, + "budget_page": null, "declaration-a11y": { "mention": "Accessibilité : partiellement conforme", "declarationUrl": "https://mon-entreprise.urssaf.fr/accessibilité" @@ -227704,13 +229237,13 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "D+", + "httpGrade": "F", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2023-12-26T23:59:00.000Z", - "testsslGrade": "A+", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-11-28T23:59:00.000Z", + "testsslGrade": "T", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "C", @@ -227726,7 +229259,6 @@ "lighthouse_pwa": 0.9, "lighthouse_pwaGrade": "A", "githubRepositoryGrade": "A", - "budgetPageGrade": "A", "declaration-a11y": "B", "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F" @@ -227740,7 +229272,7 @@ "http": { "url": "https://mrs.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:28:32 GMT", + "end_time": "Sun, 24 Dec 2023 07:17:27 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -227749,7 +229281,7 @@ "Content-Length": "12153", "Content-Security-Policy": "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; frame-src 'self' https://www.youtube.com; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; frame-ancestors 'self'; base-uri 'self'; upgrade-insecure-requests; img-src 'self' https://stats.data.gouv.fr; form-action 'self'", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 07:28:30 GMT", + "Date": "Sun, 24 Dec 2023 07:17:25 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", "Vary": "Accept-Language", @@ -227757,9 +229289,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 45545417, + "scan_id": 45761097, "score": 70, - "start_time": "Sun, 17 Dec 2023 07:23:47 GMT", + "start_time": "Sun, 24 Dec 2023 07:12:30 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -227776,9 +229308,9 @@ ], "default-src": [ "'self'", + "https://stats.data.gouv.fr", "https://fonts.gstatic.com", "'unsafe-inline'", - "https://stats.data.gouv.fr", "https://cdnjs.cloudflare.com" ], "form-action": [ @@ -227788,30 +229320,30 @@ "'self'" ], "frame-src": [ - "'self'", - "https://www.youtube.com" + "https://www.youtube.com", + "'self'" ], "img-src": [ - "'self'", - "https://stats.data.gouv.fr" + "https://stats.data.gouv.fr", + "'self'" ], "script-src": [ - "https://cdn.ravenjs.com", - "'self'", - "https://stackpath.bootstrapcdn.com", + "https://fonts.googleapis.com", "https://code.jquery.com", - "'unsafe-inline'", - "https://fonts.gstatic.com", + "https://stackpath.bootstrapcdn.com", + "'self'", "https://stats.data.gouv.fr", - "https://fonts.googleapis.com", + "https://fonts.gstatic.com", + "'unsafe-inline'", "https://cdnjs.cloudflare.com", + "https://cdn.ravenjs.com", "'unsafe-eval'" ], "style-src": [ - "'self'", "https://stackpath.bootstrapcdn.com", - "'unsafe-inline'", "https://fonts.googleapis.com", + "'self'", + "'unsafe-inline'", "https://cdnjs.cloudflare.com" ], "upgrade-insecure-requests": [ @@ -227997,52 +229529,7 @@ } } }, - "updownio": { - "token": "cq7r", - "url": "https://mrs.beta.gouv.fr", - "alias": null, - "last_status": 200, - "uptime": 100, - "down": false, - "down_since": null, - "error": null, - "period": 300, - "apdex_t": 0.5, - "string_match": "", - "enabled": true, - "published": false, - "disabled_locations": [], - "recipients": [ - "email:3896582286", - "slack_compatible:4124784183" - ], - "last_check_at": "2023-12-17T07:37:20Z", - "next_check_at": "2023-12-17T07:42:20Z", - "mute_until": null, - "favicon_url": "https://www.mrs.beta.gouv.fr/static/img/logos/launcher-icon-2x.png", - "custom_headers": {}, - "http_verb": "GET/HEAD", - "http_body": "", - "ssl": { - "tested_at": "2023-12-17T07:22:24Z", - "expires_at": "2024-02-17T23:39:22Z", - "valid": true, - "error": null - }, - "metrics": { - "apdex": 0.805, - "timings": { - "redirect": 558, - "namelookup": 337, - "connection": 117, - "handshake": 147, - "response": 521, - "total": 1679 - } - }, - "uptimeGrade": "A", - "apdexGrade": "F" - }, + "updownio": null, "nmap": { "host": "mrs.beta.gouv.fr", "protocol": "tcp", @@ -228053,7 +229540,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.4", + "version": "8.9p1 Ubuntu 3ubuntu0.5", "vulnerabilities": [] } }, @@ -228433,7 +229920,7 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -228629,14 +230116,14 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "1702798243" + "finding": "1703402364" }, { "id": "HSTS", @@ -229192,7 +230679,7 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "132" + "finding": "133" } ], "thirdparties": { @@ -229267,7 +230754,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-player.css", + "url": "https://www.youtube.com/s/player/da154528/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -229275,7 +230762,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -229283,7 +230770,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/www-embed-player.vflset/www-embed-player.js", + "url": "https://www.youtube.com/s/player/da154528/www-embed-player.vflset/www-embed-player.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -229291,7 +230778,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -229353,17 +230840,9 @@ "message": "Use hosted Matomo instance" } }, - { - "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/d23221b6/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/da154528/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -229371,7 +230850,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/1xEiQfu-UCiwbMaFnr-G2Uzcd5udG06umsh6raawdbQ.js", + "url": "https://www.google.com/js/th/Tsw0Yn1BA_u41wm3FNlInuFvbxWhU_qzb8oN8tyvKnc.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -229403,7 +230882,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -229411,12 +230890,20 @@ }, { "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", "details": { "id": "google", "message": "Use hosted Matomo instance" } }, + { + "type": "youtube", + "url": "https://www.youtube.com/generate_204?-c0fBA", + "details": { + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" + } + }, { "type": "google", "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", @@ -229426,11 +230913,11 @@ } }, { - "type": "youtube", - "url": "https://www.youtube.com/generate_204?3M50GQ", + "type": "google", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" + "id": "google", + "message": "Use hosted Matomo instance" } }, { @@ -229448,7 +230935,7 @@ "value": "1", "domain": "www.mrs.beta.gouv.fr", "path": "/", - "expires": 1702799950, + "expires": 1703404071, "size": 16, "httpOnly": false, "secure": false, @@ -229460,10 +230947,10 @@ }, { "name": "_pk_id.40.3c86", - "value": "20d10e5c5cd7d9ea.1702798150.", + "value": "965255d68b099649.1703402272.", "domain": "www.mrs.beta.gouv.fr", "path": "/", - "expires": 1736753350, + "expires": 1737357472, "size": 42, "httpOnly": false, "secure": false, @@ -229479,7 +230966,7 @@ "content-length": "12153", "content-security-policy": "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; frame-src 'self' https://www.youtube.com; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com; frame-ancestors 'self'; base-uri 'self'; upgrade-insecure-requests; img-src 'self' https://stats.data.gouv.fr; form-action 'self'", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 07:29:09 GMT", + "date": "Sun, 24 Dec 2023 07:17:50 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=15768000; includeSubDomains; preload", "vary": "Accept-Language", @@ -229580,7 +231067,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.40.42", + "ip": "142.250.189.170", "geoip": { "continent": { "code": "NA", @@ -229634,7 +231121,7 @@ }, { "hostname": "cdn.ravenjs.com", - "ip": "151.101.66.217", + "ip": "151.101.2.217", "geoip": { "continent": { "code": "NA", @@ -229742,7 +231229,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.250.188.238", + "ip": "172.217.12.110", "geoip": { "continent": { "code": "NA", @@ -229796,7 +231283,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.217.131", + "ip": "142.250.189.195", "geoip": { "continent": { "code": "NA", @@ -229850,7 +231337,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "142.251.40.34", + "ip": "142.250.189.162", "geoip": { "continent": { "code": "NA", @@ -229904,7 +231391,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "142.250.72.166", + "ip": "142.250.72.198", "geoip": { "city": { "geoname_id": 5131638, @@ -229984,7 +231471,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "142.250.188.234", + "ip": "172.217.12.106", "geoip": { "continent": { "code": "NA", @@ -230038,7 +231525,7 @@ }, { "hostname": "www.google.com", - "ip": "142.250.176.4", + "ip": "142.251.46.228", "geoip": { "continent": { "code": "NA", @@ -230092,7 +231579,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "172.217.12.150", + "ip": "142.251.32.54", "geoip": { "continent": { "code": "NA", @@ -230146,7 +231633,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "142.250.176.1", + "ip": "142.250.188.1", "geoip": { "continent": { "code": "NA", @@ -230200,7 +231687,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "142.251.40.35", + "ip": "142.251.46.163", "geoip": { "continent": { "code": "NA", @@ -230449,7 +231936,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:23:21", + "@generated": "Sun, 24 Dec 2023 07:12:03", "site": [ { "@name": "https://mrs.beta.gouv.fr", @@ -230568,22 +232055,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -230599,27 +232087,30 @@ "type": "dns", "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", - "timestamp": "2023-12-17T07:32:42.938704356Z", + "extracted-results": [ + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." + ], + "timestamp": "2023-12-24T07:21:24.648355697Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -230635,11 +232126,7 @@ "type": "dns", "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-17T07:32:42.94050078Z", + "timestamp": "2023-12-24T07:21:24.830081477Z", "matcher-status": true }, { @@ -230672,10 +232159,10 @@ "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T07:32:43.541832377Z", + "timestamp": "2023-12-24T07:21:25.648547787Z", "matcher-status": true }, { @@ -230711,10 +232198,10 @@ "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com ip4:162.19.18.40/32 ~all\"", - "\"google-site-verification=g8F_SJHY9iEXLva-8QpFM42tFhaEPyI92cDkFUMOPe0\"" + "\"google-site-verification=g8F_SJHY9iEXLva-8QpFM42tFhaEPyI92cDkFUMOPe0\"", + "\"v=spf1 include:spf.mailjet.com ip4:162.19.18.40/32 ~all\"" ], - "timestamp": "2023-12-17T07:32:43.775195361Z", + "timestamp": "2023-12-24T07:21:25.785553251Z", "matcher-status": true }, { @@ -230752,7 +232239,7 @@ "https://code.jquery.com/jquery-3.3.1.slim.min.js" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:34:26.317065266Z", + "timestamp": "2023-12-24T07:23:08.730810697Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: mrs.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mrs.beta.gouv.fr/'", "matcher-status": true }, @@ -230799,10 +232286,10 @@ "host": "mrs.beta.gouv.fr:22", "matched-at": "mrs.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:35:41.689602758Z", + "timestamp": "2023-12-24T07:24:24.431638588Z", "matcher-status": true }, { @@ -230816,7 +232303,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -230831,7 +232319,7 @@ "Let's Encrypt" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:36:32.443749427Z", + "timestamp": "2023-12-24T07:25:14.837942594Z", "matcher-status": true }, { @@ -230845,7 +232333,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -230861,7 +232350,7 @@ "www.mrs.beta.gouv.fr" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:36:32.443869431Z", + "timestamp": "2023-12-24T07:25:14.83805846Z", "matcher-status": true }, { @@ -230876,7 +232365,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -230891,7 +232381,7 @@ "tls12" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:36:34.791424981Z", + "timestamp": "2023-12-24T07:25:17.365489126Z", "matcher-status": true }, { @@ -230906,7 +232396,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -230921,7 +232412,7 @@ "tls13" ], "ip": "162.19.18.40", - "timestamp": "2023-12-17T07:36:35.23679108Z", + "timestamp": "2023-12-24T07:25:17.691217974Z", "matcher-status": true } ], @@ -230929,7 +232420,7 @@ { "requestedUrl": "https://mrs.beta.gouv.fr/", "finalUrl": "https://www.mrs.beta.gouv.fr/", - "fetchTime": "2023-12-17T07:23:35.373Z", + "fetchTime": "2023-12-24T07:12:17.693Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mrs.beta.gouv.fr/) was redirected to https://www.mrs.beta.gouv.fr/. Try testing the second URL directly." ], @@ -230942,7 +232433,7 @@ "snapshot" ], "id": "performance", - "score": 0.8294370651245118 + "score": 0.8299264907836914 }, "accessibility": { "title": "Accessibility", @@ -230994,53 +232485,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12304, + "numericValue": 12226, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3077, - "firstMeaningfulPaint": 3077, - "largestContentfulPaint": 5975, - "interactive": 12304, - "speedIndex": 8778, - "totalBlockingTime": 445, - "maxPotentialFID": 194, + "firstContentfulPaint": 3022, + "firstMeaningfulPaint": 3022, + "largestContentfulPaint": 5760, + "interactive": 12226, + "speedIndex": 8532, + "totalBlockingTime": 382, + "maxPotentialFID": 252, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 292702191, + "observedTimeOriginTs": 220455217, "observedNavigationStart": 0, - "observedNavigationStartTs": 292702191, - "observedFirstPaint": 1480, - "observedFirstPaintTs": 294181771, - "observedFirstContentfulPaint": 1480, - "observedFirstContentfulPaintTs": 294181771, - "observedFirstContentfulPaintAllFrames": 1480, - "observedFirstContentfulPaintAllFramesTs": 294181771, - "observedFirstMeaningfulPaint": 1480, - "observedFirstMeaningfulPaintTs": 294181771, - "observedLargestContentfulPaint": 1655, - "observedLargestContentfulPaintTs": 294357176, - "observedLargestContentfulPaintAllFrames": 1655, - "observedLargestContentfulPaintAllFramesTs": 294357176, - "observedTraceEnd": 4418, - "observedTraceEndTs": 297120246, - "observedLoad": 2111, - "observedLoadTs": 294813215, - "observedDomContentLoaded": 1626, - "observedDomContentLoadedTs": 294328062, + "observedNavigationStartTs": 220455217, + "observedFirstPaint": 1408, + "observedFirstPaintTs": 221862856, + "observedFirstContentfulPaint": 1408, + "observedFirstContentfulPaintTs": 221862856, + "observedFirstContentfulPaintAllFrames": 1408, + "observedFirstContentfulPaintAllFramesTs": 221862856, + "observedFirstMeaningfulPaint": 1408, + "observedFirstMeaningfulPaintTs": 221862856, + "observedLargestContentfulPaint": 1555, + "observedLargestContentfulPaintTs": 222010648, + "observedLargestContentfulPaintAllFrames": 1555, + "observedLargestContentfulPaintAllFramesTs": 222010648, + "observedTraceEnd": 4279, + "observedTraceEndTs": 224733976, + "observedLoad": 1972, + "observedLoadTs": 222427210, + "observedDomContentLoaded": 1519, + "observedDomContentLoadedTs": 221974533, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1486, - "observedFirstVisualChangeTs": 294188191, - "observedLastVisualChange": 1652, - "observedLastVisualChangeTs": 294354191, - "observedSpeedIndex": 1523, - "observedSpeedIndexTs": 294225397 + "observedFirstVisualChange": 1402, + "observedFirstVisualChangeTs": 221857217, + "observedLastVisualChange": 1569, + "observedLastVisualChangeTs": 222024217, + "observedSpeedIndex": 1441, + "observedSpeedIndexTs": 221895790 }, { "lcpInvalidated": false @@ -231062,18 +232553,18 @@ "numScripts": 12, "numStylesheets": 5, "numFonts": 4, - "numTasks": 1055, + "numTasks": 1172, "numTasksOver10ms": 9, - "numTasksOver25ms": 7, + "numTasksOver25ms": 6, "numTasksOver50ms": 3, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 7.928, - "throughput": 15918429.435457211, - "maxRtt": 160.779, - "maxServerLatency": 153.725, - "totalByteWeight": 1418529, - "totalTaskTime": 623.975999999998, + "rtt": 0.7830000000000004, + "throughput": 18012780.477718618, + "maxRtt": 150.387, + "maxServerLatency": 164.395, + "totalByteWeight": 1415963, + "totalTaskTime": 622.3189999999981, "mainDocumentTransferSize": 12855 } ] @@ -231175,10 +232666,6 @@ "sonarcloud": null, "summary": { "httpGrade": "B", - "apdex": 0.805, - "apdexGrade": "F", - "uptime": 100, - "uptimeGrade": "A", "nmapGrade": "B", "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", @@ -231189,7 +232676,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 31, - "lighthouse_performance": 0.8294370651245118, + "lighthouse_performance": 0.8299264907836914, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.61, "lighthouse_accessibilityGrade": "C", @@ -231223,7 +232710,7 @@ "http": { "url": "https://nosgestesclimat.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:48:17 GMT", + "end_time": "Sun, 24 Dec 2023 01:44:45 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -231233,7 +232720,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:48:12 GMT", + "Date": "Sun, 24 Dec 2023 01:44:42 GMT", "Server": "Vercel", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -231243,11 +232730,11 @@ "X-Powered-By": "Next.js", "X-Vercel-Cache": "MISS", "X-Vercel-Execution-Region": "cdg1", - "X-Vercel-Id": "sfo1::cdg1::5hx5x-1702777692670-0ab557e29ee1" + "X-Vercel-Id": "sfo1::cdg1::dzfp6-1703382282251-bcab03e422b1" }, - "scan_id": 45537019, + "scan_id": 45752412, "score": 40, - "start_time": "Sun, 17 Dec 2023 01:47:48 GMT", + "start_time": "Sun, 24 Dec 2023 01:44:40 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -231711,7 +233198,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "035B65DB022035CE786DBD0C5A3ADF270599" + "finding": "039CBAEEF8C92F37D4AFA0FC7665470D869F" }, { "id": "cert_serialNumberLen", @@ -231725,21 +233212,21 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "74E209E0A5A948D617F9B79F1A3760BD3DB7678C" + "finding": "665668F9EE1AF445CEBF6D82AF9D1033E3389EAA" }, { "id": "cert_fingerprintSHA256", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "450D1A0BEC10D23D88C79FD3A323C8D86F8802C9EF6E775025D9D9F9D80B5C79" + "finding": "C05BAEF524F0A7DED476DA9D0E5CC76525D1EF63BF822989A91F6A5AE44EECCE" }, { "id": "cert", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -231787,22 +233274,22 @@ "id": "cert_expirationStatus", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 30 days (27)" + "severity": "OK", + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "2023-10-16 03:15" + "finding": "2023-12-21 22:44" }, { "id": "cert_notAfter", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "MEDIUM", - "finding": "2024-01-14 03:15" + "severity": "OK", + "finding": "2024-03-20 22:44" }, { "id": "cert_extlifeSpan", @@ -231998,7 +233485,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "1702797988" + "finding": "1703402625" }, { "id": "HTTP_headerAge", @@ -232093,10 +233580,10 @@ "id": "ticketbleed", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", - "severity": "DEBUG", + "severity": "OK", "cve": "CVE-2016-9244", "cwe": "CWE-200", - "finding": "test failed, around 16901 (debug info: 48, 5454502F30)" + "finding": "not vulnerable" }, { "id": "ROBOT", @@ -232192,7 +233679,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=450D1A0BEC10D23D88C79FD3A323C8D86F8802C9EF6E775025D9D9F9D80B5C79" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C05BAEF524F0A7DED476DA9D0E5CC76525D1EF63BF822989A91F6A5AE44EECCE" }, { "id": "LOGJAM", @@ -232568,7 +234055,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "43" + "finding": "48" } ], "thirdparties": { @@ -232617,14 +234104,6 @@ "type": "unknown", "url": "https://vitals.vercel-insights.com/v1/vitals" }, - { - "type": "unknown", - "url": "https://matomo-incubateur-ademe.osc-fr1.scalingo.io/matomo.php?action_name=Votre%20calculateur%20d%27empreinte%20carbone%20personnelle%20-%20Nos%20Gestes%20Climat&idsite=1&rec=1&r=676830&h=7&m=25&s=53&url=https%3A%2F%2Fnosgestesclimat.fr%2F&_id=223d1db721faf396&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pf_net=0&pv_id=7QX8tr&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" - }, - { - "type": "unknown", - "url": "https://sentry.incubateur.net/api/118/envelope/?sentry_key=75dcf9dfe74c4439977a517be2805122&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0" - }, { "type": "unknown", "url": "https://sentry.incubateur.net/api/118/envelope/?sentry_key=75dcf9dfe74c4439977a517be2805122&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0" @@ -232644,7 +234123,7 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "br", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 07:25:52 GMT", + "date": "Sun, 24 Dec 2023 07:23:09 GMT", "server": "Vercel", "strict-transport-security": "max-age=63072000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url", @@ -232653,7 +234132,7 @@ "x-powered-by": "Next.js", "x-vercel-cache": "MISS", "x-vercel-execution-region": "cdg1", - "x-vercel-id": "iad1::cdg1::tmd5c-1702797952410-e1b71c8f971b" + "x-vercel-id": "cle1::cdg1::bcm6n-1703402588856-40ad6990aa9b" }, "endpoints": [ { @@ -232740,7 +234219,7 @@ }, { "hostname": "polyfill.io", - "ip": "151.101.65.26", + "ip": "151.101.1.26", "geoip": { "continent": { "code": "NA", @@ -232794,13 +234273,19 @@ }, { "hostname": "twemoji.maxcdn.com", - "ip": "37.19.207.34", + "ip": "185.93.1.244", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 4887398, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -232833,39 +234318,41 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20149" + "code": "60602" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 3077311, + "is_in_european_union": true, + "iso_code": "CZ", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Tschechien", + "en": "Czechia", + "es": "Chequia", + "fr": "Tchéquie", + "ja": "チェコ共和国", + "pt-BR": "Chéquia", + "ru": "Чехия", + "zh-CN": "捷克" } }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -232873,13 +234360,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.29.229", + "ip": "146.75.77.229", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 4887398, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -232912,13 +234405,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.018, - "longitude": -77.539, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20147" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, @@ -232936,15 +234429,16 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -233042,58 +234536,52 @@ }, { "hostname": "vitals.vercel-insights.com", - "ip": "54.228.3.77", + "ip": "52.26.13.74", "geoip": { "city": { - "geoname_id": 2964574, + "geoname_id": 5714964, "names": { - "de": "Dublin", - "en": "Dublin", - "es": "Dublín", - "fr": "Dublin", - "ja": "ダブリン", - "pt-BR": "Dublin", - "ru": "Дублин", - "zh-CN": "都柏林" + "en": "Boardman", + "ru": "Бордман" } }, "continent": { - "code": "EU", - "geoname_id": 6255148, + "code": "NA", + "geoname_id": 6255149, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" } }, "country": { - "geoname_id": 2963597, - "is_in_european_union": true, - "iso_code": "IE", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Irland", - "en": "Ireland", - "es": "Irlanda", - "fr": "Irlande", - "ja": "アイルランド", - "pt-BR": "Irlanda", - "ru": "Ирландия", - "zh-CN": "爱尔兰" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "location": { "accuracy_radius": 1000, - "latitude": 53.3379, - "longitude": -6.2591, - "time_zone": "Europe/Dublin" + "latitude": 45.8234, + "longitude": -119.7257, + "metro_code": 810, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "D02" + "code": "97818" }, "registered_country": { "geoname_id": 6252001, @@ -233111,73 +234599,21 @@ }, "subdivisions": [ { - "geoname_id": 7521314, - "iso_code": "L", + "geoname_id": 5744337, + "iso_code": "OR", "names": { - "en": "Leinster", - "fr": "Leinster", - "ja": "レンスター", - "ru": "Ленстер" + "de": "Oregon", + "en": "Oregon", + "es": "Oregón", + "fr": "Oregon", + "ja": "オレゴン州", + "pt-BR": "Oregão", + "ru": "Орегон", + "zh-CN": "俄勒冈州" } } ] } - }, - { - "hostname": "matomo-incubateur-ademe.osc-fr1.scalingo.io", - "ip": "148.253.75.120", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } } ] }, @@ -233438,7 +234874,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:25:11", + "@generated": "Sun, 24 Dec 2023 07:22:26", "site": [ { "@name": "https://nosgestesclimat.fr", @@ -233594,18 +235030,11 @@ "desc": "

Specifies if a navigation request was initiated by a user.

" }, { - "name": "Storable and Cacheable Content", + "name": "Storable but Non-Cacheable Content", "riskcode": "0", "confidence": "2", "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, - { - "name": "User Controllable HTML Element Attribute (Potential XSS)", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" } ] } @@ -233613,23 +235042,20 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -233645,14 +235071,12 @@ "host": "nosgestesclimat.fr.", "matched-at": "nosgestesclimat.fr", "extracted-results": [ - "\"google-site-verification=x7X9w2HaVRM_cpTV1NqvnDgyAphWQTWY2Io1jigjaVs\"", - "\"sendinblue-site-verification=2610165\"", - "\"brevo-code:4dc3300c431ca82c00785768559ea871\"", - "\"ahrefs-site-verification_0a8101067703d11ef7f7d42d54a788416189cad016d3b73d2b143e42ea1af6ce\"", - "\"google-site-verification=CyO_VhmdbTQjHCYcaFR_VxWHLHZrOtK3iteKhr7VBYE\"", - "\"v=spf1 include:_mailcust.gandi.net ?all\"" + "dns1.p07.nsone.net.", + "dns2.p07.nsone.net.", + "dns3.p07.nsone.net.", + "dns4.p07.nsone.net." ], - "timestamp": "2023-12-17T07:28:55.64212619Z", + "timestamp": "2023-12-24T07:26:19.121142904Z", "matcher-status": true }, { @@ -233687,27 +235111,26 @@ "type": "dns", "host": "nosgestesclimat.fr.", "matched-at": "nosgestesclimat.fr", - "timestamp": "2023-12-17T07:28:55.645417538Z", + "timestamp": "2023-12-24T07:26:19.197754454Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -233724,27 +235147,35 @@ "host": "nosgestesclimat.fr.", "matched-at": "nosgestesclimat.fr", "extracted-results": [ - "50 fb.mail.gandi.net.", - "10 spool.mail.gandi.net." + "\"v=spf1 include:_mailcust.gandi.net ?all\"", + "\"google-site-verification=x7X9w2HaVRM_cpTV1NqvnDgyAphWQTWY2Io1jigjaVs\"", + "\"sendinblue-site-verification=2610165\"", + "\"brevo-code:4dc3300c431ca82c00785768559ea871\"", + "\"ahrefs-site-verification_0a8101067703d11ef7f7d42d54a788416189cad016d3b73d2b143e42ea1af6ce\"", + "\"google-site-verification=CyO_VhmdbTQjHCYcaFR_VxWHLHZrOtK3iteKhr7VBYE\"" ], - "timestamp": "2023-12-17T07:28:56.641885404Z", + "timestamp": "2023-12-24T07:26:20.10821271Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -233760,12 +235191,10 @@ "host": "nosgestesclimat.fr.", "matched-at": "nosgestesclimat.fr", "extracted-results": [ - "dns1.p07.nsone.net.", - "dns2.p07.nsone.net.", - "dns3.p07.nsone.net.", - "dns4.p07.nsone.net." + "50 fb.mail.gandi.net.", + "10 spool.mail.gandi.net." ], - "timestamp": "2023-12-17T07:28:56.643305248Z", + "timestamp": "2023-12-24T07:26:20.137769126Z", "matcher-status": true }, { @@ -233801,7 +235230,7 @@ "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367108125Z", + "timestamp": "2023-12-24T07:27:36.231692084Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -233833,12 +235262,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367154601Z", + "timestamp": "2023-12-24T07:27:36.231739072Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -233870,12 +235299,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367171653Z", + "timestamp": "2023-12-24T07:27:36.23175411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -233907,12 +235336,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367184447Z", + "timestamp": "2023-12-24T07:27:36.231766283Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -233944,12 +235373,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.36719679Z", + "timestamp": "2023-12-24T07:27:36.231778245Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -233981,12 +235410,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367222618Z", + "timestamp": "2023-12-24T07:27:36.231882971Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -234018,12 +235447,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367240121Z", + "timestamp": "2023-12-24T07:27:36.231904161Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -234055,12 +235484,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367391382Z", + "timestamp": "2023-12-24T07:27:36.231919118Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -234092,12 +235521,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367410888Z", + "timestamp": "2023-12-24T07:27:36.231934758Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -234129,12 +235558,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://nosgestesclimat.fr", "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:30:05.367423682Z", + "timestamp": "2023-12-24T07:27:36.231948684Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", "matcher-status": true }, @@ -234172,107 +235601,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "2020-09-15T12:31:12Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962231444Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962296715Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantEmail", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" + "de563d8a8144b9e4cae99df7c291b33c-36293991@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962314549Z", + "timestamp": "2023-12-24T07:27:48.865347678Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234310,15 +235647,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantPhone", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", "extracted-results": [ - "de563d8a8144b9e4cae99df7c291b33c-36293991@contact.gandi.net" + "+33.241204120" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962330067Z", + "timestamp": "2023-12-24T07:27:48.865399756Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234356,15 +235693,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantAddress", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", "extracted-results": [ + "20 avenue du Gresille BP 90406", + "Angers", + "49004", "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962347119Z", + "timestamp": "2023-12-24T07:27:48.865417328Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234413,7 +235753,7 @@ "dns2.p07.nsone.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962359722Z", + "timestamp": "2023-12-24T07:27:48.86543432Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234459,7 +235799,7 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962373699Z", + "timestamp": "2023-12-24T07:27:48.865457614Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234505,7 +235845,53 @@ "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962386523Z", + "timestamp": "2023-12-24T07:27:48.865474966Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrationDate", + "type": "http", + "host": "https://nosgestesclimat.fr", + "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", + "extracted-results": [ + "2020-09-15T12:31:12Z" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T07:27:48.865489473Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234551,7 +235937,7 @@ "2023-06-21T10:14:49.414384Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962399427Z", + "timestamp": "2023-12-24T07:27:48.865503038Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234597,7 +235983,7 @@ "2025-09-15T12:31:12Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962437477Z", + "timestamp": "2023-12-24T07:27:48.865516334Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234635,15 +236021,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantName", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", "extracted-results": [ - "+33.241204120" + "AGCE L ENVIRON MAITRISE L ENERGIE" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962456874Z", + "timestamp": "2023-12-24T07:27:48.865529398Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234681,18 +236067,61 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://nosgestesclimat.fr", + "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", + "extracted-results": [ + "AGCE L ENVIRON MAITRISE L ENERGIE" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T07:27:48.865542472Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", "type": "http", "host": "https://nosgestesclimat.fr", "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", "extracted-results": [ - "20 avenue du Gresille BP 90406", - "Angers", - "49004", "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T07:30:15.962469437Z", + "timestamp": "2023-12-24T07:27:48.865556098Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", "matcher-status": true }, @@ -234707,7 +236136,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -234722,7 +236152,7 @@ "Let's Encrypt" ], "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:32:25.844111752Z", + "timestamp": "2023-12-24T07:30:04.268037596Z", "matcher-status": true }, { @@ -234736,7 +236166,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -234751,7 +236182,7 @@ "nosgestesclimat.fr" ], "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:32:25.844217859Z", + "timestamp": "2023-12-24T07:30:04.268146339Z", "matcher-status": true }, { @@ -234766,7 +236197,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -234781,7 +236213,7 @@ "tls12" ], "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:32:25.940825649Z", + "timestamp": "2023-12-24T07:30:04.40030745Z", "matcher-status": true }, { @@ -234796,7 +236228,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -234811,7 +236244,7 @@ "tls13" ], "ip": "76.76.21.21", - "timestamp": "2023-12-17T07:32:25.957304665Z", + "timestamp": "2023-12-24T07:30:04.474206122Z", "matcher-status": true } ], @@ -234819,7 +236252,7 @@ { "requestedUrl": "https://nosgestesclimat.fr/", "finalUrl": "https://nosgestesclimat.fr/", - "fetchTime": "2023-12-17T07:25:25.825Z", + "fetchTime": "2023-12-24T07:22:40.406Z", "runWarnings": [], "categories": { "performance": { @@ -234882,53 +236315,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4424, + "numericValue": 5460, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1975, - "firstMeaningfulPaint": 1975, - "largestContentfulPaint": 5093, - "interactive": 4424, - "speedIndex": 1975, - "totalBlockingTime": 180, - "maxPotentialFID": 375, + "firstContentfulPaint": 2484, + "firstMeaningfulPaint": 2484, + "largestContentfulPaint": 5503, + "interactive": 5460, + "speedIndex": 4098, + "totalBlockingTime": 117, + "maxPotentialFID": 229, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 331363775, + "observedTimeOriginTs": 272708424, "observedNavigationStart": 0, - "observedNavigationStartTs": 331363775, - "observedFirstPaint": 618, - "observedFirstPaintTs": 331982203, - "observedFirstContentfulPaint": 618, - "observedFirstContentfulPaintTs": 331982203, - "observedFirstContentfulPaintAllFrames": 618, - "observedFirstContentfulPaintAllFramesTs": 331982203, - "observedFirstMeaningfulPaint": 618, - "observedFirstMeaningfulPaintTs": 331982203, - "observedLargestContentfulPaint": 618, - "observedLargestContentfulPaintTs": 331982203, - "observedLargestContentfulPaintAllFrames": 618, - "observedLargestContentfulPaintAllFramesTs": 331982203, - "observedTraceEnd": 5224, - "observedTraceEndTs": 336588058, - "observedLoad": 1197, - "observedLoadTs": 332560950, - "observedDomContentLoaded": 622, - "observedDomContentLoadedTs": 331985819, + "observedNavigationStartTs": 272708424, + "observedFirstPaint": 1219, + "observedFirstPaintTs": 273927161, + "observedFirstContentfulPaint": 1219, + "observedFirstContentfulPaintTs": 273927161, + "observedFirstContentfulPaintAllFrames": 1219, + "observedFirstContentfulPaintAllFramesTs": 273927161, + "observedFirstMeaningfulPaint": 1219, + "observedFirstMeaningfulPaintTs": 273927161, + "observedLargestContentfulPaint": 1219, + "observedLargestContentfulPaintTs": 273927161, + "observedLargestContentfulPaintAllFrames": 1219, + "observedLargestContentfulPaintAllFramesTs": 273927161, + "observedTraceEnd": 5227, + "observedTraceEndTs": 277935242, + "observedLoad": 1297, + "observedLoadTs": 274005416, + "observedDomContentLoaded": 1229, + "observedDomContentLoadedTs": 273937080, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 622, - "observedFirstVisualChangeTs": 331985775, - "observedLastVisualChange": 739, - "observedLastVisualChangeTs": 332102775, - "observedSpeedIndex": 629, - "observedSpeedIndexTs": 331993220 + "observedFirstVisualChange": 1213, + "observedFirstVisualChangeTs": 273921424, + "observedLastVisualChange": 1563, + "observedLastVisualChangeTs": 274271424, + "observedSpeedIndex": 1224, + "observedSpeedIndexTs": 273932042 }, { "lcpInvalidated": false @@ -234950,19 +236383,19 @@ "numScripts": 40, "numStylesheets": 1, "numFonts": 6, - "numTasks": 1202, - "numTasksOver10ms": 7, - "numTasksOver25ms": 1, + "numTasks": 1286, + "numTasksOver10ms": 10, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.1890000000000005, - "throughput": 27454934.133212764, - "maxRtt": 85.36500000000001, - "maxServerLatency": 136.528, - "totalByteWeight": 920375, - "totalTaskTime": 462.14699999999937, - "mainDocumentTransferSize": 72837 + "rtt": 1.5479999999999734, + "throughput": 22265989.23232706, + "maxRtt": 101.997, + "maxServerLatency": 94.325, + "totalByteWeight": 973935, + "totalTaskTime": 463.96599999999916, + "mainDocumentTransferSize": 76129 } ] } @@ -235045,13 +236478,13 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-01-14T03:15:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-03-20T22:44:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", - "trackersCount": 13, + "trackersCount": 11, "lighthouse_performance": 0.5, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.89, @@ -235085,7 +236518,7 @@ "http": { "url": "https://longuevieauxobjets.ademe.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:42:33 GMT", + "end_time": "Sun, 24 Dec 2023 01:42:38 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -235094,18 +236527,18 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 01:42:31 GMT", + "Date": "Sun, 24 Dec 2023 01:42:37 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "sc-sticky-session=eCR+QG90o9WzH5vGzvhdVGhzZnJvgaQop+00fVyi/KCgd/U/Wqphowg5djUIYeJOuCio7i9ETnSQfbiJcyip1w==; Expires=Mon, 18-Dec-23 01:42:31 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Set-Cookie": "sc-sticky-session=qEcO1oZEf4n3qn6bQrYzr5G7okJgzeN/G/3eBEASsvbDSatR2YSf3vXRRkmXi5wv+xVyWnArX3xYoZaNuK0pzw==; Expires=Mon, 25-Dec-23 01:42:37 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "ALLOWALL", - "X-Request-ID": "870cefd2-e684-4cc6-b858-68f70c30db3e" + "X-Request-ID": "6dda8d65-e18b-4832-a980-df74b561b07e" }, - "scan_id": 45536946, + "scan_id": 45752382, "score": 45, - "start_time": "Sun, 17 Dec 2023 01:42:28 GMT", + "start_time": "Sun, 24 Dec 2023 01:42:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -235145,7 +236578,7 @@ "data": { "sc-sticky-session": { "domain": "longuevieauxobjets.ademe.fr", - "expires": 1702863752, + "expires": 1703468558, "httponly": true, "max-age": null, "path": "/", @@ -235305,15 +236738,15 @@ "syd" ], "recipients": [], - "last_check_at": "2023-12-17T07:55:54Z", - "next_check_at": "2023-12-17T08:00:53Z", + "last_check_at": "2023-12-24T07:46:50Z", + "next_check_at": "2023-12-24T07:51:48Z", "mute_until": null, "favicon_url": "https://longuevieauxobjets.ademe.fr/static/favicon-16x16.8ef53b602d67.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T07:41:00Z", + "tested_at": "2023-12-24T07:12:03Z", "expires_at": "2024-01-24T12:30:09Z", "valid": true, "error": null @@ -235322,11 +236755,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 12, - "connection": 22, - "handshake": 27, - "response": 77, - "total": 138 + "namelookup": 6, + "connection": 20, + "handshake": 26, + "response": 80, + "total": 131 } }, "uptimeGrade": "A", @@ -235359,77 +236792,77 @@ "testssl": [ { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -235437,7 +236870,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -235445,7 +236878,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -235453,7 +236886,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -235461,7 +236894,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -235469,7 +236902,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -235477,525 +236910,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-10-26 12:30" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-01-24 12:30" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702799066" + "finding": "1703403191" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -236003,7 +237436,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -236012,7 +237445,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -236021,7 +237454,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -236030,7 +237463,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -236039,7 +237472,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -236047,7 +237480,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -236056,7 +237489,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -236065,7 +237498,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -236074,7 +237507,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -236083,14 +237516,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -236099,7 +237532,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -236108,7 +237541,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -236117,7 +237550,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -236126,7 +237559,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -236135,7 +237568,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -236144,7 +237577,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -236153,7 +237586,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -236162,7 +237595,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -236171,7 +237604,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -236180,392 +237613,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236573,7 +238006,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236581,7 +238014,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236589,7 +238022,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236597,7 +238030,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236605,7 +238038,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236613,525 +238046,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-10-26 12:30" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-01-24 12:30" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702799120" + "finding": "1703403293" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -237139,7 +238572,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -237148,7 +238581,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -237157,7 +238590,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -237166,7 +238599,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -237175,7 +238608,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -237183,7 +238616,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -237192,7 +238625,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -237201,7 +238634,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -237210,7 +238643,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -237219,14 +238652,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -237235,7 +238668,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -237244,7 +238677,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -237253,7 +238686,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -237262,7 +238695,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -237271,7 +238704,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -237280,7 +238713,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -237289,7 +238722,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -237298,7 +238731,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -237307,7 +238740,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -237316,392 +238749,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237709,7 +239142,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237717,7 +239150,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237725,7 +239158,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237733,7 +239166,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -237741,7 +239174,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -237749,525 +239182,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-10-26 12:30" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-01-24 12:30" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702799176" + "finding": "1703403394" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -238275,7 +239708,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -238284,7 +239717,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -238293,7 +239726,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -238302,7 +239735,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -238311,7 +239744,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -238319,7 +239752,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -238328,7 +239761,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -238337,7 +239770,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -238346,7 +239779,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -238355,14 +239788,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -238371,7 +239804,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -238380,7 +239813,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -238389,7 +239822,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -238398,7 +239831,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -238407,7 +239840,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -238416,7 +239849,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -238425,7 +239858,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -238434,7 +239867,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -238443,7 +239876,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -238452,315 +239885,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" @@ -239112,7 +240545,7 @@ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", @@ -239315,7 +240748,7 @@ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702799231" + "finding": "1703403494" }, { "id": "HSTS_time", @@ -239906,7 +241339,7 @@ "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "407" } ], "thirdparties": { @@ -239917,11 +241350,11 @@ }, { "type": "unknown", - "url": "https://eu.posthog.com/e/?ip=1&_=1702799026481&ver=1.96.0" + "url": "https://eu.posthog.com/e/?ip=1&_=1703403113770&ver=1.96.0" }, { "type": "unknown", - "url": "https://eu.posthog.com/decide/?v=3&ip=1&_=1702799026488&ver=1.96.0" + "url": "https://eu.posthog.com/decide/?v=3&ip=1&_=1703403113776&ver=1.96.0" } ], "cookies": [ @@ -239930,7 +241363,7 @@ "value": "1", "domain": ".longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1702800826, + "expires": 1703404914, "size": 16, "httpOnly": false, "secure": true, @@ -239942,10 +241375,10 @@ }, { "name": "_pk_id.50.a290", - "value": "db83bf3490d8e17d.1702799027.", + "value": "9b331278b508172e.1703403114.", "domain": ".longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1736754227, + "expires": 1737358314, "size": 42, "httpOnly": false, "secure": true, @@ -239957,10 +241390,10 @@ }, { "name": "ph_phc_SGbYOrenShCMKJOQYyl62se9ZqCHntjTlzgKNhrKnzm_posthog", - "value": "%7B%22distinct_id%22%3A%22018c76bb-292c-7884-8adc-38e69a6873ae%22%2C%22%24sesid%22%3A%5B1702799026479%2C%22018c76bb-292f-7b4f-8654-027df1da966c%22%2C1702799026479%5D%7D", + "value": "%7B%22distinct_id%22%3A%22018c9abc-cd25-752e-81c5-ddec860b1b3f%22%2C%22%24sesid%22%3A%5B1703403113768%2C%22018c9abc-cd28-7915-b571-e2a9ebe61f2e%22%2C1703403113768%5D%7D", "domain": ".ademe.fr", "path": "/", - "expires": 1734335026, + "expires": 1734939113, "size": 226, "httpOnly": false, "secure": true, @@ -239972,10 +241405,10 @@ }, { "name": "sc-sticky-session", - "value": "eCR+QG90o9WzH5vGzvhdVD1EEOMnKDiyyypTbpwfJYC/+lxYN3bhM2PaWkUDW3b3I5py7oRQDjqL53oxwKQ49Q==", + "value": "qEcO1oZEf4n3qn6bQrYzr5MtT2wt7q20IaD2L/aLko8RvpPKpD3HPe8t0yAD/foAItEK3aKVAS8vFxV2YfYnNQ==", "domain": "longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1702885426.557815, + "expires": 1703489513.886027, "size": 105, "httpOnly": true, "secure": true, @@ -239990,18 +241423,18 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 07:43:45 GMT", + "date": "Sun, 24 Dec 2023 07:31:52 GMT", "referrer-policy": "same-origin", - "set-cookie": "sc-sticky-session=eCR+QG90o9WzH5vGzvhdVD1EEOMnKDiyyypTbpwfJYC/+lxYN3bhM2PaWkUDW3b3I5py7oRQDjqL53oxwKQ49Q==; Expires=Mon, 18-Dec-23 07:43:45 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "set-cookie": "sc-sticky-session=qEcO1oZEf4n3qn6bQrYzr5MtT2wt7q20IaD2L/aLko8RvpPKpD3HPe8t0yAD/foAItEK3aKVAS8vFxV2YfYnNQ==; Expires=Mon, 25-Dec-23 07:31:52 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "ALLOWALL", - "x-request-id": "89711f85-4657-443f-a2cd-7d81a4d463c3" + "x-request-id": "01068f7f-e0ca-48a5-94bf-115dcb3fbcbe" }, "endpoints": [ { "hostname": "longuevieauxobjets.ademe.fr", - "ip": "109.232.236.90", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -240057,7 +241490,7 @@ }, { "hostname": "eu.posthog.com", - "ip": "18.67.65.92", + "ip": "108.138.246.93", "geoip": { "continent": { "code": "NA", @@ -240285,7 +241718,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:43:06", + "@generated": "Sun, 24 Dec 2023 07:31:12", "site": [ { "@name": "https://longuevieauxobjets.ademe.fr", @@ -240418,73 +241851,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "longuevieauxobjets.ademe.fr.", "matched-at": "longuevieauxobjets.ademe.fr", - "timestamp": "2023-12-17T07:48:33.098299764Z", + "extracted-results": [ + "quefairedemesobjets.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T07:40:06.028968933Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "longuevieauxobjets.ademe.fr.", "matched-at": "longuevieauxobjets.ademe.fr", - "extracted-results": [ - "quefairedemesobjets.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T07:48:33.185524276Z", + "timestamp": "2023-12-24T07:40:06.216693727Z", "matcher-status": true }, { @@ -240512,8 +241945,8 @@ "extracted-results": [ "GET, POST, PUT, HEAD, OPTIONS" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:48:41.22854182Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:40:17.939368163Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240551,8 +241984,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:48:46.197115171Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:40:26.761498519Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240587,8 +242020,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr/admin/login/?next=/admin/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:12.086616243Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:10.485205167Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr/admin/login/?next=/admin/'", "matcher-status": true }, @@ -240620,12 +242053,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.720660246Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660621401Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240657,12 +242090,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.720698036Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660670362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240694,12 +242127,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.720708616Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660686232Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240731,12 +242164,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.720717342Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660699146Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240768,12 +242201,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.72073209Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660714044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240805,12 +242238,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:19.720749102Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:41:24.660729493Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -240849,8 +242282,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:49:42.744835191Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:42:05.681940983Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: longuevieauxobjets.ademe.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr/'", "matcher-status": true }, @@ -240865,7 +242298,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -240879,8 +242313,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:55:22.63354499Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:47:59.226650054Z", "matcher-status": true }, { @@ -240894,7 +242328,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -240908,8 +242343,8 @@ "extracted-results": [ "longuevieauxobjets.ademe.fr" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:55:22.633660896Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:47:59.22680253Z", "matcher-status": true }, { @@ -240924,7 +242359,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -240938,8 +242374,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:55:24.015168117Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:48:01.672530015Z", "matcher-status": true }, { @@ -240954,7 +242390,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -240968,8 +242405,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T07:55:24.192611194Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:48:01.984229824Z", "matcher-status": true } ], @@ -240977,7 +242414,7 @@ { "requestedUrl": "https://longuevieauxobjets.ademe.fr/", "finalUrl": "https://longuevieauxobjets.ademe.fr/", - "fetchTime": "2023-12-17T07:43:19.984Z", + "fetchTime": "2023-12-24T07:31:26.769Z", "runWarnings": [], "categories": { "performance": { @@ -241020,7 +242457,7 @@ "snapshot" ], "id": "seo", - "score": 0.99 + "score": 1 }, "pwa": { "title": "PWA", @@ -241040,53 +242477,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2388, + "numericValue": 2702, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2388, - "firstMeaningfulPaint": 2388, - "largestContentfulPaint": 4543, - "interactive": 2388, - "speedIndex": 2388, + "firstContentfulPaint": 2702, + "firstMeaningfulPaint": 2702, + "largestContentfulPaint": 5103, + "interactive": 2702, + "speedIndex": 2702, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.08277189943525527, - "cumulativeLayoutShiftMainFrame": 0.08277189943525527, - "totalCumulativeLayoutShift": 0.08277189943525527, + "cumulativeLayoutShift": 0.08271385669708253, + "cumulativeLayoutShiftMainFrame": 0.08271385669708253, + "totalCumulativeLayoutShift": 0.08271385669708253, "observedTimeOrigin": 0, - "observedTimeOriginTs": 232059719, + "observedTimeOriginTs": 257146659, "observedNavigationStart": 0, - "observedNavigationStartTs": 232059719, - "observedFirstPaint": 338, - "observedFirstPaintTs": 232398065, - "observedFirstContentfulPaint": 338, - "observedFirstContentfulPaintTs": 232398065, - "observedFirstContentfulPaintAllFrames": 338, - "observedFirstContentfulPaintAllFramesTs": 232398065, - "observedFirstMeaningfulPaint": 338, - "observedFirstMeaningfulPaintTs": 232398065, - "observedLargestContentfulPaint": 452, - "observedLargestContentfulPaintTs": 232511482, - "observedLargestContentfulPaintAllFrames": 452, - "observedLargestContentfulPaintAllFramesTs": 232511482, - "observedTraceEnd": 3034, - "observedTraceEndTs": 235093681, - "observedLoad": 727, - "observedLoadTs": 232786986, + "observedNavigationStartTs": 257146659, + "observedFirstPaint": 619, + "observedFirstPaintTs": 257765884, + "observedFirstContentfulPaint": 619, + "observedFirstContentfulPaintTs": 257765884, + "observedFirstContentfulPaintAllFrames": 619, + "observedFirstContentfulPaintAllFramesTs": 257765884, + "observedFirstMeaningfulPaint": 619, + "observedFirstMeaningfulPaintTs": 257765884, + "observedLargestContentfulPaint": 819, + "observedLargestContentfulPaintTs": 257965981, + "observedLargestContentfulPaintAllFrames": 819, + "observedLargestContentfulPaintAllFramesTs": 257965981, + "observedTraceEnd": 3680, + "observedTraceEndTs": 260826946, + "observedLoad": 1372, + "observedLoadTs": 258518722, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 232060282, - "observedCumulativeLayoutShift": 0.08277189943525527, - "observedCumulativeLayoutShiftMainFrame": 0.08277189943525527, - "observedTotalCumulativeLayoutShift": 0.08277189943525527, - "observedFirstVisualChange": 347, - "observedFirstVisualChangeTs": 232406719, - "observedLastVisualChange": 964, - "observedLastVisualChangeTs": 233023719, - "observedSpeedIndex": 407, - "observedSpeedIndexTs": 232466701 + "observedDomContentLoadedTs": 257147168, + "observedCumulativeLayoutShift": 0.08271385669708253, + "observedCumulativeLayoutShiftMainFrame": 0.08271385669708253, + "observedTotalCumulativeLayoutShift": 0.08271385669708253, + "observedFirstVisualChange": 609, + "observedFirstVisualChangeTs": 257755659, + "observedLastVisualChange": 1226, + "observedLastVisualChangeTs": 258372659, + "observedSpeedIndex": 701, + "observedSpeedIndexTs": 257847352 }, { "lcpInvalidated": false @@ -241108,19 +242545,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 4, - "numTasks": 14, + "numTasks": 17, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.763, - "throughput": 13137449.668777665, - "maxRtt": 83.012, - "maxServerLatency": 99.95299999999999, - "totalByteWeight": 709240, - "totalTaskTime": 4.735, - "mainDocumentTransferSize": 17806 + "rtt": 0.693000000000012, + "throughput": 7069418.822818825, + "maxRtt": 150.035, + "maxServerLatency": 160.74099999999999, + "totalByteWeight": 729549, + "totalTaskTime": 2.87, + "mainDocumentTransferSize": 17951 } ] } @@ -241190,7 +242627,7 @@ "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", @@ -241210,37 +242647,37 @@ "http": { "url": "https://openacademie.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:54:19 GMT", + "end_time": "Sun, 24 Dec 2023 07:46:02 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Access-Control-Allow-Origin": "*", - "Age": "1", + "Age": "0", "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Length": "3401", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 07:54:19 GMT", + "Date": "Sun, 24 Dec 2023 07:46:01 GMT", "ETag": "W/\"65783098-3583\"", "Last-Modified": "Tue, 12 Dec 2023 10:06:16 GMT", "Server": "GitHub.com", "Vary": "Accept-Encoding", "Via": "1.1 varnish", - "X-Cache": "HIT", - "X-Cache-Hits": "1", - "X-Fastly-Request-ID": "5eeee026f78ff3d4feffd19a88ec2289618d0724", - "X-GitHub-Request-Id": "23D0:7953:394A8:46E5B:657EA929", - "X-Served-By": "cache-sjc10047-SJC", - "X-Timer": "S1702799659.175063,VS0,VE1", - "expires": "Sun, 17 Dec 2023 08:04:18 GMT", + "X-Cache": "MISS", + "X-Cache-Hits": "0", + "X-Fastly-Request-ID": "b38d3f89b4abd62287c7f2afa3984849a58de70d", + "X-GitHub-Request-Id": "0EE6:0FB1:EF8811:14E641D:6587E1B8", + "X-Served-By": "cache-sjc10068-SJC", + "X-Timer": "S1703403962.603715,VS0,VE67", + "expires": "Sun, 24 Dec 2023 07:56:01 GMT", "x-proxy-cache": "MISS" }, - "scan_id": 45545980, + "scan_id": 45761722, "score": 0, - "start_time": "Sun, 17 Dec 2023 07:49:18 GMT", + "start_time": "Sun, 24 Dec 2023 07:41:19 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -241434,77 +242871,77 @@ "testssl": [ { "id": "service", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -241512,7 +242949,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -241520,7 +242957,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -241528,7 +242965,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -241536,7 +242973,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -241544,7 +242981,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -241552,490 +242989,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-03 15:30" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-01 15:30" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702799739" + "finding": "1703404039" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -242043,7 +243480,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -242052,7 +243489,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -242061,7 +243498,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -242070,7 +243507,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -242079,7 +243516,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -242087,7 +243524,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -242096,7 +243533,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -242105,7 +243542,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -242114,7 +243551,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -242123,14 +243560,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -242139,7 +243576,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -242148,7 +243585,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -242157,7 +243594,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -242166,7 +243603,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -242175,7 +243612,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -242184,7 +243621,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -242193,7 +243630,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -242202,7 +243639,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -242211,7 +243648,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -242220,322 +243657,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -242740,7 +244177,7 @@ "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -242887,7 +244324,7 @@ "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", @@ -243097,7 +244534,7 @@ "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702799790" + "finding": "1703404090" }, { "id": "HSTS", @@ -243848,7 +245285,7 @@ "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -243995,7 +245432,7 @@ "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", @@ -244198,14 +245635,14 @@ "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702799842" + "finding": "1703404140" }, { "id": "HSTS", @@ -244758,77 +246195,77 @@ }, { "id": "service", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244836,7 +246273,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244844,7 +246281,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244852,7 +246289,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244860,7 +246297,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244868,7 +246305,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244876,490 +246313,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-03 15:30" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-01 15:30" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702799895" + "finding": "1703404192" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -245367,7 +246804,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -245376,7 +246813,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -245385,7 +246822,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -245394,7 +246831,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -245403,7 +246840,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -245411,7 +246848,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -245420,7 +246857,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -245429,7 +246866,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -245438,7 +246875,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -245447,14 +246884,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -245463,7 +246900,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -245472,7 +246909,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -245481,7 +246918,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -245490,7 +246927,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -245499,7 +246936,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -245508,7 +246945,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -245517,7 +246954,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -245526,7 +246963,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -245535,7 +246972,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -245544,332 +246981,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "211" + "finding": "207" } ], "thirdparties": { @@ -246019,25 +247456,25 @@ "headers": { "accept-ranges": "bytes", "access-control-allow-origin": "*", - "age": "346", + "age": "326", "cache-control": "max-age=600", "connection": "keep-alive", "content-encoding": "gzip", "content-length": "3401", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 07:54:56 GMT", + "date": "Sun, 24 Dec 2023 07:46:37 GMT", "etag": "W/\"65783098-3583\"", "last-modified": "Tue, 12 Dec 2023 10:06:16 GMT", "server": "GitHub.com", "vary": "Accept-Encoding", "via": "1.1 varnish", "x-cache": "HIT", - "x-cache-hits": "2", - "x-fastly-request-id": "179dd429bb14d8005e8625bf405542b37cbfdffe", - "x-github-request-id": "2588:59A7:1B18FBD:259C3CB:657EA791", - "x-served-by": "cache-iad-kcgs7200040-IAD", - "x-timer": "S1702799696.254902,VS0,VE0", - "expires": "Sun, 17 Dec 2023 07:57:30 GMT", + "x-cache-hits": "1", + "x-fastly-request-id": "76c51928a40b1da2be40128597db386940f49c9c", + "x-github-request-id": "CE46:1160:193BD0B:236A28B:6587E032", + "x-served-by": "cache-iad-kcgs7200136-IAD", + "x-timer": "S1703403998.820752,VS0,VE1", + "expires": "Sun, 24 Dec 2023 07:49:31 GMT", "x-proxy-cache": "MISS" }, "endpoints": [ @@ -246099,8 +247536,21 @@ }, { "hostname": "openacademie.fr", - "ip": "185.199.110.153", + "ip": "185.199.109.153", "geoip": { + "city": { + "geoname_id": 5391959, + "names": { + "de": "San Francisco", + "en": "San Francisco", + "es": "San Francisco", + "fr": "San Francisco", + "ja": "サンフランシスコ", + "pt-BR": "São Francisco", + "ru": "Сан-Франциско", + "zh-CN": "旧金山" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -246130,11 +247580,15 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 34.0544, - "longitude": -118.244, + "accuracy_radius": 20, + "latitude": 37.7642, + "longitude": -122.3993, + "metro_code": 807, "time_zone": "America/Los_Angeles" }, + "postal": { + "code": "94107" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -246169,7 +247623,7 @@ }, { "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.25.14", + "ip": "104.17.24.14", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -246309,7 +247763,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:48:55", + "@generated": "Sun, 24 Dec 2023 07:40:56", "site": [ { "@name": "https://openacademie.beta.gouv.fr", @@ -246428,73 +247882,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "openacademie.beta.gouv.fr.", "matched-at": "openacademie.beta.gouv.fr", - "extracted-results": [ - "betagouv-redirections.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T07:59:36.840768386Z", + "timestamp": "2023-12-24T07:51:12.187477605Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "openacademie.beta.gouv.fr.", "matched-at": "openacademie.beta.gouv.fr", - "timestamp": "2023-12-17T07:59:37.849240846Z", + "extracted-results": [ + "betagouv-redirections.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T07:51:12.260494261Z", "matcher-status": true }, { @@ -246532,8 +247986,8 @@ "type": "http", "host": "https://openacademie.beta.gouv.fr", "matched-at": "https://openacademie.beta.gouv.fr/", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T08:00:42.173472073Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:52:17.124670393Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: openacademie.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openacademie.beta.gouv.fr/'", "matcher-status": true }, @@ -246548,7 +248002,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -246562,8 +248017,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T08:06:21.552394589Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:57:56.067405541Z", "matcher-status": true }, { @@ -246577,7 +248032,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -246591,8 +248047,8 @@ "extracted-results": [ "openacademie.beta.gouv.fr" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T08:06:21.552526745Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:57:56.067505287Z", "matcher-status": true }, { @@ -246607,7 +248063,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -246621,8 +248078,8 @@ "extracted-results": [ "tls12" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T08:06:22.82087203Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:57:57.392587978Z", "matcher-status": true }, { @@ -246637,7 +248094,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -246651,8 +248109,8 @@ "extracted-results": [ "tls13" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T08:06:23.0084412Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T07:57:57.566709632Z", "matcher-status": true } ], @@ -246660,7 +248118,7 @@ { "requestedUrl": "https://openacademie.beta.gouv.fr/", "finalUrl": "http://openacademie.fr/", - "fetchTime": "2023-12-17T07:49:09.291Z", + "fetchTime": "2023-12-24T07:41:09.994Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://openacademie.beta.gouv.fr/) was redirected to http://openacademie.fr/. Try testing the second URL directly." ], @@ -246725,53 +248183,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3068, + "numericValue": 3076, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2918, - "firstMeaningfulPaint": 2918, - "largestContentfulPaint": 5761, - "interactive": 3068, - "speedIndex": 2918, - "totalBlockingTime": 29, - "maxPotentialFID": 108, + "firstContentfulPaint": 2926, + "firstMeaningfulPaint": 2926, + "largestContentfulPaint": 6516, + "interactive": 3076, + "speedIndex": 2926, + "totalBlockingTime": 30, + "maxPotentialFID": 110, "cumulativeLayoutShift": 0.010080518086751302, "cumulativeLayoutShiftMainFrame": 0.010080518086751302, "totalCumulativeLayoutShift": 0.010080518086751302, "observedTimeOrigin": 0, - "observedTimeOriginTs": 274104576, + "observedTimeOriginTs": 259048344, "observedNavigationStart": 0, - "observedNavigationStartTs": 274104576, - "observedFirstPaint": 353, - "observedFirstPaintTs": 274457161, - "observedFirstContentfulPaint": 353, - "observedFirstContentfulPaintTs": 274457161, - "observedFirstContentfulPaintAllFrames": 353, - "observedFirstContentfulPaintAllFramesTs": 274457161, - "observedFirstMeaningfulPaint": 353, - "observedFirstMeaningfulPaintTs": 274457161, - "observedLargestContentfulPaint": 397, - "observedLargestContentfulPaintTs": 274501669, - "observedLargestContentfulPaintAllFrames": 397, - "observedLargestContentfulPaintAllFramesTs": 274501669, - "observedTraceEnd": 2727, - "observedTraceEndTs": 276831485, - "observedLoad": 417, - "observedLoadTs": 274521591, - "observedDomContentLoaded": 377, - "observedDomContentLoadedTs": 274481187, + "observedNavigationStartTs": 259048344, + "observedFirstPaint": 328, + "observedFirstPaintTs": 259376193, + "observedFirstContentfulPaint": 328, + "observedFirstContentfulPaintTs": 259376193, + "observedFirstContentfulPaintAllFrames": 328, + "observedFirstContentfulPaintAllFramesTs": 259376193, + "observedFirstMeaningfulPaint": 328, + "observedFirstMeaningfulPaintTs": 259376193, + "observedLargestContentfulPaint": 374, + "observedLargestContentfulPaintTs": 259422799, + "observedLargestContentfulPaintAllFrames": 374, + "observedLargestContentfulPaintAllFramesTs": 259422799, + "observedTraceEnd": 2665, + "observedTraceEndTs": 261713840, + "observedLoad": 357, + "observedLoadTs": 259405675, + "observedDomContentLoaded": 352, + "observedDomContentLoadedTs": 259400353, "observedCumulativeLayoutShift": 0.010080518086751302, "observedCumulativeLayoutShiftMainFrame": 0.010080518086751302, "observedTotalCumulativeLayoutShift": 0.010080518086751302, - "observedFirstVisualChange": 351, - "observedFirstVisualChangeTs": 274455576, - "observedLastVisualChange": 1034, - "observedLastVisualChangeTs": 275138576, - "observedSpeedIndex": 404, - "observedSpeedIndexTs": 274508353 + "observedFirstVisualChange": 324, + "observedFirstVisualChangeTs": 259372344, + "observedLastVisualChange": 974, + "observedLastVisualChangeTs": 260022344, + "observedSpeedIndex": 376, + "observedSpeedIndexTs": 259424123 }, { "lcpInvalidated": false @@ -246793,19 +248251,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 3, - "numTasks": 255, + "numTasks": 225, "numTasksOver10ms": 2, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.069999999999999, - "throughput": 151271778.95080712, - "maxRtt": 82.836, - "maxServerLatency": 11.246999999999996, - "totalByteWeight": 913697, - "totalTaskTime": 78.495, - "mainDocumentTransferSize": 4079 + "rtt": 1.469, + "throughput": 334683822.5184759, + "maxRtt": 81.238, + "maxServerLatency": 11.274999999999999, + "totalByteWeight": 913755, + "totalTaskTime": 81.37700000000005, + "mainDocumentTransferSize": 4078 } ] } @@ -246927,7 +248385,7 @@ "http": { "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 07:55:50 GMT", + "end_time": "Sun, 24 Dec 2023 07:46:03 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -246937,13 +248395,13 @@ "Content-Length": "258", "Content-Type": "application/json", "Country-Package": "openfisca-france", - "Country-Package-Version": "155.0.6", - "Date": "Sun, 17 Dec 2023 07:55:50 GMT", + "Country-Package-Version": "155.1.0", + "Date": "Sun, 24 Dec 2023 07:46:02 GMT", "Server": "nginx/1.18.0" }, - "scan_id": 45546100, + "scan_id": 45761815, "score": 20, - "start_time": "Sun, 17 Dec 2023 07:55:46 GMT", + "start_time": "Sun, 24 Dec 2023 07:45:44 GMT", "state": "FINISHED", "status_code": 300, "tests_failed": 5, @@ -247120,13 +248578,13 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.4p1 Debian 5+deb11u2", + "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { "type": "prion", - "id": "PRION:CVE-2016-20012", "cvss": "5.0", - "is_exploit": "false" + "is_exploit": "false", + "id": "PRION:CVE-2016-20012" } ] } @@ -247546,7 +249004,7 @@ "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -247749,7 +249207,7 @@ "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "1702799832" + "finding": "1703404060" }, { "id": "HSTS", @@ -248305,7 +249763,7 @@ "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "63" + "finding": "106" } ], "thirdparties": { @@ -248316,8 +249774,8 @@ "content-length": "258", "content-type": "application/json", "country-package": "openfisca-france", - "country-package-version": "155.0.6", - "date": "Sun, 17 Dec 2023 07:56:24 GMT", + "country-package-version": "155.1.0", + "date": "Sun, 24 Dec 2023 07:46:20 GMT", "server": "nginx/1.18.0" }, "endpoints": [ @@ -248414,7 +249872,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 07:55:17", + "@generated": "Sun, 24 Dec 2023 07:45:14", "site": [ { "@name": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", @@ -248529,7 +249987,7 @@ "type": "dns", "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr.", "matched-at": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "timestamp": "2023-12-17T07:58:14.413508152Z", + "timestamp": "2023-12-24T07:48:58.518214829Z", "matcher-status": true }, { @@ -248558,7 +250016,7 @@ "HEAD, OPTIONS, GET" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:58:24.73180903Z", + "timestamp": "2023-12-24T07:49:09.758156569Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248585,155 +250043,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:58:57.136344661Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800316513Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800365876Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800477524Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800504945Z", + "timestamp": "2023-12-24T07:49:55.814727101Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248770,7 +250080,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800522558Z", + "timestamp": "2023-12-24T07:50:11.111198293Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248807,7 +250117,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800542886Z", + "timestamp": "2023-12-24T07:50:11.111250201Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248839,12 +250149,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800561832Z", + "timestamp": "2023-12-24T07:50:11.111269768Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248876,12 +250186,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800576449Z", + "timestamp": "2023-12-24T07:50:11.111418647Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248913,12 +250223,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800596266Z", + "timestamp": "2023-12-24T07:50:11.111435208Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248955,7 +250265,81 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800613028Z", + "timestamp": "2023-12-24T07:50:11.111450367Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2023-12-24T07:50:11.111466617Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2023-12-24T07:50:11.111483739Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -248992,7 +250376,81 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:07.800629238Z", + "timestamp": "2023-12-24T07:50:11.111496604Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2023-12-24T07:50:11.111510219Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2023-12-24T07:50:11.111523484Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -249032,7 +250490,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:33.868702213Z", + "timestamp": "2023-12-24T07:50:49.196792841Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: openfisca.mes-aides.1jeune1solution.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/'", "matcher-status": true }, @@ -249077,7 +250535,7 @@ "redirect": "%09/evil.com/" }, "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:40.799274461Z", + "timestamp": "2023-12-24T07:50:58.770616457Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/%09/evil.com/'", "matcher-status": true }, @@ -249124,10 +250582,10 @@ "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr:22", "matched-at": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2" + "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:56.119571642Z", + "timestamp": "2023-12-24T07:51:20.433272431Z", "matcher-status": true }, { @@ -249141,7 +250599,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -249156,7 +250615,7 @@ "Let's Encrypt" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:57.83900212Z", + "timestamp": "2023-12-24T07:51:23.297392632Z", "matcher-status": true }, { @@ -249170,7 +250629,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -249186,7 +250646,7 @@ "www.mes-aides.1jeune1solution.beta.gouv.fr" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:57.839131613Z", + "timestamp": "2023-12-24T07:51:23.297523888Z", "matcher-status": true }, { @@ -249201,7 +250661,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -249216,7 +250677,7 @@ "tls12" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:59.34246499Z", + "timestamp": "2023-12-24T07:51:25.385416633Z", "matcher-status": true }, { @@ -249231,7 +250692,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -249246,7 +250708,7 @@ "tls13" ], "ip": "5.135.137.147", - "timestamp": "2023-12-17T07:59:59.601940813Z", + "timestamp": "2023-12-24T07:51:26.062242993Z", "matcher-status": true } ], @@ -249318,29 +250780,29 @@ "http": { "url": "https://pad.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:07:40 GMT", + "end_time": "Sun, 24 Dec 2023 08:08:10 GMT", "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-7dbb86b0-d6e1-45b8-849c-cc7fe2d709a7' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-2db36799-0536-4104-b9f0-535a29a3b72c' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 08:07:38 GMT", + "Date": "Sun, 24 Dec 2023 08:08:08 GMT", "ETag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", "HedgeDoc-Version": "1.8.2", "Referrer-Policy": "same-origin", - "Set-Cookie": "connect.sid=s%3AhdE-Otmq9QJZKBHD5McXT0rfGuMCHJtF.XEcVJPd1MgkfHcF6zgbaYWUcsbuKphGgjcOfrQWm9yc; Path=/; Expires=Sun, 31 Dec 2023 08:07:38 GMT; HttpOnly; Secure; SameSite=Lax", + "Set-Cookie": "connect.sid=s%3A7qlUNL30AS92bJ0YpBKfDGNOxyD55UFU.b7HOmW%2F3WgdVX1u7GRSAumU8Mk%2B8J5k5u%2F8oaqKvKdg; Path=/; Expires=Sun, 07 Jan 2024 08:08:08 GMT; HttpOnly; Secure; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Express", - "X-Request-ID": "1c4a4d20-a8ae-4232-a6f9-1324a5ff46c6" + "X-Request-ID": "138137dd-efa3-4978-a76d-40268c75d283" }, - "scan_id": 45546388, + "scan_id": 45762231, "score": 25, - "start_time": "Sun, 17 Dec 2023 08:07:36 GMT", + "start_time": "Sun, 24 Dec 2023 08:04:59 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -249362,10 +250824,10 @@ "'self'" ], "font-src": [ - "'self'", - "https://*.disquscdn.com", "https://public.slidesharecdn.com", - "data:" + "https://*.disquscdn.com", + "data:", + "'self'" ], "img-src": [ "*" @@ -249377,23 +250839,23 @@ "*" ], "script-src": [ - "'self'", + "https://*.disquscdn.com", + "https://*.disqus.com", + "'unsafe-eval'", "https://gist.github.com", "https://disqus.com", - "https://www.google-analytics.com", + "vimeo.com", + "'nonce-2db36799-0536-4104-b9f0-535a29a3b72c'", "www.slideshare.net", - "https://*.disqus.com", + "https://www.google-analytics.com", "'sha256-81aclznzisnygyzrsuoyhpzwdttxi7vc1ym4unxqwam='", - "vimeo.com", - "'nonce-7dbb86b0-d6e1-45b8-849c-cc7fe2d709a7'", - "'unsafe-eval'", - "https://*.disquscdn.com" + "'self'" ], "style-src": [ - "https://github.githubassets.com", - "'self'", "'unsafe-inline'", - "https://*.disquscdn.com" + "https://*.disquscdn.com", + "https://github.githubassets.com", + "'self'" ] }, "http": true, @@ -249436,7 +250898,7 @@ "data": { "connect.sid": { "domain": "pad.incubateur.net", - "expires": 1704010060, + "expires": 1704614890, "httponly": true, "max-age": null, "path": "/", @@ -249592,32 +251054,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T08:20:29Z", - "next_check_at": "2023-12-17T08:22:28Z", + "last_check_at": "2023-12-24T08:24:22Z", + "next_check_at": "2023-12-24T08:26:21Z", "mute_until": null, "favicon_url": "https://pad.incubateur.net/icons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T08:11:45Z", - "expires_at": "2024-01-19T16:55:06Z", + "tested_at": "2023-12-24T08:08:24Z", + "expires_at": "2024-03-19T16:56:10Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.99, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 51, - "connection": 122, - "handshake": 129, - "response": 193, - "total": 496 + "namelookup": 63, + "connection": 143, + "handshake": 150, + "response": 178, + "total": 535 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" }, "nmap": { "host": "pad.incubateur.net", @@ -249646,77 +251108,77 @@ "testssl": [ { "id": "service", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249724,7 +251186,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249732,7 +251194,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249740,7 +251202,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -249748,7 +251210,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -249756,7 +251218,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -249764,525 +251226,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2023-10-21 16:55" + "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2024-01-19 16:55" + "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702800538" + "finding": "1703405391" }, { "id": "HSTS_multiple", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-ab0ab0b4-89a4-4aca-8d78-b995d058e9e8' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-663aab3a-6a75-4ac9-8437-7f7c7e2daa1c' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -250290,7 +251752,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -250299,7 +251761,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -250308,7 +251770,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -250317,7 +251779,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -250326,7 +251788,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -250334,7 +251796,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -250343,7 +251805,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -250352,7 +251814,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -250361,7 +251823,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -250370,14 +251832,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -250386,7 +251848,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -250395,7 +251857,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -250404,16 +251866,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2931EED238AC3F1F089FBBBC2CE529690F02C8FEFD3F8E2125FE0F8040164AEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=09F9388CCA8D524E92220DDA30B2196592D395E05CA7FCA61116AB0D40E2C3D7" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -250422,7 +251884,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -250431,7 +251893,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -250440,7 +251902,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -250449,7 +251911,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -250458,7 +251920,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -250467,315 +251929,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" @@ -250980,7 +252442,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -251050,7 +252512,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "04BAE16A07DE602EAC7E81C6805058234205" + "finding": "04BC9982FE02EBBA43A1E9E21FE11ED49593" }, { "id": "cert_serialNumberLen", @@ -251064,21 +252526,21 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "FB852F28E6A8352193AD049BAF322ADF65195CBA" + "finding": "72BC43AEE661112EF313D67ADB0B9322DCB53969" }, { "id": "cert_fingerprintSHA256", "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2931EED238AC3F1F089FBBBC2CE529690F02C8FEFD3F8E2125FE0F8040164AEE" + "finding": "09F9388CCA8D524E92220DDA30B2196592D395E05CA7FCA61116AB0D40E2C3D7" }, { "id": "cert", "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIE8jCCA9qgAwIBAgISBLyZgv4C67pDoeniH+Ee1JWTMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMjAxNjU2MTFaFw0yNDAzMTkxNjU2MTBaMB0xGzAZBgNVBAMTEnBhZC5pbmN1YmF0ZXVyLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALfSw7qFk3O3lsoriTomAxrGIFltgdAVCs6nrkNv9SGaUoGHAyXyFSgIrpg8WbW6ckvHMK/w7/8+JypEfKXPDq4DfgaxPm46ePhIUWxmLaJkGRWma1868D/IfXU6HJj6iD/vwTSOmhlJY6D64KX4SHoPUnnFc0Jppe3haXK+suSPrRFhyufXNqXuPQzVKJLuAnjtL6iMAbB0TPQ1mXiFFlVrjY12dIFBgUsbJyDmj803Tt+adAhGR1aorgeE4QmrSAC23Z8WzrD1VwD6BHQdEUX8YvlfwyabaMHYepF29ZVLTvSjNKwSfC0TfFYgGoLgUTpC2EVYQIA4c4TWL+k7YvkCAwEAAaOCAhUwggIRMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUL2vajwOMEy3cyDB53RHlJ4ZNiAwwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0RBBYwFIIScGFkLmluY3ViYXRldXIubmV0MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMiF7sSgAABAMARzBFAiArWTaQsgF6lPE2eCSY1i4Onz+WZszz5MtxBb+t3aqxDgIhAPqs7mMssznh8skZDNLdm6GItGML6ZDl9/AtSt9PXeByAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMiF7sSwAABAMASDBGAiEA2ZYHhSE3pq8BRl3PdfrzD5ZnpUv5qjWKJbL6XagCoVICIQCYLVOFhf4rB2M7HeaIbzq39IlKktaHhCNGNlf66ibGnzANBgkqhkiG9w0BAQsFAAOCAQEApYrmUgQukxO2yd33Cc3+X8HNuLndOaWaCcGe4rN17i3n1s3vrjzkhU1Zx5SpY+DFYDkGKsCWwKIlLmhfnm8Q7AQ1UYdpUFtvd+1zs/90VeRmU/KUBFXvkSGRULG5dcv7Rl5jRSzvT0Q7E/2yRyUXCYQOERBPL/5rVE+LvLaOdcWvRQqGqStU0GHnSnnC0W/U/dzjw6NFoS3DPej3TCAt25UyN9RyTQRP6LRvdxs1OPBoQUlySjB/SamR8F5LyUzJRL809H2SL+35XyzIhpk6obhxdD5RvsDHIJNdgU3g5ioEykvhk/FPUcAqrQY+gbuXF9f7+lzx7nSD41E5dzUEoQ==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -251127,21 +252589,21 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "33 >= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2023-10-21 16:55" + "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2024-01-19 16:55" + "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", @@ -251330,7 +252792,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702800596" + "finding": "1703405488" }, { "id": "HSTS_multiple", @@ -251407,7 +252869,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-2ab5ea10-1d9b-4a4d-b835-235e0b2210af' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-c0046d61-8d7c-42cd-b8ac-6cfcc16f924f' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", @@ -251545,7 +253007,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2931EED238AC3F1F089FBBBC2CE529690F02C8FEFD3F8E2125FE0F8040164AEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=09F9388CCA8D524E92220DDA30B2196592D395E05CA7FCA61116AB0D40E2C3D7" }, { "id": "LOGJAM", @@ -251918,77 +253380,77 @@ }, { "id": "service", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -251996,7 +253458,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252004,7 +253466,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252012,7 +253474,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252020,7 +253482,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -252028,7 +253490,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -252036,525 +253498,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2023-10-21 16:55" + "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2024-01-19 16:55" + "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702800660" + "finding": "1703405585" }, { "id": "HSTS_multiple", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-640c7456-8407-4061-b46d-9c843d3ea76e' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-2be65cac-0d77-4a83-9311-2ce36a02c3ce' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -252562,7 +254024,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -252571,7 +254033,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -252580,7 +254042,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -252589,7 +254051,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -252598,7 +254060,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -252606,7 +254068,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -252615,7 +254077,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -252624,7 +254086,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -252633,7 +254095,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -252642,14 +254104,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -252658,7 +254120,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -252667,7 +254129,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -252676,16 +254138,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2931EED238AC3F1F089FBBBC2CE529690F02C8FEFD3F8E2125FE0F8040164AEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=09F9388CCA8D524E92220DDA30B2196592D395E05CA7FCA61116AB0D40E2C3D7" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252694,7 +254156,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252703,7 +254165,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -252712,7 +254174,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -252721,7 +254183,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -252730,7 +254192,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -252739,392 +254201,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/148.253.75.120", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -253132,7 +254594,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -253140,7 +254602,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -253148,7 +254610,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -253156,7 +254618,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -253164,7 +254626,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -253172,525 +254634,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2023-10-21 16:55" + "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2024-01-19 16:55" + "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702800721" + "finding": "1703405681" }, { "id": "HSTS_multiple", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-3117d953-17c0-47d1-a2ba-8fba83d89797' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-fb85483e-9a63-495e-8102-77e53f38be61' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -253698,7 +255160,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -253707,7 +255169,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -253716,7 +255178,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -253725,7 +255187,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -253734,7 +255196,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -253742,7 +255204,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -253751,7 +255213,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -253760,7 +255222,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -253769,7 +255231,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -253778,14 +255240,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -253794,7 +255256,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -253803,7 +255265,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -253812,16 +255274,16 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2931EED238AC3F1F089FBBBC2CE529690F02C8FEFD3F8E2125FE0F8040164AEE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=09F9388CCA8D524E92220DDA30B2196592D395E05CA7FCA61116AB0D40E2C3D7" }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -253830,7 +255292,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -253839,7 +255301,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -253848,7 +255310,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -253857,7 +255319,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -253866,7 +255328,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -253875,325 +255337,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "247" + "finding": "389" } ], "thirdparties": { @@ -254201,11 +255663,11 @@ "cookies": [ { "name": "connect.sid", - "value": "s%3AmYyc5CHD4Kv4qe0GKjQBTORc6mXmMgtT.Af9mD8w6VlVkWXO0DobgiZIWiVKNRtRccX21YvWg4zA", + "value": "s%3AZaMHdIzKmx-pBFN9Ii3jpgksyHxemOee.3ewYzakSadA2zndruaf4zIEbIu%2BaY67NUkHAs%2FalqdI", "domain": "pad.incubateur.net", "path": "/", - "expires": 1704010093.506043, - "size": 91, + "expires": 1704614918.115686, + "size": 95, "httpOnly": true, "secure": true, "session": false, @@ -254217,23 +255679,32 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-926584d2-9e7a-418d-a554-8f3aa5cf2923' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-e216355f-94ca-424e-a8dd-a4e1b6f8e0a1' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 08:08:12 GMT", + "date": "Sun, 24 Dec 2023 08:08:37 GMT", "etag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", "hedgedoc-version": "1.8.2", "referrer-policy": "same-origin", - "set-cookie": "connect.sid=s%3AmYyc5CHD4Kv4qe0GKjQBTORc6mXmMgtT.Af9mD8w6VlVkWXO0DobgiZIWiVKNRtRccX21YvWg4zA; Path=/; Expires=Sun, 31 Dec 2023 08:08:12 GMT; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "connect.sid=s%3AZaMHdIzKmx-pBFN9Ii3jpgksyHxemOee.3ewYzakSadA2zndruaf4zIEbIu%2BaY67NUkHAs%2FalqdI; Path=/; Expires=Sun, 07 Jan 2024 08:08:37 GMT; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=31536000; includeSubDomains; preload", "vary": "Accept-Encoding", "x-powered-by": "Express", - "x-request-id": "3f015cd2-031f-470e-a40c-5a29220ca9f6" + "x-request-id": "919f42dc-4885-4e4e-953d-39ecc956a213" }, "endpoints": [ { "hostname": "pad.incubateur.net", - "ip": "148.253.75.120", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -254265,10 +255736,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -254283,7 +255757,28 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } } ] @@ -254502,7 +255997,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:07:07", + "@generated": "Sun, 24 Dec 2023 08:04:35", "site": [ { "@name": "https://pad.incubateur.net", @@ -254715,7 +256210,7 @@ "extracted-results": [ "betagouv-codimd.osc-fr1.scalingo.io." ], - "timestamp": "2023-12-17T08:13:32.264226734Z", + "timestamp": "2023-12-24T08:16:29.352234564Z", "matcher-status": true }, { @@ -254750,7 +256245,7 @@ "type": "dns", "host": "pad.incubateur.net.", "matched-at": "pad.incubateur.net", - "timestamp": "2023-12-17T08:13:32.331641193Z", + "timestamp": "2023-12-24T08:16:29.473457845Z", "matcher-status": true }, { @@ -254779,7 +256274,7 @@ "GET,HEAD" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:13:41.998514928Z", + "timestamp": "2023-12-24T08:16:39.896681915Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254811,7 +256306,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:13:48.446049754Z", + "timestamp": "2023-12-24T08:16:47.437559673Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254850,7 +256345,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:13:48.447956507Z", + "timestamp": "2023-12-24T08:16:47.439383935Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254877,7 +256372,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:17.392353601Z", + "timestamp": "2023-12-24T08:17:23.892816535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254909,12 +256404,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761608472Z", + "timestamp": "2023-12-24T08:17:39.750402925Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254946,12 +256441,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761659798Z", + "timestamp": "2023-12-24T08:17:39.750451256Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -254983,12 +256478,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761675196Z", + "timestamp": "2023-12-24T08:17:39.750467446Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255020,12 +256515,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.76169309Z", + "timestamp": "2023-12-24T08:17:39.750484388Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255057,12 +256552,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761734507Z", + "timestamp": "2023-12-24T08:17:39.750514376Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255094,12 +256589,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761754504Z", + "timestamp": "2023-12-24T08:17:39.750548529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255131,12 +256626,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761769753Z", + "timestamp": "2023-12-24T08:17:39.750581501Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255168,12 +256663,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:29.761782527Z", + "timestamp": "2023-12-24T08:17:39.750611437Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -255216,7 +256711,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/metrics", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:39.265527719Z", + "timestamp": "2023-12-24T08:17:52.32483459Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/metrics'", "matcher-status": true }, @@ -255247,7 +256742,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/metrics", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:14:46.042741709Z", + "timestamp": "2023-12-24T08:18:05.469678111Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/metrics'", "matcher-status": true }, @@ -255287,7 +256782,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/", "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:15:00.236898645Z", + "timestamp": "2023-12-24T08:18:18.690717996Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: pad.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/'", "matcher-status": true }, @@ -255302,7 +256797,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -255317,7 +256813,7 @@ "Let's Encrypt" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:20:45.199896099Z", + "timestamp": "2023-12-24T08:24:09.868862054Z", "matcher-status": true }, { @@ -255331,7 +256827,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -255346,7 +256843,7 @@ "pad.incubateur.net" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:20:45.200052041Z", + "timestamp": "2023-12-24T08:24:09.868972421Z", "matcher-status": true }, { @@ -255361,7 +256858,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -255376,7 +256874,7 @@ "tls12" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:20:46.689159929Z", + "timestamp": "2023-12-24T08:24:11.218964842Z", "matcher-status": true }, { @@ -255391,7 +256889,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -255406,7 +256905,7 @@ "tls13" ], "ip": "148.253.75.120", - "timestamp": "2023-12-17T08:20:46.901865204Z", + "timestamp": "2023-12-24T08:24:11.84887227Z", "matcher-status": true } ], @@ -255414,7 +256913,7 @@ { "requestedUrl": "https://pad.incubateur.net/", "finalUrl": "https://pad.incubateur.net/", - "fetchTime": "2023-12-17T08:07:22.610Z", + "fetchTime": "2023-12-24T08:04:48.930Z", "runWarnings": [], "categories": { "performance": { @@ -255477,53 +256976,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4784, + "numericValue": 4792, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1062, - "firstMeaningfulPaint": 3336, - "largestContentfulPaint": 3959, - "interactive": 4784, - "speedIndex": 3350, - "totalBlockingTime": 149, - "maxPotentialFID": 347, + "firstContentfulPaint": 1210, + "firstMeaningfulPaint": 3414, + "largestContentfulPaint": 3967, + "interactive": 4792, + "speedIndex": 3744, + "totalBlockingTime": 79, + "maxPotentialFID": 207, "cumulativeLayoutShift": 0.0006871678034464519, "cumulativeLayoutShiftMainFrame": 0.0006871678034464519, "totalCumulativeLayoutShift": 0.0006871678034464519, "observedTimeOrigin": 0, - "observedTimeOriginTs": 246989306, + "observedTimeOriginTs": 242629529, "observedNavigationStart": 0, - "observedNavigationStartTs": 246989306, - "observedFirstPaint": 956, - "observedFirstPaintTs": 247944873, - "observedFirstContentfulPaint": 956, - "observedFirstContentfulPaintTs": 247944873, - "observedFirstContentfulPaintAllFrames": 956, - "observedFirstContentfulPaintAllFramesTs": 247944873, - "observedFirstMeaningfulPaint": 1112, - "observedFirstMeaningfulPaintTs": 248101475, - "observedLargestContentfulPaint": 956, - "observedLargestContentfulPaintTs": 247944873, - "observedLargestContentfulPaintAllFrames": 956, - "observedLargestContentfulPaintAllFramesTs": 247944873, - "observedTraceEnd": 3504, - "observedTraceEndTs": 250493485, - "observedLoad": 1102, - "observedLoadTs": 248091013, - "observedDomContentLoaded": 1091, - "observedDomContentLoadedTs": 248080407, + "observedNavigationStartTs": 242629529, + "observedFirstPaint": 1216, + "observedFirstPaintTs": 243845960, + "observedFirstContentfulPaint": 1216, + "observedFirstContentfulPaintTs": 243845960, + "observedFirstContentfulPaintAllFrames": 1216, + "observedFirstContentfulPaintAllFramesTs": 243845960, + "observedFirstMeaningfulPaint": 1361, + "observedFirstMeaningfulPaintTs": 243990092, + "observedLargestContentfulPaint": 1216, + "observedLargestContentfulPaintTs": 243845960, + "observedLargestContentfulPaintAllFrames": 1216, + "observedLargestContentfulPaintAllFramesTs": 243845960, + "observedTraceEnd": 3741, + "observedTraceEndTs": 246371012, + "observedLoad": 1351, + "observedLoadTs": 243980239, + "observedDomContentLoaded": 1299, + "observedDomContentLoadedTs": 243928820, "observedCumulativeLayoutShift": 0.0006871678034464519, "observedCumulativeLayoutShiftMainFrame": 0.0006871678034464519, "observedTotalCumulativeLayoutShift": 0.0006871678034464519, - "observedFirstVisualChange": 934, - "observedFirstVisualChangeTs": 247923306, - "observedLastVisualChange": 1550, - "observedLastVisualChangeTs": 248539306, - "observedSpeedIndex": 959, - "observedSpeedIndexTs": 247947915 + "observedFirstVisualChange": 1227, + "observedFirstVisualChangeTs": 243856529, + "observedLastVisualChange": 1844, + "observedLastVisualChangeTs": 244473529, + "observedSpeedIndex": 1247, + "observedSpeedIndexTs": 243876411 }, { "lcpInvalidated": false @@ -255545,19 +257044,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 4, - "numTasks": 268, - "numTasksOver10ms": 4, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, + "numTasks": 300, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 100.7, - "throughput": 15142380.142521836, - "maxRtt": 100.7, - "maxServerLatency": 12.159000000000006, - "totalByteWeight": 849179, - "totalTaskTime": 279.8389999999999, - "mainDocumentTransferSize": 4052 + "rtt": 137.68800000000002, + "throughput": 11414724.618981833, + "maxRtt": 137.68800000000002, + "maxServerLatency": 10.036999999999978, + "totalByteWeight": 849324, + "totalTaskTime": 249.7869999999999, + "mainDocumentTransferSize": 4056 } ] } @@ -255607,15 +257106,15 @@ "sonarcloud": null, "summary": { "httpGrade": "D-", - "apdex": 0.99, - "apdexGrade": "B", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-19T16:55:00.000Z", + "testsslExpireDate": "2024-03-19T16:56:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, @@ -255647,7 +257146,7 @@ "http": { "url": "https://partaj.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 10 Dec 2023 04:41:08 GMT", + "end_time": "Sun, 24 Dec 2023 05:02:47 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -255655,19 +257154,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 10 Dec 2023 04:41:07 GMT", - "Set-Cookie": "csrftoken=7HtuoQWLTOjMuFaRuA8bY6bNDddulkFrLXruehjQGbsD6auKwrdklrnZhB5YMWbk; expires=Sun, 08 Dec 2024 04:41:07 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Date": "Sun, 24 Dec 2023 05:02:46 GMT", + "Set-Cookie": "csrftoken=LTNSUPJcfzlnmLQJt81S0OSU9cWN3xCa2smvXrzpM9WsALBYypGMUHwu6ytmLHxT; expires=Sun, 22 Dec 2024 05:02:46 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "1618a384-5a1b-4361-ac23-774cb0a94c1f", + "X-Request-ID": "eed6dabf-fb7b-4c8a-828e-82e0368c6b70", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45355396, + "scan_id": 45756789, "score": 75, - "start_time": "Sun, 10 Dec 2023 04:41:05 GMT", + "start_time": "Sun, 24 Dec 2023 05:02:43 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -255707,7 +257206,7 @@ "data": { "csrftoken": { "domain": "partaj.beta.gouv.fr", - "expires": 1733632868, + "expires": 1734843766, "httponly": false, "max-age": null, "path": "/", @@ -255863,32 +257362,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-10T08:24:26Z", - "next_check_at": "2023-12-10T08:29:24Z", + "last_check_at": "2023-12-24T08:17:30Z", + "next_check_at": "2023-12-24T08:22:28Z", "mute_until": null, "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-10T07:57:02Z", - "expires_at": "2024-01-21T21:46:09Z", + "tested_at": "2023-12-24T07:52:42Z", + "expires_at": "2024-03-21T21:47:08Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.882, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 898, - "connection": 0, - "handshake": 100, - "response": -156, - "total": 937 + "namelookup": 170, + "connection": 119, + "handshake": 154, + "response": 126, + "total": 570 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "partaj.beta.gouv.fr", @@ -256185,7 +257684,7 @@ "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "04E5964165927640E292BE9148C9131E34EF" + "finding": "04E2BAFF2A92D061782CCF2529BE68452EA9" }, { "id": "cert_serialNumberLen", @@ -256199,21 +257698,21 @@ "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "EE5576134C59107063BE0FBB3CA9132497F7A227" + "finding": "A964700E3D4474919FF787A3C1CDF505B7BEB779" }, { "id": "cert_fingerprintSHA256", "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "cert", "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -256262,21 +257761,21 @@ "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-10-23 21:46" + "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-01-21 21:46" + "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", @@ -256465,7 +257964,7 @@ "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702195730" + "finding": "1703405202" }, { "id": "HSTS_time", @@ -256680,7 +258179,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "LOGJAM", @@ -257053,77 +258552,77 @@ }, { "id": "service", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257131,7 +258630,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257139,7 +258638,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257147,7 +258646,7 @@ }, { "id": "cipherlist_LOW", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -257155,7 +258654,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -257163,7 +258662,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -257171,525 +258670,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-10-23 21:46" + "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-01-21 21:46" + "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702195829" + "finding": "1703405260" }, { "id": "HSTS_time", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -257697,7 +259196,7 @@ }, { "id": "heartbleed", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -257706,7 +259205,7 @@ }, { "id": "CCS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -257715,7 +259214,7 @@ }, { "id": "ticketbleed", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -257724,7 +259223,7 @@ }, { "id": "ROBOT", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -257733,7 +259232,7 @@ }, { "id": "secure_renego", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -257741,7 +259240,7 @@ }, { "id": "secure_client_renego", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -257750,7 +259249,7 @@ }, { "id": "CRIME_TLS", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -257759,7 +259258,7 @@ }, { "id": "BREACH", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -257768,7 +259267,7 @@ }, { "id": "POODLE_SSL", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -257777,14 +259276,14 @@ }, { "id": "fallback_SCSV", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -257793,7 +259292,7 @@ }, { "id": "FREAK", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -257802,7 +259301,7 @@ }, { "id": "DROWN", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -257811,16 +259310,16 @@ }, { "id": "DROWN_hint", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "LOGJAM", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -257829,7 +259328,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -257838,7 +259337,7 @@ }, { "id": "BEAST", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -257847,7 +259346,7 @@ }, { "id": "LUCKY13", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -257856,7 +259355,7 @@ }, { "id": "winshock", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -257865,7 +259364,7 @@ }, { "id": "RC4", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -257874,315 +259373,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "partaj.beta.gouv.fr/185.21.194.105", + "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" @@ -258457,7 +259956,7 @@ "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "04E5964165927640E292BE9148C9131E34EF" + "finding": "04E2BAFF2A92D061782CCF2529BE68452EA9" }, { "id": "cert_serialNumberLen", @@ -258471,21 +259970,21 @@ "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "EE5576134C59107063BE0FBB3CA9132497F7A227" + "finding": "A964700E3D4474919FF787A3C1CDF505B7BEB779" }, { "id": "cert_fingerprintSHA256", "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "cert", "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -258534,21 +260033,21 @@ "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2023-10-23 21:46" + "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2024-01-21 21:46" + "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", @@ -258737,7 +260236,7 @@ "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702195931" + "finding": "1703405318" }, { "id": "HSTS_time", @@ -258952,7 +260451,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "LOGJAM", @@ -259325,77 +260824,77 @@ }, { "id": "service", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259403,7 +260902,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259411,7 +260910,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259419,7 +260918,7 @@ }, { "id": "cipherlist_LOW", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259427,7 +260926,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -259435,7 +260934,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -259443,525 +260942,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "88 >= 30 days" }, { "id": "cert_notBefore", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-10-23 21:46" + "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-01-21 21:46" + "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702196033" + "finding": "1703405378" }, { "id": "HSTS_time", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -259969,7 +261468,7 @@ }, { "id": "heartbleed", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -259978,7 +261477,7 @@ }, { "id": "CCS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -259987,7 +261486,7 @@ }, { "id": "ticketbleed", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -259996,7 +261495,7 @@ }, { "id": "ROBOT", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -260005,7 +261504,7 @@ }, { "id": "secure_renego", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -260013,7 +261512,7 @@ }, { "id": "secure_client_renego", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -260022,7 +261521,7 @@ }, { "id": "CRIME_TLS", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -260031,7 +261530,7 @@ }, { "id": "BREACH", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -260040,7 +261539,7 @@ }, { "id": "POODLE_SSL", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -260049,14 +261548,14 @@ }, { "id": "fallback_SCSV", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -260065,7 +261564,7 @@ }, { "id": "FREAK", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -260074,7 +261573,7 @@ }, { "id": "DROWN", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -260083,16 +261582,16 @@ }, { "id": "DROWN_hint", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=70372A8AE4C260653A466C1000316E15F91C2A4CDCD1E5E9062CD653A7817A5C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2AAC247779556CC021681DCB8E53F367EE299B0BA1C77756690B3AE8F13F2CA1" }, { "id": "LOGJAM", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -260101,7 +261600,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -260110,7 +261609,7 @@ }, { "id": "BEAST", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -260119,7 +261618,7 @@ }, { "id": "LUCKY13", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -260128,7 +261627,7 @@ }, { "id": "winshock", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -260137,7 +261636,7 @@ }, { "id": "RC4", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -260146,325 +261645,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "partaj.beta.gouv.fr/80.247.12.255", + "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "408" + "finding": "237" } ], "thirdparties": { @@ -260483,7 +261982,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/1ece6c2f-2fa1-4425-a3bb-c6be0432354a/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-10-8-7" + "url": "https://client.crisp.chat/settings/website/1ece6c2f-2fa1-4425-a3bb-c6be0432354a/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-8-5" }, { "type": "unknown", @@ -260497,10 +261996,10 @@ "cookies": [ { "name": "csrftoken", - "value": "92WRxWMGvyscsSSVYpJsyxHyFC936mEbDU9wlQRKrSUjRlbEVNClklR26rvSP35H", + "value": "Z7TTI9cCZ2GaLMi8YH9YBxQhOcsxoSF4RJzdtORocyPaInwSqGm7fPT9x6s01cP1", "domain": "partaj.beta.gouv.fr", "path": "/", - "expires": 1733645238.963098, + "expires": 1734854746.941371, "size": 73, "httpOnly": false, "secure": true, @@ -260514,19 +262013,19 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 10 Dec 2023 08:07:18 GMT", - "set-cookie": "csrftoken=92WRxWMGvyscsSSVYpJsyxHyFC936mEbDU9wlQRKrSUjRlbEVNClklR26rvSP35H; expires=Sun, 08 Dec 2024 08:07:18 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "date": "Sun, 24 Dec 2023 08:05:46 GMT", + "set-cookie": "csrftoken=Z7TTI9cCZ2GaLMi8YH9YBxQhOcsxoSF4RJzdtORocyPaInwSqGm7fPT9x6s01cP1; expires=Sun, 22 Dec 2024 08:05:46 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "773f8fe5-0329-4d25-8a33-81ce7f0502bb", + "x-request-id": "3eac4583-1653-4e37-bf05-8c0230c839b0", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "partaj.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -260754,7 +262253,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 10 Dec 2023 08:06:37", + "@generated": "Sun, 24 Dec 2023 08:05:07", "site": [ { "@name": "https://partaj.beta.gouv.fr", @@ -260873,22 +262372,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -260898,34 +262398,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "partaj.beta.gouv.fr.", - "matched-at": "partaj.beta.gouv.fr", - "timestamp": "2023-12-10T08:15:45.880987171Z", + "matched-at": "_dmarc.partaj.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T08:11:08.408577176Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -260934,37 +262434,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "partaj.beta.gouv.fr.", - "matched-at": "_dmarc.partaj.beta.gouv.fr", + "matched-at": "partaj.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-10T08:15:45.891573602Z", + "timestamp": "2023-12-24T08:11:08.570003714Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -260980,28 +262479,28 @@ "type": "dns", "host": "partaj.beta.gouv.fr.", "matched-at": "partaj.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-10T08:15:46.021724889Z", + "timestamp": "2023-12-24T08:11:08.701453686Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -261017,10 +262516,10 @@ "host": "partaj.beta.gouv.fr.", "matched-at": "partaj.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-10T08:15:46.86843576Z", + "timestamp": "2023-12-24T08:11:08.705903296Z", "matcher-status": true }, { @@ -261059,7 +262558,7 @@ "\"brevo-code:26b813dde72f6635200927081ab61ea3\"", "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-10T08:15:46.889567572Z", + "timestamp": "2023-12-24T08:11:09.703739393Z", "matcher-status": true }, { @@ -261087,8 +262586,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:15:57.241245657Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:16.517949558Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261128,8 +262627,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:05.216917935Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:21.95942016Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261164,193 +262663,8 @@ "extracted-results": [ "https://be48f0adfc39472681ee7ff96bc88c99@o442012.ingest.sentry.io/5413011" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:05.21939683Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://partaj.beta.gouv.fr", - "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268758353Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://partaj.beta.gouv.fr", - "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268819146Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://partaj.beta.gouv.fr", - "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268838282Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://partaj.beta.gouv.fr", - "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268851095Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://partaj.beta.gouv.fr", - "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268865402Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:21.962258764Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261386,8 +262700,8 @@ "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268878467Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633411772Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261423,8 +262737,8 @@ "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268892824Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633455183Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261460,8 +262774,193 @@ "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:16:57.268905818Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.63347494Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://partaj.beta.gouv.fr", + "matched-at": "https://partaj.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633490489Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://partaj.beta.gouv.fr", + "matched-at": "https://partaj.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633503112Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://partaj.beta.gouv.fr", + "matched-at": "https://partaj.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633515035Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://partaj.beta.gouv.fr", + "matched-at": "https://partaj.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.633526687Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://partaj.beta.gouv.fr", + "matched-at": "https://partaj.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:11:58.63353954Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -261500,8 +262999,8 @@ "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:17:35.557080988Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:12:25.213640849Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: partaj.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr/'", "matcher-status": true }, @@ -261516,7 +263015,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -261530,8 +263030,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:23:27.221532919Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:18:07.593645214Z", "matcher-status": true }, { @@ -261545,7 +263045,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -261559,8 +263060,8 @@ "extracted-results": [ "partaj.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:23:27.221699661Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:18:07.593777951Z", "matcher-status": true }, { @@ -261575,7 +263076,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -261589,8 +263091,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:23:30.092106513Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:18:09.482127033Z", "matcher-status": true }, { @@ -261605,7 +263107,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -261619,8 +263122,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-10T08:23:30.411164256Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T08:18:09.696327283Z", "matcher-status": true } ], @@ -261628,7 +263131,7 @@ { "requestedUrl": "https://partaj.beta.gouv.fr/", "finalUrl": "https://partaj.beta.gouv.fr/", - "fetchTime": "2023-12-10T08:06:51.989Z", + "fetchTime": "2023-12-24T08:05:21.392Z", "runWarnings": [], "categories": { "performance": { @@ -261691,53 +263194,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7008, + "numericValue": 6929, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1943, - "firstMeaningfulPaint": 2241, - "largestContentfulPaint": 2241, - "interactive": 7008, - "speedIndex": 2731, - "totalBlockingTime": 244, - "maxPotentialFID": 443, - "cumulativeLayoutShift": 0.0034306377834743924, - "cumulativeLayoutShiftMainFrame": 0.0034306377834743924, - "totalCumulativeLayoutShift": 0.0034306377834743924, + "firstContentfulPaint": 1636, + "firstMeaningfulPaint": 1885, + "largestContentfulPaint": 2134, + "interactive": 6929, + "speedIndex": 1908, + "totalBlockingTime": 267, + "maxPotentialFID": 441, + "cumulativeLayoutShift": 0.011679676479763455, + "cumulativeLayoutShiftMainFrame": 0.011679676479763455, + "totalCumulativeLayoutShift": 0.011679676479763455, "observedTimeOrigin": 0, - "observedTimeOriginTs": 232887647, + "observedTimeOriginTs": 183201878, "observedNavigationStart": 0, - "observedNavigationStartTs": 232887647, - "observedFirstPaint": 967, - "observedFirstPaintTs": 233854987, - "observedFirstContentfulPaint": 967, - "observedFirstContentfulPaintTs": 233854987, - "observedFirstContentfulPaintAllFrames": 967, - "observedFirstContentfulPaintAllFramesTs": 233854987, - "observedFirstMeaningfulPaint": 1415, - "observedFirstMeaningfulPaintTs": 234302532, - "observedLargestContentfulPaint": 1415, - "observedLargestContentfulPaintTs": 234302532, - "observedLargestContentfulPaintAllFrames": 1415, - "observedLargestContentfulPaintAllFramesTs": 234302532, - "observedTraceEnd": 3900, - "observedTraceEndTs": 236787247, - "observedLoad": 1591, - "observedLoadTs": 234478165, - "observedDomContentLoaded": 1565, - "observedDomContentLoadedTs": 234452813, - "observedCumulativeLayoutShift": 0.0034306377834743924, - "observedCumulativeLayoutShiftMainFrame": 0.0034306377834743924, - "observedTotalCumulativeLayoutShift": 0.0034306377834743924, - "observedFirstVisualChange": 969, - "observedFirstVisualChangeTs": 233856647, - "observedLastVisualChange": 2019, - "observedLastVisualChangeTs": 234906647, - "observedSpeedIndex": 1228, - "observedSpeedIndexTs": 234115302 + "observedNavigationStartTs": 183201878, + "observedFirstPaint": 485, + "observedFirstPaintTs": 183687043, + "observedFirstContentfulPaint": 485, + "observedFirstContentfulPaintTs": 183687043, + "observedFirstContentfulPaintAllFrames": 485, + "observedFirstContentfulPaintAllFramesTs": 183687043, + "observedFirstMeaningfulPaint": 968, + "observedFirstMeaningfulPaintTs": 184169535, + "observedLargestContentfulPaint": 968, + "observedLargestContentfulPaintTs": 184169535, + "observedLargestContentfulPaintAllFrames": 968, + "observedLargestContentfulPaintAllFramesTs": 184169535, + "observedTraceEnd": 3440, + "observedTraceEndTs": 186641651, + "observedLoad": 1133, + "observedLoadTs": 184334623, + "observedDomContentLoaded": 1112, + "observedDomContentLoadedTs": 184314231, + "observedCumulativeLayoutShift": 0.011679676479763455, + "observedCumulativeLayoutShiftMainFrame": 0.011679676479763455, + "observedTotalCumulativeLayoutShift": 0.011679676479763455, + "observedFirstVisualChange": 490, + "observedFirstVisualChangeTs": 183691878, + "observedLastVisualChange": 1574, + "observedLastVisualChangeTs": 184775878, + "observedSpeedIndex": 782, + "observedSpeedIndexTs": 183983974 }, { "lcpInvalidated": false @@ -261759,19 +263262,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 483, - "numTasksOver10ms": 2, + "numTasks": 486, + "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.024, - "throughput": 12782034.526258908, - "maxRtt": 150.241, - "maxServerLatency": 151.43799999999996, - "totalByteWeight": 984116, - "totalTaskTime": 195.82600000000014, - "mainDocumentTransferSize": 3759 + "rtt": 1.9739999999999998, + "throughput": 24640850.62682133, + "maxRtt": 100.775, + "maxServerLatency": 92.17099999999999, + "totalByteWeight": 983749, + "totalTaskTime": 196.5539999999999, + "mainDocumentTransferSize": 3763 } ] } @@ -261863,15 +263366,15 @@ "sonarcloud": null, "summary": { "httpGrade": "B", - "apdex": 0.882, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-21T21:46:00.000Z", + "testsslExpireDate": "2024-03-21T21:47:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, @@ -261903,245 +263406,7 @@ "pass-culture/pass-culture-app-native" ], "betaId": "pass-culture", - "http": { - "url": "https://passculture.app", - "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:19:52 GMT", - "grade": "C", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "Age": "1109", - "Cache-Control": "public, max-age=3600", - "Content-Encoding": "gzip", - "Content-Length": "8243", - "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 08:01:22 GMT", - "ETag": "W/\"b7c615fb94a751404b66ef3d865b4eca\"", - "Expires": "Sun, 17 Dec 2023 08:55:12 GMT", - "Last-Modified": "Mon, 11 Dec 2023 14:22:22 GMT", - "Server": "Google Frontend", - "Vary": "Accept-Encoding", - "Via": "1.1 google", - "X-Cloud-Trace-Context": "522f0033d382b44de74c67d76c57527d", - "X-Powered-By": "Express", - "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "x-goog-generation": "1702304542211533", - "x-goog-hash": "crc32c=5j4y4w==, md5=t8YV+5SnUUBLZu89hltOyg==", - "x-goog-meta-goog-reserved-file-mtime": "1702304529", - "x-goog-metageneration": "1", - "x-goog-storage-class": "STANDARD", - "x-goog-stored-content-encoding": "identity", - "x-goog-stored-content-length": "22436", - "x-guploader-uploadid": "ABPtcPqitNiYkIqUdk2H5dGkz-_SdW5nXwPn5pcp9qIrvFLpakERFuF9QN2IopFLIhxIe0nqop1wd3A1Jw" - }, - "scan_id": 45546737, - "score": 55, - "start_time": "Sun, 17 Dec 2023 08:19:50 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 4, - "tests_passed": 8, - "tests_quantity": 12, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": { - "base-uri": [ - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "https://websdk.appsflyer.com", - "'self'", - "https://accounts.google.com/gsi/client", - "https://oos.eu-west-2.outscale.com/public-ubble-ai/", - "https://passculture.app/static/", - "https://www.google.com/recaptcha/", - "https://www.googletagmanager.com", - "'sha256-2okpzl87wqt94kg+jxsxyzikz3nnt0prjsiiohqurvu='", - "'sha256-sxxkovfvqyew0lghj+a4h8ebzelujs5dr2qvklsuytm='", - "https://www.gstatic.com/recaptcha/", - "'sha256-6+n6baltlv6b6xvqkkdhvp1wfqgy+ilispy2r+dfouu='", - "'sha256-36bvewyegit3czszlq1yh51zcmt2rts8ssgalo2q4m8='", - "*.youtube.com" - ], - "style-src": [ - "'self'", - "'unsafe-eval'", - "'unsafe-inline'" - ] - }, - "http": false, - "meta": true, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": true, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } - }, - "pass": false, - "result": "csp-implemented-with-unsafe-eval", - "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", - "score_modifier": -10 - }, - "contribute": { - "expectation": "contribute-json-only-required-on-mozilla-properties", - "name": "contribute", - "output": { - "data": null - }, - "pass": true, - "result": "contribute-json-only-required-on-mozilla-properties", - "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": null, - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-not-implemented", - "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", - "score_modifier": 0 - }, - "public-key-pinning": { - "expectation": "hpkp-not-implemented", - "name": "public-key-pinning", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "numPins": null, - "preloaded": false - }, - "pass": true, - "result": "hpkp-not-implemented", - "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://passculture.app:443/", - "redirects": true, - "route": [ - "http://passculture.app/", - "https://passculture.app:443/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-all-redirects-preloaded", - "score_description": "All hosts redirected to are in the HTTP Strict Transport Security (HSTS) preload list", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": null, - "http": false, - "meta": false - }, - "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": null, - "includeSubDomains": true, - "max-age": null, - "preload": false, - "preloaded": true - }, - "pass": true, - "result": "hsts-preloaded", - "score_description": "Preloaded via the HTTP Strict Transport Security (HSTS) preloading process", - "score_modifier": 5 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-1-mode-block", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": false, - "result": "x-xss-protection-not-implemented", - "score_description": "X-XSS-Protection header not implemented", - "score_modifier": -10 - } - } - }, + "http": null, "updownio": null, "nmap": { "host": "passculture.app", @@ -262341,7 +263606,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "prime256v1 secp384r1" + "finding": "prime256v1" }, { "id": "TLS_extensions", @@ -262354,8 +263619,8 @@ "id": "TLS_session_ticket", "ip": "passculture.app/34.111.135.217", "port": "443", - "severity": "INFO", - "finding": "valid for 7200 seconds only (daily)" }, { "id": "SSL_sessionID_support", @@ -262516,7 +263781,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (53)" + "finding": "expires < 60 days (46)" }, { "id": "cert_notBefore", @@ -262712,21 +263977,21 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "+1552 seconds from localtime" + "finding": "+2046 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1702801264" + "finding": "1703406330" }, { "id": "HTTP_headerAge", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1552 seconds" + "finding": "2061 seconds" }, { "id": "HSTS", @@ -263135,7 +264400,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1703", @@ -263282,7 +264547,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "57" } ], "thirdparties": { @@ -263353,7 +264618,7 @@ }, { "type": "google", - "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:605788939445:web:bb7dbdae56cd6eed29cafc/webConfig", + "url": "https://firebaseinstallations.googleapis.com/v1/projects/passculture-native/installations", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -263361,7 +264626,7 @@ }, { "type": "google", - "url": "https://firebaseinstallations.googleapis.com/v1/projects/passculture-native/installations", + "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:605788939445:web:bb7dbdae56cd6eed29cafc/webConfig", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -263402,20 +264667,20 @@ ], "cookies": [], "headers": { - "age": "2661", + "age": "2038", "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", "cache-control": "public, max-age=3600", "content-encoding": "gzip", - "content-length": "8243", + "content-length": "8242", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 08:16:00 GMT", + "date": "Sun, 24 Dec 2023 07:51:09 GMT", "etag": "W/\"b7c615fb94a751404b66ef3d865b4eca\"", - "expires": "Sun, 17 Dec 2023 08:31:39 GMT", + "expires": "Sun, 24 Dec 2023 08:51:09 GMT", "last-modified": "Mon, 11 Dec 2023 14:22:22 GMT", "server": "Google Frontend", "vary": "Accept-Encoding", "via": "1.1 google", - "x-cloud-trace-context": "c5983443fd0556a4993dcd3f07e9f6e5;o=1", + "x-cloud-trace-context": "90bf757f42607975e06de99cce6d6362", "x-goog-generation": "1702304542211533", "x-goog-hash": "crc32c=5j4y4w==, md5=t8YV+5SnUUBLZu89hltOyg==", "x-goog-meta-goog-reserved-file-mtime": "1702304529", @@ -263423,7 +264688,7 @@ "x-goog-storage-class": "STANDARD", "x-goog-stored-content-encoding": "identity", "x-goog-stored-content-length": "22436", - "x-guploader-uploadid": "ABPtcPrtFpDa81N9qhkpHi0cCMj7af2XPsKCpO71tDm1JOFG_PL582OSw6m4nalwnfGZ3oLTmmzzK6rcWQ", + "x-guploader-uploadid": "ABPtcPqXNuCFj-x8Vl8C7jWtgY3t4-nU04q_NpqYSDyzPn_tGRd3mCCQpFVfGcYloym1ZA7cNWUjja4i9Q", "x-powered-by": "Express" }, "endpoints": [ @@ -263514,13 +264779,18 @@ }, { "hostname": "websdk.appsflyer.com", - "ip": "23.15.9.58", + "ip": "23.218.80.184", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 5392171, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" } }, "continent": { @@ -263553,13 +264823,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20149" + "code": "95141" }, "registered_country": { "geoname_id": 6252001, @@ -263577,15 +264847,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -263593,7 +264865,7 @@ }, { "hostname": "firebase.googleapis.com", - "ip": "142.251.167.95", + "ip": "142.250.189.170", "geoip": { "continent": { "code": "NA", @@ -263647,7 +264919,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.62.94", + "ip": "172.217.12.99", "geoip": { "continent": { "code": "NA", @@ -263785,7 +265057,7 @@ }, { "hostname": "firebaseinstallations.googleapis.com", - "ip": "142.251.163.95", + "ip": "142.250.191.74", "geoip": { "continent": { "code": "NA", @@ -263839,7 +265111,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "172.253.115.97", + "ip": "142.250.191.72", "geoip": { "continent": { "code": "NA", @@ -263893,7 +265165,7 @@ }, { "hostname": "firebaseremoteconfig.googleapis.com", - "ip": "172.253.115.95", + "ip": "142.250.189.234", "geoip": { "continent": { "code": "NA", @@ -263995,6 +265267,42 @@ ], "rootPath": true }, + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "magento", + "name": "Magento", + "description": "Magento is an open-source ecommerce platform written in PHP.", + "confidence": 100, + "version": null, + "icon": "Magento.svg", + "website": "https://magento.com", + "cpe": "cpe:2.3:a:magento:magento:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 6, + "slug": "ecommerce", + "name": "Ecommerce" + } + ], + "rootPath": true + }, { "slug": "sentry", "name": "Sentry", @@ -264047,6 +265355,40 @@ } ] }, + { + "slug": "mysql", + "name": "MySQL", + "description": "MySQL is an open-source relational database management system.", + "confidence": 100, + "version": null, + "icon": "MySQL.svg", + "website": "https://mysql.com", + "cpe": "cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + } + ] + }, + { + "slug": "php", + "name": "PHP", + "description": "PHP is a general-purpose scripting language used for web development.", + "confidence": 100, + "version": null, + "icon": "PHP.svg", + "website": "https://php.net", + "cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, { "slug": "node-js", "name": "Node.js", @@ -264232,42 +265574,6 @@ } ] }, - { - "slug": "google-cloud-trace", - "name": "Google Cloud Trace", - "description": "Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.", - "confidence": 100, - "version": null, - "icon": "google-cloud-trace.svg", - "website": "https://cloud.google.com/trace", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ], - "rootPath": true - }, - { - "slug": "google-cloud-cdn", - "name": "Google Cloud CDN", - "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", - "confidence": 100, - "version": null, - "icon": "google-cloud-cdn.svg", - "website": "https://cloud.google.com/cdn", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, { "slug": "zendesk", "name": "Zendesk", @@ -264342,6 +265648,42 @@ ], "rootPath": true }, + { + "slug": "google-cloud-trace", + "name": "Google Cloud Trace", + "description": "Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.", + "confidence": 100, + "version": null, + "icon": "google-cloud-trace.svg", + "website": "https://cloud.google.com/trace", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "google-cloud-cdn", + "name": "Google Cloud CDN", + "description": "Cloud CDN uses Google's global edge network to serve content closer to users.", + "confidence": 100, + "version": null, + "icon": "google-cloud-cdn.svg", + "website": "https://cloud.google.com/cdn", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, { "slug": "pwa", "name": "PWA", @@ -264419,7 +265761,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:17:53", + "@generated": "Sun, 24 Dec 2023 08:09:21", "site": [ { "@name": "https://passculture.app", @@ -264579,6 +265921,49 @@ ] }, "nuclei": [ + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "passculture.app.", + "matched-at": "passculture.app", + "extracted-results": [ + "\"google-site-verification=S54YVtgIBTdOt5BAOyZUip_y_VryaRrVA_fwHUwaJ4Y\"", + "\"google-site-verification=FmDNO4ID39rb64RGof01WgvtQQOkyZ7Jac5jbGsi9lM\"", + "\"google-site-verification=eoK_L51PR68RHASVE8XL-CG7bm2t3r-1XySHi7-sf8I\"", + "\"1|www.passculture.app\"", + "\"v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf.sendinblue.com include:spf.brevo.com mx ~all\"", + "\"Sendinblue-code:db859332ef41c5c27ddda0f7bc9f207b\"" + ], + "timestamp": "2023-12-24T08:27:53.691129113Z", + "matcher-status": true + }, { "template": "dns/dmarc-detect.yaml", "template-url": "https://templates.nuclei.sh/public/dmarc-detect", @@ -264616,7 +266001,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T08:23:13.182961144Z", + "timestamp": "2023-12-24T08:27:53.725394145Z", "matcher-status": true }, { @@ -264651,7 +266036,7 @@ "type": "dns", "host": "passculture.app.", "matched-at": "passculture.app", - "timestamp": "2023-12-17T08:23:13.183356506Z", + "timestamp": "2023-12-24T08:27:53.756980906Z", "matcher-status": true }, { @@ -264684,12 +266069,12 @@ "host": "passculture.app.", "matched-at": "passculture.app", "extracted-results": [ + "ns-cloud-b1.googledomains.com.", "ns-cloud-b3.googledomains.com.", "ns-cloud-b4.googledomains.com.", - "ns-cloud-b2.googledomains.com.", - "ns-cloud-b1.googledomains.com." + "ns-cloud-b2.googledomains.com." ], - "timestamp": "2023-12-17T08:23:14.165216321Z", + "timestamp": "2023-12-24T08:27:54.675347298Z", "matcher-status": true }, { @@ -264722,7 +266107,7 @@ "type": "dns", "host": "passculture.app.", "matched-at": "passculture.app", - "timestamp": "2023-12-17T08:23:14.180840191Z", + "timestamp": "2023-12-24T08:27:54.685619649Z", "matcher-status": true }, { @@ -264761,54 +266146,11 @@ "extracted-results": [ "10 alt3.aspmx.l.google.com.", "5 alt2.aspmx.l.google.com.", - "10 alt4.aspmx.l.google.com.", "5 alt1.aspmx.l.google.com.", - "1 aspmx.l.google.com." - ], - "timestamp": "2023-12-17T08:23:14.180900795Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "passculture.app.", - "matched-at": "passculture.app", - "extracted-results": [ - "\"Sendinblue-code:db859332ef41c5c27ddda0f7bc9f207b\"", - "\"1|www.passculture.app\"", - "\"google-site-verification=eoK_L51PR68RHASVE8XL-CG7bm2t3r-1XySHi7-sf8I\"", - "\"google-site-verification=S54YVtgIBTdOt5BAOyZUip_y_VryaRrVA_fwHUwaJ4Y\"", - "\"v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf.sendinblue.com include:spf.brevo.com mx ~all\"", - "\"google-site-verification=FmDNO4ID39rb64RGof01WgvtQQOkyZ7Jac5jbGsi9lM\"" + "1 aspmx.l.google.com.", + "10 alt4.aspmx.l.google.com." ], - "timestamp": "2023-12-17T08:23:14.214903188Z", + "timestamp": "2023-12-24T08:27:54.685666687Z", "matcher-status": true }, { @@ -264837,7 +266179,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:23.675087527Z", + "timestamp": "2023-12-24T08:28:05.907645771Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -264865,7 +266207,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:23.675196541Z", + "timestamp": "2023-12-24T08:28:05.907740898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -264894,7 +266236,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:23.675269567Z", + "timestamp": "2023-12-24T08:28:05.907815327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -264921,7 +266263,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:43.109799502Z", + "timestamp": "2023-12-24T08:28:26.905447176Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -264953,12 +266295,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876045135Z", + "timestamp": "2023-12-24T08:28:33.608279272Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -264990,12 +266332,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "content-security-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876084338Z", + "timestamp": "2023-12-24T08:28:33.60832606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265027,12 +266369,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876094728Z", + "timestamp": "2023-12-24T08:28:33.608343683Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265064,12 +266406,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876103925Z", + "timestamp": "2023-12-24T08:28:33.608357749Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265101,12 +266443,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876113964Z", + "timestamp": "2023-12-24T08:28:33.608370733Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265138,12 +266480,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876130845Z", + "timestamp": "2023-12-24T08:28:33.608384208Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265175,12 +266517,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876144882Z", + "timestamp": "2023-12-24T08:28:33.608397343Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265212,12 +266554,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876159118Z", + "timestamp": "2023-12-24T08:28:33.608410928Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265249,12 +266591,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876177793Z", + "timestamp": "2023-12-24T08:28:33.608428841Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265286,12 +266628,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876192731Z", + "timestamp": "2023-12-24T08:28:33.608442086Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265323,12 +266665,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:48.876207809Z", + "timestamp": "2023-12-24T08:28:33.608454098Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -265370,8 +266712,8 @@ "extracted-results": [ "571480c1-c976-4c72-a441-44a7bd850c9a" ], - "ip": "20.190.151.9", - "timestamp": "2023-12-17T08:23:50.232552816Z", + "ip": "20.190.151.134", + "timestamp": "2023-12-24T08:28:35.168448919Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/passculture.app/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -265399,10 +266741,48 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app/robots.txt", "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:23:58.895545344Z", + "timestamp": "2023-12-24T08:28:43.21192343Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/robots.txt'", "matcher-status": true }, + { + "template": "http/miscellaneous/security-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/security-txt", + "template-id": "security-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", + "info": { + "name": "security.txt File", + "author": [ + "bad5ect0r", + "noraj" + ], + "tags": [ + "misc", + "generic" + ], + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", + "reference": [ + "https://securitytxt.org/", + "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" + ], + "severity": "info", + "metadata": { + "max-request": 2, + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true + } + }, + "type": "http", + "host": "https://passculture.app", + "matched-at": "https://passculture.app/.well-known/security.txt", + "extracted-results": [ + " mailto:ssi@passculture.app" + ], + "ip": "34.111.135.217", + "timestamp": "2023-12-24T08:28:43.283826135Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/.well-known/security.txt'", + "matcher-status": true + }, { "template": "http/miscellaneous/rdap-whois.yaml", "template-url": "https://templates.nuclei.sh/public/rdap-whois", @@ -265437,15 +266817,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "nameServers", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2026-03-14T16:23:30.938Z" + "ns-cloud-b1.googledomains.com", + "ns-cloud-b2.googledomains.com", + "ns-cloud-b3.googledomains.com", + "ns-cloud-b4.googledomains.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476804955Z", + "timestamp": "2023-12-24T08:28:44.195693269Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265483,15 +266866,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "secureDNS", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476845862Z", + "timestamp": "2023-12-24T08:28:44.195735548Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265529,18 +266912,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "status", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "ns-cloud-b1.googledomains.com", - "ns-cloud-b2.googledomains.com", - "ns-cloud-b3.googledomains.com", - "ns-cloud-b4.googledomains.com" + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476865288Z", + "timestamp": "2023-12-24T08:28:44.195746057Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265578,15 +266958,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrationDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "false" + "2019-03-14T16:23:30.938Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476884003Z", + "timestamp": "2023-12-24T08:28:44.195755004Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265624,15 +267004,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "client transfer prohibited" + "2023-06-01T09:56:12.261Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476898781Z", + "timestamp": "2023-12-24T08:28:44.195764041Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265670,15 +267050,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "expirationDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2019-03-14T16:23:30.938Z" + "2026-03-14T16:23:30.938Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.476911995Z", + "timestamp": "2023-12-24T08:28:44.195772907Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265716,15 +267096,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantName", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2023-06-01T09:56:12.261Z" + "" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:23:59.47692485Z", + "timestamp": "2023-12-24T08:28:44.195787855Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -265762,7 +267142,7 @@ "https://passculture.app/static/js/main.f533feef.chunk.js" ], "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:24:04.473296056Z", + "timestamp": "2023-12-24T08:28:48.260650258Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: passculture.app' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/'", "matcher-status": true }, @@ -265777,7 +267157,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -265792,7 +267173,7 @@ "Google Trust Services LLC" ], "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:25:55.823829036Z", + "timestamp": "2023-12-24T08:30:31.759305376Z", "matcher-status": true }, { @@ -265806,7 +267187,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -265821,7 +267203,7 @@ "passculture.app" ], "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:25:55.823968958Z", + "timestamp": "2023-12-24T08:30:31.759468851Z", "matcher-status": true }, { @@ -265836,7 +267218,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -265851,7 +267234,7 @@ "tls12" ], "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:25:55.855691204Z", + "timestamp": "2023-12-24T08:30:32.142188757Z", "matcher-status": true }, { @@ -265866,7 +267249,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -265881,7 +267265,7 @@ "tls13" ], "ip": "34.111.135.217", - "timestamp": "2023-12-17T08:25:55.915186728Z", + "timestamp": "2023-12-24T08:30:32.164026423Z", "matcher-status": true } ], @@ -265889,7 +267273,7 @@ { "requestedUrl": "https://passculture.app/", "finalUrl": "https://passculture.app/", - "fetchTime": "2023-12-17T08:18:07.951Z", + "fetchTime": "2023-12-24T08:09:35.971Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete." ], @@ -265902,7 +267286,7 @@ "snapshot" ], "id": "performance", - "score": 0.510647964477539 + "score": 0.05 }, "accessibility": { "title": "Accessibility", @@ -265954,53 +267338,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 17916, + "numericValue": 18775, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 813, - "firstMeaningfulPaint": 13714, - "largestContentfulPaint": 17104, - "interactive": 17916, - "speedIndex": 11257, - "totalBlockingTime": 3039, - "maxPotentialFID": 1521, + "firstContentfulPaint": 780, + "firstMeaningfulPaint": 13873, + "largestContentfulPaint": 17515, + "interactive": 18775, + "speedIndex": 11772, + "totalBlockingTime": 3143, + "maxPotentialFID": 1541, "cumulativeLayoutShift": 0.115625, "cumulativeLayoutShiftMainFrame": 0.115625, "totalCumulativeLayoutShift": 0.115625, "observedTimeOrigin": 0, - "observedTimeOriginTs": 299517722, + "observedTimeOriginTs": 305321665, "observedNavigationStart": 0, - "observedNavigationStartTs": 299517722, - "observedFirstPaint": 119, - "observedFirstPaintTs": 299636861, - "observedFirstContentfulPaint": 119, - "observedFirstContentfulPaintTs": 299636861, - "observedFirstContentfulPaintAllFrames": 119, - "observedFirstContentfulPaintAllFramesTs": 299636861, - "observedFirstMeaningfulPaint": 1088, - "observedFirstMeaningfulPaintTs": 300605541, - "observedLargestContentfulPaint": 1269, - "observedLargestContentfulPaintTs": 300787063, - "observedLargestContentfulPaintAllFrames": 1269, - "observedLargestContentfulPaintAllFramesTs": 300787063, + "observedNavigationStartTs": 305321665, + "observedFirstPaint": 46, + "observedFirstPaintTs": 305367480, + "observedFirstContentfulPaint": 46, + "observedFirstContentfulPaintTs": 305367480, + "observedFirstContentfulPaintAllFrames": 46, + "observedFirstContentfulPaintAllFramesTs": 305367480, + "observedFirstMeaningfulPaint": 959, + "observedFirstMeaningfulPaintTs": 306281088, + "observedLargestContentfulPaint": 1149, + "observedLargestContentfulPaintTs": 306470638, + "observedLargestContentfulPaintAllFrames": 1149, + "observedLargestContentfulPaintAllFramesTs": 306470638, "observedTraceEnd": 45011, - "observedTraceEndTs": 344528965, - "observedLoad": 693, - "observedLoadTs": 300210491, - "observedDomContentLoaded": 693, - "observedDomContentLoadedTs": 300210258, + "observedTraceEndTs": 350332672, + "observedLoad": 615, + "observedLoadTs": 305936698, + "observedDomContentLoaded": 615, + "observedDomContentLoadedTs": 305936436, "observedCumulativeLayoutShift": 0.115625, "observedCumulativeLayoutShiftMainFrame": 0.115625, "observedTotalCumulativeLayoutShift": 0.115625, - "observedFirstVisualChange": 770, - "observedFirstVisualChangeTs": 300287722, - "observedLastVisualChange": 2670, - "observedLastVisualChangeTs": 302187722, - "observedSpeedIndex": 1410, - "observedSpeedIndexTs": 300927296 + "observedFirstVisualChange": 682, + "observedFirstVisualChangeTs": 306003665, + "observedLastVisualChange": 4065, + "observedLastVisualChangeTs": 309386665, + "observedSpeedIndex": 1241, + "observedSpeedIndexTs": 306562404 }, { "lcpInvalidated": false @@ -266018,23 +267402,23 @@ "type": "debugdata", "items": [ { - "numRequests": 50, + "numRequests": 59, "numScripts": 6, "numStylesheets": 0, "numFonts": 6, - "numTasks": 8999, + "numTasks": 9879, "numTasksOver10ms": 43, - "numTasksOver25ms": 17, - "numTasksOver50ms": 2, - "numTasksOver100ms": 2, + "numTasksOver25ms": 13, + "numTasksOver50ms": 6, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 638830.3449173031, - "maxRtt": 86.19699999999999, - "maxServerLatency": 534.7479999999999, - "totalByteWeight": 3614190, - "totalTaskTime": 5900.029999999885, - "mainDocumentTransferSize": 8843 + "throughput": 675354.9359660478, + "maxRtt": 151.338, + "maxServerLatency": 355.528, + "totalByteWeight": 3822651, + "totalTaskTime": 7350.421999999694, + "mainDocumentTransferSize": 8839 } ] } @@ -266136,7 +267520,6 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "C", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -266147,8 +267530,8 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 15, - "lighthouse_performance": 0.510647964477539, - "lighthouse_performanceGrade": "C", + "lighthouse_performance": 0.05, + "lighthouse_performanceGrade": "F", "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.83, @@ -266176,7 +267559,7 @@ "http": { "url": "https://backend.passculture.pro", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:32:32 GMT", + "end_time": "Sun, 24 Dec 2023 08:40:59 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -266184,15 +267567,15 @@ "Connection": "keep-alive", "Content-Length": "3", "Content-Type": "application/json", - "Date": "Sun, 17 Dec 2023 08:32:31 GMT", + "Date": "Sun, 24 Dec 2023 08:40:58 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45547059, + "scan_id": 45762758, "score": 75, - "start_time": "Sun, 17 Dec 2023 08:32:29 GMT", + "start_time": "Sun, 24 Dec 2023 08:29:32 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 1, @@ -266733,7 +268116,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "OK", - "finding": "288 >= 60 days" + "finding": "281 >= 60 days" }, { "id": "cert_notBefore", @@ -266894,7 +268277,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "INFO", - "finding": "1702802025" + "finding": "1703407333" }, { "id": "HSTS_time", @@ -267471,7 +268854,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "INFO", - "finding": "53" + "finding": "51" } ], "thirdparties": { @@ -267480,7 +268863,7 @@ "headers": { "content-length": "3", "content-type": "application/json", - "date": "Sun, 17 Dec 2023 08:33:05 GMT", + "date": "Sun, 24 Dec 2023 08:41:35 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", @@ -267603,7 +268986,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:31:59", + "@generated": "Sun, 24 Dec 2023 08:29:04", "site": [ { "@name": "https://backend.passculture.pro", @@ -267683,7 +269066,7 @@ "type": "dns", "host": "backend.passculture.pro.", "matched-at": "backend.passculture.pro", - "timestamp": "2023-12-17T08:35:00.379907905Z", + "timestamp": "2023-12-24T08:43:25.682544312Z", "matcher-status": true }, { @@ -267723,7 +269106,7 @@ "1; mode=block" ], "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:14.35504547Z", + "timestamp": "2023-12-24T08:43:37.396951896Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267755,12 +269138,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365212514Z", + "timestamp": "2023-12-24T08:44:11.394480594Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267792,12 +269175,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365261316Z", + "timestamp": "2023-12-24T08:44:11.394521109Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267829,12 +269212,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365275883Z", + "timestamp": "2023-12-24T08:44:11.39453724Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267866,12 +269249,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365293165Z", + "timestamp": "2023-12-24T08:44:11.394554822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267903,12 +269286,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365308013Z", + "timestamp": "2023-12-24T08:44:11.394568929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267940,12 +269323,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365324484Z", + "timestamp": "2023-12-24T08:44:11.394581973Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -267977,12 +269360,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.36533812Z", + "timestamp": "2023-12-24T08:44:11.394594606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -268014,12 +269397,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:35:52.365353228Z", + "timestamp": "2023-12-24T08:44:11.394615756Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -268034,7 +269417,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -268049,7 +269433,7 @@ "Gandi" ], "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:38:02.28357746Z", + "timestamp": "2023-12-24T08:46:16.013260352Z", "matcher-status": true }, { @@ -268063,7 +269447,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -268080,7 +269465,7 @@ "backend.passculture.beta.gouv.fr" ], "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:38:02.283693056Z", + "timestamp": "2023-12-24T08:46:16.013354297Z", "matcher-status": true }, { @@ -268095,7 +269480,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -268110,7 +269496,7 @@ "tls12" ], "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:38:03.635086303Z", + "timestamp": "2023-12-24T08:46:17.632195337Z", "matcher-status": true }, { @@ -268125,7 +269511,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -268140,7 +269527,7 @@ "tls13" ], "ip": "34.76.99.202", - "timestamp": "2023-12-17T08:38:03.87654599Z", + "timestamp": "2023-12-24T08:46:17.859470052Z", "matcher-status": true } ], @@ -268269,7 +269656,7 @@ "http": { "url": "https://passculture.pro", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:38:22 GMT", + "end_time": "Sun, 24 Dec 2023 08:42:03 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -268278,22 +269665,22 @@ "Cache-Control": "max-age=3600", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "706", + "Content-Length": "749", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 08:38:21 GMT", - "Etag": "\"c0926a97ec48c95ccad8fe001d3da37191d7d4371a1eec79e2f4c1e1ce6ccaa7\"", - "Last-Modified": "Tue, 12 Dec 2023 14:59:09 GMT", + "Date": "Sun, 24 Dec 2023 08:42:02 GMT", + "Etag": "\"59b9c31695ae50769fe4ca2ed8c75bc071370339f9c5ee656810c1f1607d8828\"", + "Last-Modified": "Fri, 22 Dec 2023 10:21:59 GMT", "Strict-Transport-Security": "max-age=31556926", "Vary": "x-fh-requested-host, accept-encoding", - "X-Cache": "HIT", - "X-Cache-Hits": "1", + "X-Cache": "MISS", + "X-Cache-Hits": "0", "X-Served-By": "cache-pao-kpao1770029-PAO", - "X-Timer": "S1702802301.283755,VS0,VE1", + "X-Timer": "S1703407322.265365,VS0,VE234", "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400" }, - "scan_id": 45547165, + "scan_id": 45762877, "score": 45, - "start_time": "Sun, 17 Dec 2023 08:36:52 GMT", + "start_time": "Sun, 24 Dec 2023 08:35:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -268306,21 +269693,21 @@ "output": { "data": { "default-src": [ + "gap://ready", + "data:", "'self'", "https://*.hotjar.io", - "wss://*.hotjar.com", "https:", - "blob:", - "data:", - "gap://ready", + "wss://*.hotjar.com", "http:", + "blob:", "https://*.hotjar.com:*" ], "style-src": [ "https://fonts.googleapis.com/css", - "'self'", "https://app.getbeamer.com/styles/beamer-embed.css", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ] }, "http": false, @@ -268863,7 +270250,7 @@ "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "OK", - "finding": "67 >= 60 days" + "finding": "60 >= 60 days" }, { "id": "cert_notBefore", @@ -268911,8 +270298,15 @@ "id": "OCSP_stapling", "ip": "passculture.pro/199.36.158.100", "port": "443", - "severity": "LOW", - "finding": "not offered" + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "passculture.pro/199.36.158.100", + "port": "443", + "severity": "OK", + "finding": "not revoked" }, { "id": "cert_mustStapleExtension", @@ -269066,7 +270460,7 @@ "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "INFO", - "finding": "1702802360" + "finding": "1703407391" }, { "id": "HSTS_time", @@ -269122,7 +270516,7 @@ "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200079-IAD" + "finding": "cache-iad-kcgs7200084-IAD" }, { "id": "Cache-Control", @@ -269190,7 +270584,7 @@ "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" + "finding": "not vulnerable" }, { "id": "CRIME_TLS", @@ -269538,14 +270932,14 @@ "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", @@ -269636,14 +271030,14 @@ "ip": "passculture.pro/199.36.158.100", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "352" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://sentry.passculture.team/api/2/envelope/?sentry_key=50f5694849704813b4154c5868b73365&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.85.0" + "url": "https://sentry.passculture.team/api/2/envelope/?sentry_key=50f5694849704813b4154c5868b73365&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.86.0" }, { "type": "hotjar", @@ -269671,7 +271065,7 @@ }, { "type": "google", - "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=u-xcq3POCWFlCr3x8_IPxgPu&size=invisible&cb=v14i8i1eou3j", + "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=u-xcq3POCWFlCr3x8_IPxgPu&size=invisible&cb=j1xey5xa0o4u", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -269756,17 +271150,17 @@ "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400", "cache-control": "max-age=3600", "content-encoding": "br", - "content-length": "518", + "content-length": "562", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 08:38:47 GMT", - "etag": "\"c0926a97ec48c95ccad8fe001d3da37191d7d4371a1eec79e2f4c1e1ce6ccaa7-br\"", - "last-modified": "Tue, 12 Dec 2023 14:59:09 GMT", + "date": "Sun, 24 Dec 2023 08:42:37 GMT", + "etag": "\"59b9c31695ae50769fe4ca2ed8c75bc071370339f9c5ee656810c1f1607d8828-br\"", + "last-modified": "Fri, 22 Dec 2023 10:21:59 GMT", "strict-transport-security": "max-age=31556926", "vary": "x-fh-requested-host, accept-encoding", "x-cache": "HIT", - "x-cache-hits": "4", - "x-served-by": "cache-iad-kcgs7200111-IAD", - "x-timer": "S1702802328.554343,VS0,VE0" + "x-cache-hits": "5", + "x-served-by": "cache-iad-kcgs7200063-IAD", + "x-timer": "S1703407358.766045,VS0,VE0" }, "endpoints": [ { @@ -270017,7 +271411,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "172.253.63.94", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -270071,7 +271465,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.115.94", + "ip": "172.253.63.94", "geoip": { "continent": { "code": "NA", @@ -270320,7 +271714,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:36:27", + "@generated": "Sun, 24 Dec 2023 08:35:14", "site": [ { "@name": "https://passculture.pro", @@ -270453,20 +271847,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -270482,12 +271879,9 @@ "host": "passculture.pro.", "matched-at": "passculture.pro", "extracted-results": [ - "ns-cloud-c4.googledomains.com.", - "ns-cloud-c1.googledomains.com.", - "ns-cloud-c3.googledomains.com.", - "ns-cloud-c2.googledomains.com." + "\"google-site-verification=lu7PvbxVUNXR1cVE6CUb5LrA6VHYgp13laQVb5BTVlA\"" ], - "timestamp": "2023-12-17T08:40:38.679221439Z", + "timestamp": "2023-12-24T08:49:21.533017704Z", "matcher-status": true }, { @@ -270522,27 +271916,24 @@ "type": "dns", "host": "passculture.pro.", "matched-at": "passculture.pro", - "timestamp": "2023-12-17T08:40:38.868169121Z", + "timestamp": "2023-12-24T08:49:21.550638056Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -270558,9 +271949,12 @@ "host": "passculture.pro.", "matched-at": "passculture.pro", "extracted-results": [ - "\"google-site-verification=lu7PvbxVUNXR1cVE6CUb5LrA6VHYgp13laQVb5BTVlA\"" + "ns-cloud-c2.googledomains.com.", + "ns-cloud-c1.googledomains.com.", + "ns-cloud-c4.googledomains.com.", + "ns-cloud-c3.googledomains.com." ], - "timestamp": "2023-12-17T08:40:38.906189388Z", + "timestamp": "2023-12-24T08:49:21.662991038Z", "matcher-status": true }, { @@ -270589,7 +271983,7 @@ "GET, HEAD, OPTIONS" ], "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:40:42.874111904Z", + "timestamp": "2023-12-24T08:49:25.772611518Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270621,12 +272015,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828530591Z", + "timestamp": "2023-12-24T08:49:51.803659495Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270658,12 +272052,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828575675Z", + "timestamp": "2023-12-24T08:49:51.803709297Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270695,12 +272089,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828586395Z", + "timestamp": "2023-12-24T08:49:51.803719356Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270732,12 +272126,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.82859474Z", + "timestamp": "2023-12-24T08:49:51.803730387Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270769,12 +272163,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828603456Z", + "timestamp": "2023-12-24T08:49:51.803745505Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270806,12 +272200,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828618665Z", + "timestamp": "2023-12-24T08:49:51.803760793Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270843,12 +272237,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828633833Z", + "timestamp": "2023-12-24T08:49:51.803769629Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270880,12 +272274,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828648671Z", + "timestamp": "2023-12-24T08:49:51.803785589Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270922,7 +272316,7 @@ "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828662166Z", + "timestamp": "2023-12-24T08:49:51.803799265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270954,12 +272348,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:08.828675991Z", + "timestamp": "2023-12-24T08:49:51.803810866Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -270997,15 +272391,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "expirationDate", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "client transfer prohibited" + "2026-03-14T16:23:39.414Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679600113Z", + "timestamp": "2023-12-24T08:49:58.713667778Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271051,7 +272445,7 @@ "pass Culture S.A.S." ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679668801Z", + "timestamp": "2023-12-24T08:49:58.713716248Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271089,16 +272483,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "11", - "FR" + "2023-06-01T09:56:15.239Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679690802Z", + "timestamp": "2023-12-24T08:49:58.713734903Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271136,15 +272529,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantAddress", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ + "11", "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679707182Z", + "timestamp": "2023-12-24T08:49:58.713748709Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271182,15 +272576,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "2019-03-14T16:23:39.414Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679722922Z", + "timestamp": "2023-12-24T08:49:58.713767013Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271228,15 +272622,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "nameServers", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "2023-06-01T09:56:15.239Z" + "ns-cloud-c3.googledomains.com", + "ns-cloud-c4.googledomains.com", + "ns-cloud-c1.googledomains.com", + "ns-cloud-c2.googledomains.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679866409Z", + "timestamp": "2023-12-24T08:49:58.713781159Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271274,15 +272671,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "2026-03-14T16:23:39.414Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.6799691Z", + "timestamp": "2023-12-24T08:49:58.713797229Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271320,18 +272717,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "status", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "ns-cloud-c1.googledomains.com", - "ns-cloud-c2.googledomains.com", - "ns-cloud-c3.googledomains.com", - "ns-cloud-c4.googledomains.com" + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.679990189Z", + "timestamp": "2023-12-24T08:49:58.713810965Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271369,15 +272763,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrationDate", "type": "http", "host": "https://passculture.pro", "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", "extracted-results": [ - "false" + "2019-03-14T16:23:39.414Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:41:15.680012812Z", + "timestamp": "2023-12-24T08:49:58.713825031Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -271411,40 +272805,10 @@ "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:41:20.806134472Z", + "timestamp": "2023-12-24T08:50:03.737855765Z", "curl-command": "curl -X 'PURGE' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "passculture.pro", - "matched-at": "passculture.pro:443", - "extracted-results": [ - "tls12" - ], - "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:42:57.185213609Z", - "matcher-status": true - }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -271456,7 +272820,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -271471,7 +272836,7 @@ "Google Trust Services LLC" ], "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:42:57.185567396Z", + "timestamp": "2023-12-24T08:51:40.844195088Z", "matcher-status": true }, { @@ -271485,7 +272850,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -271501,7 +272867,7 @@ "www.passculture.pro" ], "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:42:57.185702237Z", + "timestamp": "2023-12-24T08:51:40.844313448Z", "matcher-status": true }, { @@ -271516,7 +272882,39 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "passculture.pro", + "matched-at": "passculture.pro:443", + "extracted-results": [ + "tls12" + ], + "ip": "199.36.158.100", + "timestamp": "2023-12-24T08:51:40.937462724Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -271531,7 +272929,7 @@ "tls13" ], "ip": "199.36.158.100", - "timestamp": "2023-12-17T08:42:57.208667262Z", + "timestamp": "2023-12-24T08:51:40.991185669Z", "matcher-status": true } ], @@ -271539,7 +272937,7 @@ { "requestedUrl": "https://passculture.pro/", "finalUrl": "https://passculture.pro/", - "fetchTime": "2023-12-17T08:36:41.725Z", + "fetchTime": "2023-12-24T08:35:29.765Z", "runWarnings": [], "categories": { "performance": { @@ -271550,7 +272948,7 @@ "snapshot" ], "id": "performance", - "score": 0.9941244125366211 + "score": 0.9939996719360351 }, "accessibility": { "title": "Accessibility", @@ -271602,53 +273000,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8295, + "numericValue": 8081, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3634, - "firstMeaningfulPaint": 4786, - "largestContentfulPaint": 6696, - "interactive": 8295, - "speedIndex": 4145, - "totalBlockingTime": 358, - "maxPotentialFID": 348, + "firstContentfulPaint": 3565, + "firstMeaningfulPaint": 4670, + "largestContentfulPaint": 6396, + "interactive": 8081, + "speedIndex": 3863, + "totalBlockingTime": 232, + "maxPotentialFID": 240, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 298696935, + "observedTimeOriginTs": 256877606, "observedNavigationStart": 0, - "observedNavigationStartTs": 298696935, - "observedFirstPaint": 271, - "observedFirstPaintTs": 298968063, - "observedFirstContentfulPaint": 271, - "observedFirstContentfulPaintTs": 298968063, - "observedFirstContentfulPaintAllFrames": 271, - "observedFirstContentfulPaintAllFramesTs": 298968063, - "observedFirstMeaningfulPaint": 734, - "observedFirstMeaningfulPaintTs": 299431279, - "observedLargestContentfulPaint": 734, - "observedLargestContentfulPaintTs": 299431279, - "observedLargestContentfulPaintAllFrames": 734, - "observedLargestContentfulPaintAllFramesTs": 299431279, - "observedTraceEnd": 3265, - "observedTraceEndTs": 301961806, - "observedLoad": 435, - "observedLoadTs": 299132295, - "observedDomContentLoaded": 253, - "observedDomContentLoadedTs": 298949764, + "observedNavigationStartTs": 256877606, + "observedFirstPaint": 257, + "observedFirstPaintTs": 257135001, + "observedFirstContentfulPaint": 257, + "observedFirstContentfulPaintTs": 257135001, + "observedFirstContentfulPaintAllFrames": 257, + "observedFirstContentfulPaintAllFramesTs": 257135001, + "observedFirstMeaningfulPaint": 647, + "observedFirstMeaningfulPaintTs": 257524855, + "observedLargestContentfulPaint": 667, + "observedLargestContentfulPaintTs": 257544222, + "observedLargestContentfulPaintAllFrames": 667, + "observedLargestContentfulPaintAllFramesTs": 257544222, + "observedTraceEnd": 3224, + "observedTraceEndTs": 260101777, + "observedLoad": 451, + "observedLoadTs": 257328592, + "observedDomContentLoaded": 234, + "observedDomContentLoadedTs": 257111629, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 474, - "observedFirstVisualChangeTs": 299170935, - "observedLastVisualChange": 741, - "observedLastVisualChangeTs": 299437935, - "observedSpeedIndex": 734, - "observedSpeedIndexTs": 299431022 + "observedFirstVisualChange": 462, + "observedFirstVisualChangeTs": 257339606, + "observedLastVisualChange": 695, + "observedLastVisualChangeTs": 257572606, + "observedSpeedIndex": 652, + "observedSpeedIndexTs": 257529365 }, { "lcpInvalidated": false @@ -271670,19 +273068,19 @@ "numScripts": 7, "numStylesheets": 2, "numFonts": 8, - "numTasks": 548, - "numTasksOver10ms": 12, + "numTasks": 560, + "numTasksOver10ms": 10, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 165773629.83445165, - "maxRtt": 82.119, - "maxServerLatency": 80.816, - "totalByteWeight": 1079381, - "totalTaskTime": 430.163, - "mainDocumentTransferSize": 865 + "throughput": 63122368.29615466, + "maxRtt": 85.97099999999999, + "maxServerLatency": 77.62400000000002, + "totalByteWeight": 1080035, + "totalTaskTime": 381.20199999999966, + "mainDocumentTransferSize": 910 } ] } @@ -271795,7 +273193,7 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 14, - "lighthouse_performance": 0.9941244125366211, + "lighthouse_performance": 0.9939996719360351, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", @@ -271824,7 +273222,7 @@ "http": { "url": "https://pilotage.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:38:23 GMT", + "end_time": "Sun, 24 Dec 2023 08:43:19 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -271835,31 +273233,30 @@ "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "6660", + "Content-Length": "7217", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 08:38:22 GMT", - "ETag": "W/\"657b1728-7317\"", - "Last-Modified": "Thu, 14 Dec 2023 14:54:32 GMT", + "Date": "Sun, 24 Dec 2023 08:43:18 GMT", + "ETag": "W/\"65816c65-784c\"", + "Last-Modified": "Tue, 19 Dec 2023 10:11:49 GMT", "Server": "GitHub.com", - "Strict-Transport-Security": "max-age=31556952", "Vary": "Accept-Encoding", "Via": "1.1 varnish", - "X-Cache": "HIT", - "X-Cache-Hits": "1", - "X-Fastly-Request-ID": "80cf43af9a0d388745a1a0af8d2ed4cb464414c9", - "X-GitHub-Request-Id": "7CC4:9D47:AE9CCB:CEAF04:657EB37D", - "X-Served-By": "cache-sjc10030-SJC", - "X-Timer": "S1702802302.414026,VS0,VE1", - "expires": "Sun, 17 Dec 2023 08:48:22 GMT", + "X-Cache": "MISS", + "X-Cache-Hits": "0", + "X-Fastly-Request-ID": "11c0e36f0057303d2de822a889c81fe74564614c", + "X-GitHub-Request-Id": "0FBE:75B6:AD9F69:D0DA28:6587EF26", + "X-Served-By": "cache-pao-kpao1770081-PAO", + "X-Timer": "S1703407399.581930,VS0,VE92", + "expires": "Sun, 24 Dec 2023 08:53:18 GMT", "x-proxy-cache": "MISS" }, - "scan_id": 45547158, + "scan_id": 45763038, "score": 0, - "start_time": "Sun, 17 Dec 2023 08:36:28 GMT", + "start_time": "Sun, 24 Dec 2023 08:43:17 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 5, - "tests_passed": 7, + "tests_failed": 7, + "tests_passed": 5, "tests_quantity": 12, "details": { "content-security-policy": { @@ -271934,18 +273331,17 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://pilotage.inclusion.beta.gouv.fr/", - "redirects": true, + "destination": "http://pilotage.inclusion.beta.gouv.fr/", + "redirects": false, "route": [ - "http://pilotage.inclusion.beta.gouv.fr/", - "https://pilotage.inclusion.beta.gouv.fr/" + "http://pilotage.inclusion.beta.gouv.fr/" ], "status_code": 200 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -271964,16 +273360,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31556952", + "data": null, "includeSubDomains": false, - "max-age": 31556952, + "max-age": null, "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -272057,15 +273453,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T08:46:57Z", - "next_check_at": "2023-12-17T08:51:57Z", + "last_check_at": "2023-12-24T08:53:53Z", + "next_check_at": "2023-12-24T08:58:51Z", "mute_until": null, "favicon_url": "https://pilotage.inclusion.beta.gouv.fr/images/favico.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T08:41:58Z", + "tested_at": "2023-12-24T08:14:03Z", "expires_at": "2024-03-14T11:11:14Z", "valid": true, "error": null @@ -272074,11 +273470,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 165, - "connection": 4, - "handshake": 13, - "response": 108, - "total": 290 + "namelookup": 105, + "connection": 5, + "handshake": 14, + "response": 73, + "total": 196 } }, "uptimeGrade": "A", @@ -272113,77 +273509,77 @@ "testssl": [ { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -272191,7 +273587,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -272199,7 +273595,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -272207,7 +273603,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -272215,7 +273611,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -272223,7 +273619,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -272231,533 +273627,519 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2023-12-15 11:11" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "2024-03-14 11:11" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "+214 seconds from localtime" + "finding": "+113 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "1702802372" + "finding": "1703407481" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", - "port": "443", - "severity": "INFO", - "finding": "214 seconds" - }, - { - "id": "HSTS_time", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", - "port": "443", - "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "113 seconds" }, { - "id": "HSTS_preload", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "id": "HSTS", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200175-IAD" + "finding": "cache-iad-kcgs7200063-IAD" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 2" + "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 1" }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -272766,7 +274148,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -272775,7 +274157,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -272784,7 +274166,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -272793,7 +274175,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -272801,16 +274183,16 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", "cwe": "CWE-310", - "finding": "not vulnerable" + "finding": "likely not vulnerable (timed out)" }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -272819,7 +274201,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -272828,7 +274210,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -272837,14 +274219,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -272853,7 +274235,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -272862,7 +274244,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -272871,7 +274253,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -272880,7 +274262,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -272889,7 +274271,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -272898,7 +274280,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -272907,7 +274289,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -272916,7 +274298,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -272925,7 +274307,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -272934,318 +274316,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", @@ -273398,7 +274787,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", @@ -273594,7 +274983,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", - "finding": "88 >= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", @@ -273797,42 +275186,28 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "+275 seconds from localtime" + "finding": "+172 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "1702802433" + "finding": "1703407540" }, { "id": "HTTP_headerAge", "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "275 seconds" - }, - { - "id": "HSTS_time", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", - "port": "443", - "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" + "finding": "172 seconds" }, { - "id": "HSTS_subdomains", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", + "id": "HSTS", "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", @@ -273874,7 +275249,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200031-IAD" + "finding": "cache-iad-kcgs7200178-IAD" }, { "id": "Cache-Control", @@ -273889,7 +275264,7 @@ "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 2" + "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 1" }, { "id": "heartbleed", @@ -274255,7 +275630,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", @@ -274290,7 +275665,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", @@ -274381,81 +275756,88 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274463,7 +275845,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274471,7 +275853,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274479,7 +275861,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274487,7 +275869,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -274495,7 +275877,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -274503,525 +275885,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2023-12-15 11:11" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2024-03-14 11:11" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "+335 seconds from localtime" + "finding": "+232 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "1702802493" + "finding": "1703407600" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", - "port": "443", - "severity": "INFO", - "finding": "335 seconds" - }, - { - "id": "HSTS_time", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", - "port": "443", - "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "232 seconds" }, { - "id": "HSTS_preload", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "id": "HSTS", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200157-IAD" + "finding": "cache-iad-kcgs7200154-IAD" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -275029,7 +276397,7 @@ }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -275038,7 +276406,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -275047,7 +276415,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -275056,7 +276424,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -275065,7 +276433,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -275073,7 +276441,7 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -275082,7 +276450,7 @@ }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -275091,7 +276459,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -275100,7 +276468,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -275109,14 +276477,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -275125,7 +276493,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -275134,7 +276502,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -275143,7 +276511,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -275152,7 +276520,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -275161,7 +276529,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -275170,7 +276538,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -275179,7 +276547,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -275188,7 +276556,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -275197,7 +276565,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -275206,392 +276574,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275599,7 +276974,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275607,7 +276982,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275615,7 +276990,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275623,7 +276998,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -275631,7 +277006,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -275639,525 +277014,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2023-12-15 11:11" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2024-03-14 11:11" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "+395 seconds from localtime" + "finding": "+292 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "1702802553" + "finding": "1703407660" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", - "port": "443", - "severity": "INFO", - "finding": "395 seconds" - }, - { - "id": "HSTS_time", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", - "port": "443", - "severity": "OK", - "finding": "365 days (=31556952 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "only for this domain" + "finding": "292 seconds" }, { - "id": "HSTS_preload", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "id": "HSTS", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200109-IAD" + "finding": "cache-iad-kcgs7200166-IAD" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -276165,7 +277526,7 @@ }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -276174,7 +277535,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -276183,7 +277544,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -276192,7 +277553,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -276201,7 +277562,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -276209,7 +277570,7 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -276218,7 +277579,7 @@ }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -276227,7 +277588,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -276236,7 +277597,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -276245,14 +277606,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -276261,7 +277622,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -276270,7 +277631,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -276279,7 +277640,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -276288,7 +277649,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -276297,7 +277658,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -276306,7 +277667,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -276315,7 +277676,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -276324,7 +277685,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -276333,7 +277694,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -276342,325 +277703,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "245" + "finding": "242" } ], "thirdparties": { @@ -276718,31 +278086,30 @@ "headers": { "accept-ranges": "bytes", "access-control-allow-origin": "*", - "age": "216", + "age": "114", "cache-control": "max-age=600", "content-encoding": "gzip", - "content-length": "6660", + "content-length": "7217", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 08:38:44 GMT", - "etag": "W/\"657b1728-7317\"", - "expires": "Sun, 17 Dec 2023 08:44:36 GMT", - "last-modified": "Thu, 14 Dec 2023 14:54:32 GMT", + "date": "Sun, 24 Dec 2023 08:43:52 GMT", + "etag": "W/\"65816c65-784c\"", + "expires": "Sun, 24 Dec 2023 08:51:27 GMT", + "last-modified": "Tue, 19 Dec 2023 10:11:49 GMT", "server": "GitHub.com", - "strict-transport-security": "max-age=31556952", "vary": "Accept-Encoding", "via": "1.1 varnish", "x-cache": "HIT", - "x-cache-hits": "1", - "x-fastly-request-id": "2f9df029ba8b3ddc1be4ebf686c20345d3351f56", - "x-github-request-id": "F99E:33D8:1D30DD6:27C8858:657EB299", + "x-cache-hits": "2", + "x-fastly-request-id": "517cc354e618991c2d6d1c18b75e1d29e4aa4a4f", + "x-github-request-id": "D3A4:7875:258D3B6:31B5B49:6587EEB3", "x-proxy-cache": "MISS", - "x-served-by": "cache-iad-kcgs7200132-IAD", - "x-timer": "S1702802324.190697,VS0,VE1" + "x-served-by": "cache-iad-kcgs7200148-IAD", + "x-timer": "S1703407432.076310,VS0,VE0" }, "endpoints": [ { "hostname": "pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.110.153", + "ip": "185.199.111.153", "geoip": { "continent": { "code": "NA", @@ -277067,6 +278434,24 @@ ], "rootPath": true }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, { "slug": "matomo-analytics", "name": "Matomo Analytics", @@ -277120,24 +278505,6 @@ } ] }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "fastly", "name": "Fastly", @@ -277197,7 +278564,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:36:03", + "@generated": "Sun, 24 Dec 2023 08:42:53", "site": [ { "@name": "https://pilotage.inclusion.beta.gouv.fr", @@ -277261,6 +278628,13 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Strict-Transport-Security Header Not Set", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, { "name": "X-Content-Type-Options Header Missing", "riskcode": "1", @@ -277344,24 +278718,20 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -277370,34 +278740,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", - "matched-at": "_dmarc.pilotage.inclusion.beta.gouv.fr", + "matched-at": "pilotage.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T08:43:53.022355943Z", + "timestamp": "2023-12-24T08:49:00.877288392Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -277412,30 +278785,27 @@ "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2023-12-17T08:43:53.090746496Z", + "timestamp": "2023-12-24T08:49:00.878817752Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -277445,36 +278815,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", - "matched-at": "pilotage.inclusion.beta.gouv.fr", + "matched-at": "_dmarc.pilotage.inclusion.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:3794f0cae8452f55905755b1a4a695b9\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "\"v=DMARC1; p=none\"" ], - "timestamp": "2023-12-17T08:43:53.099181825Z", + "timestamp": "2023-12-24T08:49:00.879355404Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -277490,27 +278861,30 @@ "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", - "timestamp": "2023-12-17T08:43:53.250262033Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2023-12-24T08:49:00.88696323Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -277527,10 +278901,10 @@ "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:3794f0cae8452f55905755b1a4a695b9\"" ], - "timestamp": "2023-12-17T08:43:53.259238046Z", + "timestamp": "2023-12-24T08:49:01.118509085Z", "matcher-status": true }, { @@ -277555,8 +278929,8 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:19.412991092Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:27.335922339Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277588,12 +278962,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052210148Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963360165Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277625,12 +278999,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052260492Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963398476Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277666,8 +279040,8 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052278365Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963409006Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277703,119 +279077,8 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052296489Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052311036Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.05232366Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052336834Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963457606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277851,8 +279114,8 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052349297Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963477954Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277888,8 +279151,45 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.052364125Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963506317Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963519632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277925,8 +279225,119 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:23.05237767Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963553165Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963568844Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963585394Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:30.963600573Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -277965,8 +279376,8 @@ "//cdn.jsdelivr.net/gh/AmauriC/tarteaucitron.js@1.11.0/tarteaucitron.js", "https://cdnjs.cloudflare.com/ajax/libs/tiny-slider/2.9.4/min/tiny-slider.js" ], - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:32.946116802Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:40.86496926Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: pilotage.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -278005,8 +279416,8 @@ "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr/", - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:44:37.00542253Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:49:44.932096376Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: pilotage.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -278021,7 +279432,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -278035,8 +279447,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:50:02.550443482Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:55:11.095688626Z", "matcher-status": true }, { @@ -278050,7 +279462,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -278064,8 +279477,8 @@ "extracted-results": [ "pilotage.inclusion.beta.gouv.fr" ], - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:50:02.550548848Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:55:11.095794633Z", "matcher-status": true }, { @@ -278080,7 +279493,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -278094,8 +279508,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:50:02.949793028Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:55:11.324720978Z", "matcher-status": true }, { @@ -278110,7 +279524,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -278124,8 +279539,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.199.109.153", - "timestamp": "2023-12-17T08:50:02.986324874Z", + "ip": "185.199.108.153", + "timestamp": "2023-12-24T08:55:11.376934935Z", "matcher-status": true } ], @@ -278133,7 +279548,7 @@ { "requestedUrl": "https://pilotage.inclusion.beta.gouv.fr/", "finalUrl": "https://pilotage.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T08:36:17.652Z", + "fetchTime": "2023-12-24T08:43:07.106Z", "runWarnings": [], "categories": { "performance": { @@ -278196,53 +279611,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6610, + "numericValue": 6016, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1507, - "firstMeaningfulPaint": 1507, - "largestContentfulPaint": 2352, - "interactive": 6610, - "speedIndex": 1507, - "totalBlockingTime": 595, - "maxPotentialFID": 471, - "cumulativeLayoutShift": 0.029725553512573243, - "cumulativeLayoutShiftMainFrame": 0.029725553512573243, - "totalCumulativeLayoutShift": 0.029725553512573243, + "firstContentfulPaint": 1509, + "firstMeaningfulPaint": 1921, + "largestContentfulPaint": 2482, + "interactive": 6016, + "speedIndex": 2224, + "totalBlockingTime": 131, + "maxPotentialFID": 247, + "cumulativeLayoutShift": 0.03334786118401421, + "cumulativeLayoutShiftMainFrame": 0.03334786118401421, + "totalCumulativeLayoutShift": 0.03334786118401421, "observedTimeOrigin": 0, - "observedTimeOriginTs": 272236774, + "observedTimeOriginTs": 331887181, "observedNavigationStart": 0, - "observedNavigationStartTs": 272236774, - "observedFirstPaint": 156, - "observedFirstPaintTs": 272392605, - "observedFirstContentfulPaint": 156, - "observedFirstContentfulPaintTs": 272392605, - "observedFirstContentfulPaintAllFrames": 156, - "observedFirstContentfulPaintAllFramesTs": 272392605, - "observedFirstMeaningfulPaint": 156, - "observedFirstMeaningfulPaintTs": 272392605, - "observedLargestContentfulPaint": 156, - "observedLargestContentfulPaintTs": 272392605, - "observedLargestContentfulPaintAllFrames": 156, - "observedLargestContentfulPaintAllFramesTs": 272392605, - "observedTraceEnd": 2547, - "observedTraceEndTs": 274783844, - "observedLoad": 239, - "observedLoadTs": 272476098, - "observedDomContentLoaded": 237, - "observedDomContentLoadedTs": 272473595, - "observedCumulativeLayoutShift": 0.029725553512573243, - "observedCumulativeLayoutShiftMainFrame": 0.029725553512573243, - "observedTotalCumulativeLayoutShift": 0.029725553512573243, - "observedFirstVisualChange": 168, - "observedFirstVisualChangeTs": 272404774, - "observedLastVisualChange": 285, - "observedLastVisualChangeTs": 272521774, - "observedSpeedIndex": 205, - "observedSpeedIndexTs": 272442269 + "observedNavigationStartTs": 331887181, + "observedFirstPaint": 122, + "observedFirstPaintTs": 332009530, + "observedFirstContentfulPaint": 122, + "observedFirstContentfulPaintTs": 332009530, + "observedFirstContentfulPaintAllFrames": 122, + "observedFirstContentfulPaintAllFramesTs": 332009530, + "observedFirstMeaningfulPaint": 122, + "observedFirstMeaningfulPaintTs": 332009530, + "observedLargestContentfulPaint": 122, + "observedLargestContentfulPaintTs": 332009530, + "observedLargestContentfulPaintAllFrames": 122, + "observedLargestContentfulPaintAllFramesTs": 332009530, + "observedTraceEnd": 2855, + "observedTraceEndTs": 334741967, + "observedLoad": 548, + "observedLoadTs": 332435412, + "observedDomContentLoaded": 188, + "observedDomContentLoadedTs": 332075318, + "observedCumulativeLayoutShift": 0.03334786118401421, + "observedCumulativeLayoutShiftMainFrame": 0.03334786118401421, + "observedTotalCumulativeLayoutShift": 0.03334786118401421, + "observedFirstVisualChange": 132, + "observedFirstVisualChangeTs": 332019181, + "observedLastVisualChange": 599, + "observedLastVisualChangeTs": 332486181, + "observedSpeedIndex": 270, + "observedSpeedIndexTs": 332157380 }, { "lcpInvalidated": false @@ -278260,23 +279675,23 @@ "type": "debugdata", "items": [ { - "numRequests": 24, - "numScripts": 9, + "numRequests": 25, + "numScripts": 10, "numStylesheets": 1, "numFonts": 5, - "numTasks": 499, + "numTasks": 653, "numTasksOver10ms": 6, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.2989999999999995, - "throughput": 25696672.44513096, - "maxRtt": 80.96600000000001, - "maxServerLatency": 14.613000000000014, - "totalByteWeight": 607752, - "totalTaskTime": 417.9719999999998, - "mainDocumentTransferSize": 7058 + "rtt": 5.2330000000000005, + "throughput": 48663684.36621817, + "maxRtt": 80.869, + "maxServerLatency": 8.448000000000008, + "totalByteWeight": 678536, + "totalTaskTime": 252.83899999999977, + "mainDocumentTransferSize": 7600 } ] } @@ -278376,7 +279791,7 @@ "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, "testsslExpireDate": "2024-03-14T11:11:00.000Z", - "testsslGrade": "A+", + "testsslGrade": "A", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "C", @@ -278407,7 +279822,7 @@ "http": { "url": "https://pix.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:49:24 GMT", + "end_time": "Sun, 24 Dec 2023 08:57:26 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -278416,7 +279831,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 08:49:24 GMT", + "Date": "Sun, 24 Dec 2023 08:57:25 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -278424,9 +279839,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45547413, + "scan_id": 45763231, "score": 75, - "start_time": "Sun, 17 Dec 2023 08:49:20 GMT", + "start_time": "Sun, 24 Dec 2023 08:57:17 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -278611,15 +280026,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T08:51:24Z", - "next_check_at": "2023-12-17T08:56:21Z", + "last_check_at": "2023-12-24T09:02:22Z", + "next_check_at": "2023-12-24T09:07:21Z", "mute_until": null, "favicon_url": null, "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T08:11:32Z", + "tested_at": "2023-12-24T08:37:33Z", "expires_at": "2024-11-12T22:59:59Z", "valid": true, "error": null @@ -278628,11 +280043,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 51, - "connection": 189, - "handshake": 199, - "response": 196, - "total": 636 + "namelookup": 70, + "connection": 164, + "handshake": 177, + "response": 171, + "total": 582 } }, "uptimeGrade": "A", @@ -278665,77 +280080,77 @@ "testssl": [ { "id": "service", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -278743,7 +280158,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -278751,7 +280166,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -278759,7 +280174,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -278767,7 +280182,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -278775,7 +280190,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -278783,483 +280198,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "RSA 3072 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "D6C4CF7B646884F48C50C40A7343E934" }, { "id": "cert_serialNumberLen", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "BA2504CE03693B399822253691FE39DA0CDA2FBB" }, { "id": "cert_fingerprintSHA256", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "F6854FC6D6738BD8AA9D77E61C5E2814E921F772BB4D9391FEC1EB52A04A3FB3" }, { "id": "cert", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "admin.pix.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "admin.pix.fr" }, { "id": "cert_subjectAltName", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "certif.pix.fr app.pix.org admin.pix.fr orga.pix.org app.pix.fr pix.fr admin.pix.org certif.pix.org orga.pix.fr pix.org" }, { "id": "cert_trust", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "Ok via SAN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", - "finding": "331 >= 60 days" + "finding": "324 >= 60 days" }, { "id": "cert_notBefore", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "2023-11-13 23:00" }, { "id": "cert_notAfter", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "2024-11-12 22:59" }, { "id": "cert_extlifeSpan", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", - "finding": "1702803052" + "finding": "1703408365" }, { "id": "HSTS_time", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -279267,7 +280682,7 @@ }, { "id": "heartbleed", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -279276,7 +280691,7 @@ }, { "id": "CCS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -279285,7 +280700,7 @@ }, { "id": "ticketbleed", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -279294,7 +280709,7 @@ }, { "id": "ROBOT", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -279303,7 +280718,7 @@ }, { "id": "secure_renego", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -279311,7 +280726,7 @@ }, { "id": "secure_client_renego", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -279320,7 +280735,7 @@ }, { "id": "CRIME_TLS", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -279329,7 +280744,7 @@ }, { "id": "BREACH", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -279338,7 +280753,7 @@ }, { "id": "POODLE_SSL", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -279347,14 +280762,14 @@ }, { "id": "fallback_SCSV", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -279363,7 +280778,7 @@ }, { "id": "FREAK", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -279372,7 +280787,7 @@ }, { "id": "DROWN", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -279381,7 +280796,7 @@ }, { "id": "DROWN_hint", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -279390,7 +280805,7 @@ }, { "id": "LOGJAM", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -279399,7 +280814,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -279408,7 +280823,7 @@ }, { "id": "BEAST", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -279417,7 +280832,7 @@ }, { "id": "LUCKY13", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -279426,7 +280841,7 @@ }, { "id": "winshock", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -279435,7 +280850,7 @@ }, { "id": "RC4", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -279444,325 +280859,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pix.fr/185.231.167.141", + "ip": "pix.fr/185.179.149.141", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "101" } ], "thirdparties": { @@ -279805,11 +281220,11 @@ }, { "name": "challenge", - "value": "qrndxGU_P-dMqgmw5N-84MqZjCcmBVFfqnJ_SDAN-Vc8au0YkstaisPvfLtkxRXzPIZLDV-a4knEFtdgZIIf5sGJC7nOOeN1sAOXigKoIwL2OrcA1SDpfhP45c6WKuzVUl2VCxr6rw8SlVPM-9q_fEpht6uS-DkC94-sA9chWDCGyvyKbPLDKKPkqHdch5EFIWnMdbTIOEfmZ9A_EbPPsBww-A7Mb8MhJ7ST9H0eTw6wGIEvbHdrTzRl058b5MGLJk7uvrfcjdyPamJlifdgaw", + "value": "8MzryQDI-EHIUCy5Kr8SrivSK2fdx5dhbePrgA2LlkskUFasUSesSPigQuXfrOeA8_xazUTwG9kiHrzJBAqoFshkJb6sR7m_0ixBQBByLxvc6qhyYjnQJpwwFWlk_RDdTHts-RTi7SWDVXnqH1y70uS8RO-KT12-PQvEDiimQMzj9eXKMh5V3sDyXjjkolAMT_FzsudQpikOcmNZblE0nWab1QsumYH9x8k7eM_6poKTfFKO-AqLh7pHqwsa7Y0x", "domain": ".pix.fr", "path": "/", - "expires": 1702806596.220676, - "size": 287, + "expires": 1703411871.471983, + "size": 265, "httpOnly": false, "secure": false, "session": false, @@ -279823,23 +281238,23 @@ "age": "0", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 08:49:56 GMT", - "etag": "W/\"657b209e-26694\"", - "last-modified": "Thu, 14 Dec 2023 15:34:54 GMT", + "date": "Sun, 24 Dec 2023 08:57:51 GMT", + "etag": "W/\"6585bc2e-26694\"", + "last-modified": "Fri, 22 Dec 2023 16:41:18 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "e91da5bb76790725072bb38c68c8a0a7", - "x-varnish": "66060430", + "x-request-id": "039c6f05b2bd244c569c133dfab29416", + "x-varnish": "20695986", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "pix.fr", - "ip": "185.231.167.141", + "ip": "185.179.149.141", "geoip": { "continent": { "code": "EU", @@ -279895,7 +281310,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.163.95", + "ip": "142.250.189.234", "geoip": { "continent": { "code": "NA", @@ -280039,7 +281454,7 @@ }, { "hostname": "static.cdn.prismic.io", - "ip": "99.84.191.45", + "ip": "13.227.74.2", "geoip": { "continent": { "code": "NA", @@ -280093,7 +281508,7 @@ }, { "hostname": "pix-site.prismic.io", - "ip": "34.198.180.120", + "ip": "34.236.91.77", "geoip": { "city": { "geoname_id": 4744870, @@ -280301,7 +281716,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:48:54", + "@generated": "Sun, 24 Dec 2023 08:56:51", "site": [ { "@name": "https://pix.fr", @@ -280392,20 +281807,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -280421,11 +281839,54 @@ "host": "pix.fr.", "matched-at": "pix.fr", "extracted-results": [ - "ns-137-a.gandi.net.", - "ns-180-c.gandi.net.", - "ns-66-b.gandi.net." + "\"atlassian-domain-verification=6DZSPOR3Nou5LS+5cVTU+YOMTTGe8WzChA5b5blVV4XLzOEeTHP0sX+4E6d0aAQT\"", + "\"google-site-verification=fY1sZyFtwPwv2VVXg9n2Jm9wb-toBik1jx_wY5rFr-Q\"", + "\"v=spf1 include:_spf.google.com include:spf.sendinblue.com include:sendgrid.net include:fdspfeuc.freshemail.io ~all\"", + "\"github-verification=JeK59q9M2jMLtSm9vXmt8wsuScEY9FWDkyM2r8Jx\"", + "\"MS=ms78848881\"", + "\"google-site-verification=UNljrrJnA14smwGTYUI-_rRcHljWlAGUWFfPVGsGmF4\"" + ], + "timestamp": "2023-12-24T09:01:12.088807817Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "pix.fr.", + "matched-at": "_dmarc.pix.fr", + "extracted-results": [ + "\"v=DMARC1; p=none;\"" ], - "timestamp": "2023-12-17T08:52:15.390946685Z", + "timestamp": "2023-12-24T09:01:12.228868929Z", "matcher-status": true }, { @@ -280462,12 +281923,12 @@ "matched-at": "pix.fr", "extracted-results": [ "sectigo.com", - "letsencrypt.org", + "mailto:security@pix.fr", "certigna.fr", "amazontrust.com", - "mailto:security@pix.fr" + "letsencrypt.org" ], - "timestamp": "2023-12-17T08:52:15.472412426Z", + "timestamp": "2023-12-24T09:01:12.386285797Z", "matcher-status": true }, { @@ -280500,7 +281961,7 @@ "type": "dns", "host": "pix.fr.", "matched-at": "pix.fr", - "timestamp": "2023-12-17T08:52:15.479122149Z", + "timestamp": "2023-12-24T09:01:13.086424786Z", "matcher-status": true }, { @@ -280539,71 +282000,28 @@ "extracted-results": [ "10 alt3.aspmx.l.google.com.", "10 alt4.aspmx.l.google.com.", - "5 alt2.aspmx.l.google.com.", "5 alt1.aspmx.l.google.com.", - "1 aspmx.l.google.com." + "1 aspmx.l.google.com.", + "5 alt2.aspmx.l.google.com." ], - "timestamp": "2023-12-17T08:52:15.479182342Z", + "timestamp": "2023-12-24T09:01:13.086963798Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "pix.fr.", - "matched-at": "_dmarc.pix.fr", - "extracted-results": [ - "\"v=DMARC1; p=none;\"" - ], - "timestamp": "2023-12-17T08:52:15.479316943Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -280619,14 +282037,11 @@ "host": "pix.fr.", "matched-at": "pix.fr", "extracted-results": [ - "\"MS=ms78848881\"", - "\"atlassian-domain-verification=6DZSPOR3Nou5LS+5cVTU+YOMTTGe8WzChA5b5blVV4XLzOEeTHP0sX+4E6d0aAQT\"", - "\"google-site-verification=UNljrrJnA14smwGTYUI-_rRcHljWlAGUWFfPVGsGmF4\"", - "\"github-verification=JeK59q9M2jMLtSm9vXmt8wsuScEY9FWDkyM2r8Jx\"", - "\"google-site-verification=fY1sZyFtwPwv2VVXg9n2Jm9wb-toBik1jx_wY5rFr-Q\"", - "\"v=spf1 include:_spf.google.com include:spf.sendinblue.com include:sendgrid.net include:fdspfeuc.freshemail.io ~all\"" + "ns-137-a.gandi.net.", + "ns-180-c.gandi.net.", + "ns-66-b.gandi.net." ], - "timestamp": "2023-12-17T08:52:15.490858754Z", + "timestamp": "2023-12-24T09:01:13.231181968Z", "matcher-status": true }, { @@ -280665,8 +282080,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:27.135392645Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:01:31.494895577Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280692,8 +282107,8 @@ "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:50.225492936Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:08.827440274Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280725,12 +282140,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.09163018Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748419116Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280762,12 +282177,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091695291Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748476934Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280799,12 +282214,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091713916Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748497804Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280836,12 +282251,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091725909Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748514175Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280873,12 +282288,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091738122Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748531387Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280910,12 +282325,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091752008Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748546926Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280947,12 +282362,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:52:59.091765002Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:02:23.748561584Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -280994,8 +282409,8 @@ "extracted-results": [ "0aaba343-5157-4b9b-9dd5-a57d49905a72" ], - "ip": "20.190.151.133", - "timestamp": "2023-12-17T08:53:00.252793162Z", + "ip": "20.190.151.134", + "timestamp": "2023-12-24T09:02:25.889253122Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/pix.fr/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -281033,245 +282448,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "+33.143400018" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186697445Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "false" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186744492Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "client transfer prohibited" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186767495Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "2023-08-01T09:58:40.315651Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186781983Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "GIP PIX" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186796249Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantEmail", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "GIP PIX" + "abef1bba5fdc712aade4c92b79bfe7c0-23536255@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186809995Z", + "timestamp": "2023-12-24T09:02:41.48535852Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281309,15 +282494,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantPhone", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "abef1bba5fdc712aade4c92b79bfe7c0-23536255@contact.gandi.net" + "+33.143400018" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186825073Z", + "timestamp": "2023-12-24T09:02:41.48541202Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281360,13 +282545,13 @@ "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ + "FR", "21-23 Rue des Ardennes", "Paris", - "75019", - "FR" + "75019" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186968631Z", + "timestamp": "2023-12-24T09:02:41.485432248Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281404,15 +282589,17 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "nameServers", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "FR" + "ns-137-a.gandi.net", + "ns-66-b.gandi.net", + "ns-180-c.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.186987226Z", + "timestamp": "2023-12-24T09:02:41.485447627Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281450,17 +282637,245 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "ns-180-c.gandi.net", - "ns-137-a.gandi.net", - "ns-66-b.gandi.net" + "2023-08-01T09:58:40.315651Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.187003076Z", + "timestamp": "2023-12-24T09:02:41.48551777Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantName", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "GIP PIX" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T09:02:41.485532638Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "GIP PIX" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T09:02:41.485568946Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "FR" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T09:02:41.485585337Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "secureDNS", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "false" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T09:02:41.485601147Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "client transfer prohibited" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T09:02:41.485616335Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281506,7 +282921,7 @@ "2007-05-03T07:16:33Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.187020488Z", + "timestamp": "2023-12-24T09:02:41.48562961Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281552,7 +282967,7 @@ "2026-12-30T23:07:40Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T08:53:09.187035887Z", + "timestamp": "2023-12-24T09:02:41.485646061Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -281567,7 +282982,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -281581,8 +282997,8 @@ "extracted-results": [ "DHIMYOTIS" ], - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:55:03.684324495Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:04:59.658252684Z", "matcher-status": true }, { @@ -281596,7 +283012,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -281608,19 +283025,19 @@ "host": "pix.fr", "matched-at": "pix.fr:443", "extracted-results": [ - "app.pix.org", - "admin.pix.fr", "orga.pix.org", "app.pix.fr", - "pix.fr", "admin.pix.org", - "certif.pix.org", "orga.pix.fr", "certif.pix.fr", - "pix.org" + "app.pix.org", + "certif.pix.org", + "pix.org", + "admin.pix.fr", + "pix.fr" ], - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:55:03.684471029Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:04:59.658386886Z", "matcher-status": true }, { @@ -281635,7 +283052,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -281649,8 +283067,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:55:06.00860674Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:05:00.617805787Z", "matcher-status": true }, { @@ -281665,7 +283083,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -281679,8 +283098,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.231.167.141", - "timestamp": "2023-12-17T08:55:06.879367555Z", + "ip": "185.179.148.141", + "timestamp": "2023-12-24T09:05:02.178237352Z", "matcher-status": true } ], @@ -281688,7 +283107,7 @@ { "requestedUrl": "https://pix.fr/", "finalUrl": "https://pix.fr/", - "fetchTime": "2023-12-17T08:49:08.374Z", + "fetchTime": "2023-12-24T08:57:05.803Z", "runWarnings": [], "categories": { "performance": { @@ -281751,53 +283170,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5196, + "numericValue": 5859, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1917, - "firstMeaningfulPaint": 1917, - "largestContentfulPaint": 8812, - "interactive": 5196, - "speedIndex": 3534, - "totalBlockingTime": 462, - "maxPotentialFID": 386, + "firstContentfulPaint": 2242, + "firstMeaningfulPaint": 2242, + "largestContentfulPaint": 6812, + "interactive": 5859, + "speedIndex": 4164, + "totalBlockingTime": 430, + "maxPotentialFID": 357, "cumulativeLayoutShift": 0.11931990517510307, "cumulativeLayoutShiftMainFrame": 0.11931990517510307, "totalCumulativeLayoutShift": 0.11931990517510307, "observedTimeOrigin": 0, - "observedTimeOriginTs": 283945675, + "observedTimeOriginTs": 349279981, "observedNavigationStart": 0, - "observedNavigationStartTs": 283945675, - "observedFirstPaint": 313, - "observedFirstPaintTs": 284258446, - "observedFirstContentfulPaint": 313, - "observedFirstContentfulPaintTs": 284258446, - "observedFirstContentfulPaintAllFrames": 313, - "observedFirstContentfulPaintAllFramesTs": 284258446, - "observedFirstMeaningfulPaint": 313, - "observedFirstMeaningfulPaintTs": 284258446, - "observedLargestContentfulPaint": 933, - "observedLargestContentfulPaintTs": 284878467, - "observedLargestContentfulPaintAllFrames": 933, - "observedLargestContentfulPaintAllFramesTs": 284878467, - "observedTraceEnd": 4921, - "observedTraceEndTs": 288866360, - "observedLoad": 2613, - "observedLoadTs": 286558343, - "observedDomContentLoaded": 653, - "observedDomContentLoadedTs": 284598953, + "observedNavigationStartTs": 349279981, + "observedFirstPaint": 408, + "observedFirstPaintTs": 349687588, + "observedFirstContentfulPaint": 408, + "observedFirstContentfulPaintTs": 349687588, + "observedFirstContentfulPaintAllFrames": 408, + "observedFirstContentfulPaintAllFramesTs": 349687588, + "observedFirstMeaningfulPaint": 408, + "observedFirstMeaningfulPaintTs": 349687588, + "observedLargestContentfulPaint": 928, + "observedLargestContentfulPaintTs": 350208052, + "observedLargestContentfulPaintAllFrames": 928, + "observedLargestContentfulPaintAllFramesTs": 350208052, + "observedTraceEnd": 3980, + "observedTraceEndTs": 353259504, + "observedLoad": 1670, + "observedLoadTs": 350949988, + "observedDomContentLoaded": 892, + "observedDomContentLoadedTs": 350171601, "observedCumulativeLayoutShift": 0.11931990517510307, "observedCumulativeLayoutShiftMainFrame": 0.11931990517510307, "observedTotalCumulativeLayoutShift": 0.11931990517510307, - "observedFirstVisualChange": 309, - "observedFirstVisualChangeTs": 284254675, - "observedLastVisualChange": 1776, - "observedLastVisualChangeTs": 285721675, - "observedSpeedIndex": 931, - "observedSpeedIndexTs": 284876271 + "observedFirstVisualChange": 406, + "observedFirstVisualChangeTs": 349685981, + "observedLastVisualChange": 1555, + "observedLastVisualChangeTs": 350834981, + "observedSpeedIndex": 952, + "observedSpeedIndexTs": 350231990 }, { "lcpInvalidated": false @@ -281819,19 +283238,19 @@ "numScripts": 14, "numStylesheets": 1, "numFonts": 6, - "numTasks": 2338, - "numTasksOver10ms": 8, - "numTasksOver25ms": 2, + "numTasks": 2099, + "numTasksOver10ms": 5, + "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.7659999999999982, - "throughput": 24064803.897110194, - "maxRtt": 83.868, - "maxServerLatency": 156.236, - "totalByteWeight": 7319271, - "totalTaskTime": 586.6029999999896, - "mainDocumentTransferSize": 7687 + "rtt": 1.7190000000000003, + "throughput": 50403201.32846243, + "maxRtt": 148.34799999999998, + "maxServerLatency": 282.451, + "totalByteWeight": 7360537, + "totalTaskTime": 540.2659999999828, + "mainDocumentTransferSize": 7686 } ] } @@ -281967,7 +283386,7 @@ "http": { "url": "https://place-des-entreprises.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 08:53:47 GMT", + "end_time": "Sun, 24 Dec 2023 09:02:50 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -281975,15 +283394,15 @@ "Cache-Control": "no-store", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-N+yDV7gcnh9Z+xJ5GkJPnA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-N+yDV7gcnh9Z+xJ5GkJPnA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", + "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-xVZNe8yGO3U+5a/StFGftA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-xVZNe8yGO3U+5a/StFGftA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 08:53:45 GMT", - "ETag": "W/\"0dd5c4d1d8b0a1823956d9d45595aa7a\"", + "Date": "Sun, 24 Dec 2023 09:02:48 GMT", + "ETag": "W/\"902cd518cb8612140eca113415192ccd\"", "Expires": "0", - "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", + "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", "Pragma": "no-cache", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_PlaceDesEntreprises_session=PHx7yTcCiaUhv6OpHs%2BAWs9YFWJKFsPEIC3xX4wNsYGBK782PsrGK4ctFzKAuBwSi1PaVpj1r4%2BxKLfJKHLODDf5WVnVG525WtDFfxqugWdywtocIpJ%2F%2BA6W8nH38CdYgEdfrynRJ6plAJE6UOGWlp4UKnEO6B9BkDfKd0YdtCDuFvb98BNhwmVUUTZKQIyvJdE%2FtOwib1qVM%2BcxoshDUQHG3nteAEUKhY8vZqL7xExHE6dk%2FAXQKkN2FeM1g34xBolkxHsALBxKdfHbwmhUN%2F%2BDuQNsTeyT7DPad8Cu8BJ8VwYo--JOgtmnvc8it8h2bC--uf%2B%2BBBypvy8lAtLiCeGwlg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "Set-Cookie": "_PlaceDesEntreprises_session=mGNMb6zcxJ3w0DwQjMiKwUBhuNCFvXlA%2Fd3RHldbzGL2YKSYCTizXWW8rWWvw7unCvPzwDmkW9RfK6boXzOwgtDTjmpSm0OtQ7oBuGLpq0Zs5zo5KNJhAfr3DDL5TPDlRAi%2Fn5c8jZ3W8jzy8BfpjGExu7iU8NUmp%2BI5BtNavzrFJP%2Bp7cA%2FPjUQna6I0f0tgrDbhl%2BGcoKndGTNneS6XP6MybQc%2FIiLZ%2BZdq8tR%2BTDh04tXIAP57wAnqOVfv41SQkfPlORd2cxRZwi3ql6cFUVxvN2pp5kMHWVDKaxv2Ni2HI9E--AQ95Cd89t5uML2UY--Lc4vtR16uoUQ1iefjPncgA%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", "Strict-Transport-Security": "max-age=31536000, max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -281991,13 +283410,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "f7d287c7-3c02-4ec7-88af-e0ebe5e202fb, f7d287c7-3c02-4ec7-88af-e0ebe5e202fb", - "X-Runtime": "0.048433", + "X-Request-ID": "1370d632-2acc-45f4-82f1-c3a88661bcff, 1370d632-2acc-45f4-82f1-c3a88661bcff", + "X-Runtime": "0.039543", "X-XSS-Protection": "0" }, - "scan_id": 45547504, + "scan_id": 45763300, "score": 80, - "start_time": "Sun, 17 Dec 2023 08:53:42 GMT", + "start_time": "Sun, 24 Dec 2023 09:02:44 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -282013,51 +283432,53 @@ "'self'" ], "connect-src": [ - "https://pagead2.googlesyndication.com", + "*.google.com", "'self'", - "https://tpc.googlesyndication.com", - "https://browser.sentry-cdn.com", - "https://cdn.jsdelivr.net/", + "*.sentry.io", + "https://adservice.google.com", + "https://stats.beta.gouv.fr/", "https://www.googletagmanager.com", - "https://googleads.g.doubleclick.net", + "https://tpc.googlesyndication.com", "https://api-adresse.data.gouv.fr/", - "*.sentry.io", - "*.google.com", - "https://stats.data.gouv.fr/", - "https://adservice.google.com" + "https://googleads.g.doubleclick.net", + "https://cdn.jsdelivr.net/", + "https://browser.sentry-cdn.com", + "https://pagead2.googlesyndication.com", + "https://stats.data.gouv.fr/" ], "default-src": [ "'self'" ], "font-src": [ "https://fonts.gstatic.com", - "'self'", + "data:", "https://github.com", - "data:" + "'self'" ], "frame-src": [ + "https://bid.g.doubleclick.net", "stats.data.gouv.fr", "browser.sentry-cdn.com", - "https://tpc.googlesyndication.com", - "'self'", - "https://bid.g.doubleclick.net", - "https://cdn.jsdelivr.net/", "https://tube.nocturlab.fr", - "https://www.youtube-nocookie.com" + "'self'", + "https://www.youtube-nocookie.com", + "https://tpc.googlesyndication.com", + "https://cdn.jsdelivr.net/" ], "img-src": [ - "'self'", "https://jedonnemonavis.numerique.gouv.fr", - "https://www.googletagmanager.com", - "https://googleads.g.doubleclick.net", + "https://www.gstatic.com", "data:", - "https://stats.data.gouv.fr/", + "'self'", "https://www.google.com", - "https://www.google.fr", + "https://adservice.google.com", "415474841.privacysandbox.googleadservices.com", + "https://stats.beta.gouv.fr/", + "https://www.googletagmanager.com", + "https://www.google.fr", + "https://googleads.g.doubleclick.net", "https://www.googleadservices.com", - "https://www.gstatic.com", - "https://adservice.google.com" + "https://stats.data.gouv.fr/" ], "object-src": [ "'none'" @@ -282067,36 +283488,38 @@ ], "script-src": [ "'self'", - "https://browser.sentry-cdn.com", - "https://cdn.jsdelivr.net/", + "https://www.google.com", + "www.pagespeed-mod.com", + "'nonce-xvzne8ygo3u+5a/stfgfta=='", + "https://stats.beta.gouv.fr/", + "https://www.googletagmanager.com/", "sentry.io", - "blob:", "https://googleads.g.doubleclick.net", - "https://www.googletagmanager.com/", - "https://stats.data.gouv.fr/", - "https://www.google.com", "https://www.googleadservices.com", - "'nonce-n+ydv7gcnh9z+xj5gkjpna=='", - "www.pagespeed-mod.com" + "https://cdn.jsdelivr.net/", + "https://browser.sentry-cdn.com", + "blob:", + "https://stats.data.gouv.fr/" ], "script-src-elem": [ "'self'", - "https://browser.sentry-cdn.com", - "https://cdn.jsdelivr.net/", + "https://www.google.com", + "www.pagespeed-mod.com", + "'nonce-xvzne8ygo3u+5a/stfgfta=='", + "https://stats.beta.gouv.fr/", + "https://www.googletagmanager.com/", "sentry.io", - "blob:", "https://googleads.g.doubleclick.net", - "https://www.googletagmanager.com/", - "https://stats.data.gouv.fr/", - "https://www.google.com", "https://www.googleadservices.com", - "'nonce-n+ydv7gcnh9z+xj5gkjpna=='", - "www.pagespeed-mod.com" + "https://cdn.jsdelivr.net/", + "https://browser.sentry-cdn.com", + "blob:", + "https://stats.data.gouv.fr/" ], "style-src": [ - "'self'", + "https://fonts.googleapis.com", "'unsafe-inline'", - "https://fonts.googleapis.com" + "'self'" ] }, "http": true, @@ -282304,15 +283727,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T09:09:27Z", - "next_check_at": "2023-12-17T09:14:26Z", + "last_check_at": "2023-12-24T09:14:11Z", + "next_check_at": "2023-12-24T09:19:10Z", "mute_until": null, "favicon_url": "https://place-des-entreprises.beta.gouv.fr/assets/favicon/favicon-cfcc00edd6aff5a1837afb8588fa6125d593cd9103892cc68992dd15e8e3506b.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T08:54:30Z", + "tested_at": "2023-12-24T08:29:23Z", "expires_at": "2024-03-07T17:18:10Z", "valid": true, "error": null @@ -282321,11 +283744,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 131, - "connection": 119, - "handshake": 126, - "response": 205, - "total": 581 + "namelookup": 195, + "connection": 141, + "handshake": 150, + "response": 216, + "total": 702 } }, "uptimeGrade": "A", @@ -282358,77 +283781,77 @@ "testssl": [ { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282436,7 +283859,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282444,7 +283867,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282452,7 +283875,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -282460,7 +283883,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -282468,7 +283891,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -282476,560 +283899,560 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702803354" + "finding": "1703408659" }, { "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-lqaR07mDya9nPsbBPiO6HQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-lqaR07mDya9nPsbBPiO6HQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-JLDegu2T3QurL6T2wCW38g=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-JLDegu2T3QurL6T2wCW38g=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" }, { "id": "X-XSS-Protection", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-store" }, { "id": "Pragma", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -283037,7 +284460,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -283046,7 +284469,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -283055,7 +284478,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -283064,7 +284487,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -283073,7 +284496,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -283081,7 +284504,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -283090,7 +284513,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -283099,7 +284522,7 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -283108,7 +284531,7 @@ }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -283117,14 +284540,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -283133,7 +284556,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -283142,7 +284565,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -283151,7 +284574,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -283160,7 +284583,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -283169,7 +284592,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -283178,7 +284601,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -283187,7 +284610,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -283196,7 +284619,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -283205,7 +284628,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -283214,392 +284637,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283607,7 +285030,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283615,7 +285038,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283623,7 +285046,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283631,7 +285054,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283639,7 +285062,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283647,560 +285070,560 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702803454" + "finding": "1703408717" }, { "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-F0ZSnc2vARj94yh79VTSxw=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-F0ZSnc2vARj94yh79VTSxw=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-IfrsGfQqHdBpPu2mqHpy/Q=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-IfrsGfQqHdBpPu2mqHpy/Q=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" }, { "id": "X-XSS-Protection", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-store" }, { "id": "Pragma", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -284208,7 +285631,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -284217,7 +285640,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -284226,7 +285649,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -284235,7 +285658,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -284244,7 +285667,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -284252,7 +285675,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -284261,7 +285684,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -284270,7 +285693,7 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -284279,7 +285702,7 @@ }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -284288,14 +285711,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -284304,7 +285727,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -284313,7 +285736,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -284322,7 +285745,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -284331,7 +285754,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284340,7 +285763,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284349,7 +285772,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -284358,7 +285781,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -284367,7 +285790,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -284376,7 +285799,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -284385,392 +285808,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284778,7 +286201,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284786,7 +286209,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284794,7 +286217,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -284802,7 +286225,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -284810,7 +286233,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -284818,560 +286241,560 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702803554" + "finding": "1703408778" }, { "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Ov7TPTzSwGkFFxDJjghXPQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Ov7TPTzSwGkFFxDJjghXPQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-xx/c0vZK9+vVD5mkNimIAQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-xx/c0vZK9+vVD5mkNimIAQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" }, { "id": "X-XSS-Protection", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-store" }, { "id": "Pragma", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -285379,7 +286802,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -285388,7 +286811,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -285397,7 +286820,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -285406,7 +286829,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -285415,7 +286838,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -285423,7 +286846,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -285432,7 +286855,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -285441,7 +286864,7 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -285450,7 +286873,7 @@ }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -285459,14 +286882,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -285475,7 +286898,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -285484,7 +286907,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -285493,7 +286916,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -285502,7 +286925,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -285511,7 +286934,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -285520,7 +286943,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -285529,7 +286952,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -285538,7 +286961,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -285547,7 +286970,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -285556,392 +286979,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -285949,7 +287372,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -285957,7 +287380,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -285965,7 +287388,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -285973,7 +287396,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -285981,7 +287404,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -285989,560 +287412,560 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702803656" + "finding": "1703408839" }, { "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-4vffAcxQcmEy6eT9ZSxzVA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-4vffAcxQcmEy6eT9ZSxzVA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-9Pc2LYQcEuP62PihniUKag=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-9Pc2LYQcEuP62PihniUKag=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" }, { "id": "X-XSS-Protection", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-store" }, { "id": "Pragma", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -286550,7 +287973,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -286559,7 +287982,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -286568,7 +287991,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -286577,7 +288000,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -286586,7 +288009,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -286594,7 +288017,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -286603,7 +288026,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -286612,7 +288035,7 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -286621,7 +288044,7 @@ }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -286630,14 +288053,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -286646,7 +288069,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -286655,7 +288078,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -286664,7 +288087,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -286673,7 +288096,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -286682,7 +288105,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -286691,7 +288114,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -286700,7 +288123,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -286709,7 +288132,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -286718,7 +288141,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -286727,325 +288150,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "407" + "finding": "244" } ], "thirdparties": { @@ -287092,16 +288515,31 @@ }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/pagead/landing?gcs=G10-&gcd=11p1l1l1l5&rnd=1589626557.1702803261&url=https%3A%2F%2Fplace-des-entreprises.beta.gouv.fr%2F&dma=0>m=45be3bt0v9116231455" + "url": "https://pagead2.googlesyndication.com/pagead/landing?gcs=G10-&gcd=11p1l1l1l5&rnd=1980189006.1703408601&url=https%3A%2F%2Fplace-des-entreprises.beta.gouv.fr%2F&dma=0>m=45be3bt0v9116231455" } ], "cookies": [ + { + "name": "_pk_id.80.3b70", + "value": "b5b38b448a8c9bf3.1703408601.", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1737363801, + "size": 42, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, { "name": "_pk_ses.80.3b70", "value": "1", "domain": "place-des-entreprises.beta.gouv.fr", "path": "/", - "expires": 1702805060, + "expires": 1703410401, "size": 16, "httpOnly": false, "secure": true, @@ -287112,11 +288550,26 @@ "sourcePort": 443 }, { - "name": "_pk_id.80.3b70", - "value": "f5d301ebce157d40.1702803261.", + "name": "_pk_ses.74.3b70", + "value": "1", "domain": "place-des-entreprises.beta.gouv.fr", "path": "/", - "expires": 1736758461, + "expires": 1703410401, + "size": 16, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.74.3b70", + "value": "f50e365abaddd8fd.1703408601.", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1737363801, "size": 42, "httpOnly": false, "secure": true, @@ -287128,11 +288581,11 @@ }, { "name": "_PlaceDesEntreprises_session", - "value": "F27A9I3M0AyQv81VkbkEGXq1qNGwn4mNm0e3FdejMM0zF3dVw6AHzLUVxsKjG%2BxgnURmYe6am1rqhNHSEUwb36Qv2xm5wmK%2FZqpjSxZSqke0j6yTkrBg05TAI9L7SaR20cYWKUsMdZTFCp0iuztCVO3Br0y2uj3bIuIWK77wrczcSpf7Ug0mllWjCJFTxmc9cme%2BaA72fDfXmZZWzJPClDzf6GxliQgnV17w5fCrk8r%2FaYzhGQjRS5JcSyxXnAb4nSP%2B5hG6Mt1tjj%2FDZarSKCjzd2QfRxMM5odsg2faopsykxIh--B5G5Z1bCTzEXMtHb--5LtQpCzBZ7woRop0aS3EQA%3D%3D", + "value": "u6crz7caLPMv6NCqucGARS37QMHRE0yKI%2FEJuVn%2B5aLF9qlm4jR1nM170%2FwF3SKeAeTeSnUn7bJRJoog89LLoXj5JsSuzR6zukebZXTERxdHRfRXlxx3kj5xaFFz%2BfWZACFTFMIBAmZvefipZ0Dw%2FbGuhJVUBVSIlB1yPwsE%2BZzUNvPZQCZAxDUQW9v6rqDtJgUIMwjwkt2V670wVpQ6P5HeQG912wXlAS%2B%2Be3tgt1NwgHxqczyoFIKKCJpHiglZFX4p0rpUK%2FAWJ5aD6FEmLji1TQRqEbG8ZXeSP4NrEUvcy8nD--Wlgon45tVM7wUExW--cAXCythShWyEgfnok4pKwg%3D%3D", "domain": "place-des-entreprises.beta.gouv.fr", "path": "/", "expires": -1, - "size": 392, + "size": 398, "httpOnly": true, "secure": true, "session": true, @@ -287145,22 +288598,22 @@ "headers": { "cache-control": "no-store", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-O+W7hwxSzyEU75cyJJDqAQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-O+W7hwxSzyEU75cyJJDqAQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", + "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-mgARooUsLDJpgJvXkMDf5Q=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-mgARooUsLDJpgJvXkMDf5Q=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 08:54:19 GMT", - "etag": "W/\"f586c2a8084cc7ed7d3bccaf44409430\"", + "date": "Sun, 24 Dec 2023 09:03:20 GMT", + "etag": "W/\"19752947775a9df9ddb78301ec206742\"", "expires": "0", - "link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", + "link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", "pragma": "no-cache", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_PlaceDesEntreprises_session=F27A9I3M0AyQv81VkbkEGXq1qNGwn4mNm0e3FdejMM0zF3dVw6AHzLUVxsKjG%2BxgnURmYe6am1rqhNHSEUwb36Qv2xm5wmK%2FZqpjSxZSqke0j6yTkrBg05TAI9L7SaR20cYWKUsMdZTFCp0iuztCVO3Br0y2uj3bIuIWK77wrczcSpf7Ug0mllWjCJFTxmc9cme%2BaA72fDfXmZZWzJPClDzf6GxliQgnV17w5fCrk8r%2FaYzhGQjRS5JcSyxXnAb4nSP%2B5hG6Mt1tjj%2FDZarSKCjzd2QfRxMM5odsg2faopsykxIh--B5G5Z1bCTzEXMtHb--5LtQpCzBZ7woRop0aS3EQA%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "set-cookie": "_PlaceDesEntreprises_session=u6crz7caLPMv6NCqucGARS37QMHRE0yKI%2FEJuVn%2B5aLF9qlm4jR1nM170%2FwF3SKeAeTeSnUn7bJRJoog89LLoXj5JsSuzR6zukebZXTERxdHRfRXlxx3kj5xaFFz%2BfWZACFTFMIBAmZvefipZ0Dw%2FbGuhJVUBVSIlB1yPwsE%2BZzUNvPZQCZAxDUQW9v6rqDtJgUIMwjwkt2V670wVpQ6P5HeQG912wXlAS%2B%2Be3tgt1NwgHxqczyoFIKKCJpHiglZFX4p0rpUK%2FAWJ5aD6FEmLji1TQRqEbG8ZXeSP4NrEUvcy8nD--Wlgon45tVM7wUExW--cAXCythShWyEgfnok4pKwg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", "strict-transport-security": "max-age=31536000\nmax-age=31536000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "09e694e5-4e33-42e5-affb-64df7e7d06a8\n09e694e5-4e33-42e5-affb-64df7e7d06a8", - "x-runtime": "0.069101", + "x-request-id": "69e42fc3-79d1-40df-9674-f37d5737f882\n69e42fc3-79d1-40df-9674-f37d5737f882", + "x-runtime": "0.061566", "x-xss-protection": "0" }, "endpoints": [ @@ -287255,19 +288708,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.201.229", + "ip": "146.75.77.229", "geoip": { "city": { - "geoname_id": 5393015, + "geoname_id": 4887398, "names": { - "de": "Santa Clara", - "en": "Santa Clara", - "es": "Santa Clara", - "fr": "Santa Clara", - "ja": "サンタクララ", - "pt-BR": "Santa Clara", - "ru": "Санта-Клара", - "zh-CN": "圣克拉拉" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -287300,13 +288753,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.3931, - "longitude": -121.962, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "95054" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, @@ -287324,17 +288777,16 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -287342,7 +288794,7 @@ }, { "hostname": "browser.sentry-cdn.com", - "ip": "151.101.130.217", + "ip": "151.101.66.217", "geoip": { "continent": { "code": "NA", @@ -287481,7 +288933,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "142.251.214.136", + "ip": "142.250.191.136", "geoip": { "continent": { "code": "NA", @@ -287535,7 +288987,7 @@ }, { "hostname": "pagead2.googlesyndication.com", - "ip": "142.250.188.2", + "ip": "142.251.32.2", "geoip": { "continent": { "code": "NA", @@ -287766,7 +289218,7 @@ "name": "core-js", "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", "confidence": 100, - "version": "3.33.1", + "version": "3.34.0", "icon": "core-js.png", "website": "https://github.com/zloirock/core-js", "cpe": null, @@ -287873,7 +289325,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 08:53:15", + "@generated": "Sun, 24 Dec 2023 09:02:18", "site": [ { "@name": "https://place-des-entreprises.beta.gouv.fr", @@ -288028,6 +289480,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" }, + { + "name": "Storable but Non-Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" + }, { "name": "User Controllable HTML Element Attribute (Potential XSS)", "riskcode": "0", @@ -288041,58 +289500,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "place-des-entreprises.beta.gouv.fr.", - "matched-at": "place-des-entreprises.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T09:02:47.863078124Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -288108,7 +289532,11 @@ "type": "dns", "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", - "timestamp": "2023-12-17T09:02:47.863335121Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2023-12-24T09:08:48.951907202Z", "matcher-status": true }, { @@ -288148,27 +289576,26 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T09:02:47.8637754Z", + "timestamp": "2023-12-24T09:08:49.027202088Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -288184,11 +289611,7 @@ "type": "dns", "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-17T09:02:48.116925141Z", + "timestamp": "2023-12-24T09:08:49.03318651Z", "matcher-status": true }, { @@ -288226,81 +289649,43 @@ "extracted-results": [ "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T09:02:48.700044708Z", + "timestamp": "2023-12-24T09:08:49.807080122Z", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://place-des-entreprises.beta.gouv.fr", - "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941640941Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "NS Record Detection", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "pdteam" ], "tags": [ - "misconfig", - "headers", - "generic" + "dns", + "ns" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://place-des-entreprises.beta.gouv.fr", - "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941690844Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", + "type": "dns", + "host": "place-des-entreprises.beta.gouv.fr.", + "matched-at": "place-des-entreprises.beta.gouv.fr", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2023-12-24T09:08:50.213487261Z", "matcher-status": true }, { @@ -288331,12 +289716,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941708698Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850558244Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288368,12 +289753,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941722053Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850601935Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288409,8 +289794,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941746729Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850620199Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288446,8 +289831,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941760626Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850636429Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288479,12 +289864,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941774642Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850652309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288516,12 +289901,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.94178991Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850667116Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288557,8 +289942,82 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:00.941804858Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850787872Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://place-des-entreprises.beta.gouv.fr", + "matched-at": "https://place-des-entreprises.beta.gouv.fr", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.850801387Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://place-des-entreprises.beta.gouv.fr", + "matched-at": "https://place-des-entreprises.beta.gouv.fr", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:43.85081391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288585,8 +290044,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/robots.txt", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:17.753385524Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:55.459113929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -288613,11 +290072,49 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/robots.txt", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:17.795326608Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:09:55.47051253Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/robots.txt'", "matcher-status": true }, + { + "template": "http/misconfiguration/missing-sri.yaml", + "template-url": "https://templates.nuclei.sh/public/missing-sri", + "template-id": "missing-sri", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", + "info": { + "name": "Missing Subresource Integrity", + "author": [ + "lucky0x0d", + "pulsesecurity.co.nz" + ], + "tags": [ + "compliance", + "js", + "sri", + "misconfig" + ], + "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://place-des-entreprises.beta.gouv.fr", + "matched-at": "https://place-des-entreprises.beta.gouv.fr/", + "extracted-results": [ + "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.9.7/tarteaucitron.min.js", + "https://browser.sentry-cdn.com/7.35.0/bundle.min.js" + ], + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:10:02.92654169Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: place-des-entreprises.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/'", + "matcher-status": true + }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -288653,8 +290150,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:04:39.873991983Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:10:11.709874506Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: place-des-entreprises.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/'", "matcher-status": true }, @@ -288669,7 +290166,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -288683,8 +290181,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:10:33.780583183Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:15:55.43463771Z", "matcher-status": true }, { @@ -288698,7 +290196,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -288712,8 +290211,8 @@ "extracted-results": [ "place-des-entreprises.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:10:33.780702957Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:15:55.434762753Z", "matcher-status": true }, { @@ -288728,7 +290227,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -288742,8 +290242,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:10:36.274323001Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:15:57.019005713Z", "matcher-status": true }, { @@ -288758,7 +290258,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -288772,8 +290273,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T09:10:36.587059846Z", + "ip": "109.232.236.90", + "timestamp": "2023-12-24T09:15:57.603892137Z", "matcher-status": true } ], @@ -288781,7 +290282,7 @@ { "requestedUrl": "https://place-des-entreprises.beta.gouv.fr/", "finalUrl": "https://place-des-entreprises.beta.gouv.fr/", - "fetchTime": "2023-12-17T08:53:30.120Z", + "fetchTime": "2023-12-24T09:02:32.285Z", "runWarnings": [], "categories": { "performance": { @@ -288844,53 +290345,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4561, + "numericValue": 4532, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3811, - "firstMeaningfulPaint": 3811, - "largestContentfulPaint": 6460, - "interactive": 4561, - "speedIndex": 5176, - "totalBlockingTime": 51, - "maxPotentialFID": 143, - "cumulativeLayoutShift": 0.004426313930087619, - "cumulativeLayoutShiftMainFrame": 0.004426313930087619, - "totalCumulativeLayoutShift": 0.004426313930087619, + "firstContentfulPaint": 3220, + "firstMeaningfulPaint": 3262, + "largestContentfulPaint": 6419, + "interactive": 4532, + "speedIndex": 5200, + "totalBlockingTime": 297, + "maxPotentialFID": 339, + "cumulativeLayoutShift": 0.006246516227722168, + "cumulativeLayoutShiftMainFrame": 0.006246516227722168, + "totalCumulativeLayoutShift": 0.006246516227722168, "observedTimeOrigin": 0, - "observedTimeOriginTs": 286200868, + "observedTimeOriginTs": 220494699, "observedNavigationStart": 0, - "observedNavigationStartTs": 286200868, - "observedFirstPaint": 1290, - "observedFirstPaintTs": 287490888, - "observedFirstContentfulPaint": 1290, - "observedFirstContentfulPaintTs": 287490888, - "observedFirstContentfulPaintAllFrames": 1290, - "observedFirstContentfulPaintAllFramesTs": 287490888, - "observedFirstMeaningfulPaint": 1290, - "observedFirstMeaningfulPaintTs": 287490888, - "observedLargestContentfulPaint": 1909, - "observedLargestContentfulPaintTs": 288110098, - "observedLargestContentfulPaintAllFrames": 1909, - "observedLargestContentfulPaintAllFramesTs": 288110098, - "observedTraceEnd": 4173, - "observedTraceEndTs": 290373721, - "observedLoad": 1863, - "observedLoadTs": 288063856, - "observedDomContentLoaded": 1288, - "observedDomContentLoadedTs": 287489299, - "observedCumulativeLayoutShift": 0.004426313930087619, - "observedCumulativeLayoutShiftMainFrame": 0.004426313930087619, - "observedTotalCumulativeLayoutShift": 0.004426313930087619, - "observedFirstVisualChange": 1287, - "observedFirstVisualChangeTs": 287487868, - "observedLastVisualChange": 1920, - "observedLastVisualChangeTs": 288120868, - "observedSpeedIndex": 1702, - "observedSpeedIndexTs": 287903150 + "observedNavigationStartTs": 220494699, + "observedFirstPaint": 1407, + "observedFirstPaintTs": 221901852, + "observedFirstContentfulPaint": 1407, + "observedFirstContentfulPaintTs": 221901852, + "observedFirstContentfulPaintAllFrames": 1407, + "observedFirstContentfulPaintAllFramesTs": 221901852, + "observedFirstMeaningfulPaint": 1407, + "observedFirstMeaningfulPaintTs": 221901852, + "observedLargestContentfulPaint": 2135, + "observedLargestContentfulPaintTs": 222629728, + "observedLargestContentfulPaintAllFrames": 2135, + "observedLargestContentfulPaintAllFramesTs": 222629728, + "observedTraceEnd": 4367, + "observedTraceEndTs": 224862154, + "observedLoad": 1939, + "observedLoadTs": 222433820, + "observedDomContentLoaded": 1349, + "observedDomContentLoadedTs": 221844063, + "observedCumulativeLayoutShift": 0.006246516227722168, + "observedCumulativeLayoutShiftMainFrame": 0.006246516227722168, + "observedTotalCumulativeLayoutShift": 0.006246516227722168, + "observedFirstVisualChange": 1413, + "observedFirstVisualChangeTs": 221907699, + "observedLastVisualChange": 2146, + "observedLastVisualChangeTs": 222640699, + "observedSpeedIndex": 1892, + "observedSpeedIndexTs": 222386938 }, { "lcpInvalidated": false @@ -288908,23 +290409,23 @@ "type": "debugdata", "items": [ { - "numRequests": 44, + "numRequests": 45, "numScripts": 10, "numStylesheets": 2, "numFonts": 4, - "numTasks": 805, - "numTasksOver10ms": 6, + "numTasks": 824, + "numTasksOver10ms": 9, "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 8186823.027552601, - "maxRtt": 150.068, - "maxServerLatency": 46.946999999999996, - "totalByteWeight": 778222, - "totalTaskTime": 309.9829999999989, - "mainDocumentTransferSize": 11408 + "rtt": 1.487000000000009, + "throughput": 10298754.524912678, + "maxRtt": 106.13700000000001, + "maxServerLatency": 14.305000000000003, + "totalByteWeight": 823276, + "totalTaskTime": 398.5869999999993, + "mainDocumentTransferSize": 11536 } ] } @@ -289036,7 +290537,7 @@ "testsslExpireDate": "2024-03-07T17:18:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", - "cookiesCount": 3, + "cookiesCount": 5, "trackersGrade": "C", "trackersCount": 7, "lighthouse_performance": 1, @@ -289069,27 +290570,27 @@ "http": { "url": "https://plusfraichemaville.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:48:14 GMT", + "end_time": "Sun, 24 Dec 2023 01:43:28 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Cache-Control": "public, max-age=0, must-revalidate", "Content-Encoding": "gzip", - "Content-Length": "20082", + "Content-Length": "20076", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 01:48:13 GMT", - "Etag": "\"c5002d4f38af53c808184dfb10368ea1\"", - "Last-Modified": "Thu, 07 Dec 2023 09:53:43 GMT", + "Date": "Sun, 24 Dec 2023 01:43:26 GMT", + "Etag": "\"0019c9215f7d382f0e889328f86e946e\"", + "Last-Modified": "Wed, 20 Dec 2023 15:04:42 GMT", "Link": "; rel=\"preconnect\", ; rel=\"preconnect\"; crossorigin=\"\"", - "Server": "Framer/72d08bf", - "Server-Timing": "region;desc=\"us-west-2\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"72d08bf\"", + "Server": "Framer/1921063", + "Server-Timing": "region;desc=\"us-west-2\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"1921063\"", "Strict-Transport-Security": "max-age=31536000", "Vary": "Accept-Encoding" }, - "scan_id": 45536987, + "scan_id": 45752391, "score": 35, - "start_time": "Sun, 17 Dec 2023 01:45:18 GMT", + "start_time": "Sun, 24 Dec 2023 01:43:26 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -289218,7 +290719,7 @@ "crossorigin": null, "integrity": null }, - "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.K4HLJQM7.mjs": { + "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.NJZH7WDH.mjs": { "crossorigin": null, "integrity": null }, @@ -289643,7 +291144,7 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "OK", - "finding": "83 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", @@ -289846,14 +291347,14 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "INFO", - "finding": "1702803746" + "finding": "1703408875" }, { "id": "HSTS_time", @@ -289888,7 +291389,7 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "INFO", - "finding": "Framer/72d08bfServer-Timing: region;desc='us-east-1', cache;desc='cached', ssg-status;desc='optimized', version;desc='72d08bf'" + "finding": "Framer/1921063Server-Timing: region;desc='us-east-1', cache;desc='cached', ssg-status;desc='optimized', version;desc='1921063'" }, { "id": "banner_application", @@ -290758,7 +292259,7 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "OK", - "finding": "83 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", @@ -290968,7 +292469,7 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "INFO", - "finding": "1702803785" + "finding": "1703408914" }, { "id": "HSTS_time", @@ -291003,7 +292504,7 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "INFO", - "finding": "Framer/72d08bfServer-Timing: region;desc='us-east-1', cache;desc='cached', ssg-status;desc='optimized', version;desc='72d08bf'" + "finding": "Framer/1921063Server-Timing: region;desc='us-east-1', cache;desc='cached', ssg-status;desc='optimized', version;desc='1921063'" }, { "id": "banner_application", @@ -291531,7 +293032,7 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "INFO", - "finding": "80" + "finding": "78" } ], "thirdparties": { @@ -291558,11 +293059,11 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-TYO75ABL.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-33U4G4XX.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ORB6DMLE.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-32XY5EBB.mjs" }, { "type": "unknown", @@ -291570,31 +293071,31 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/SNHcbWKI_89OJkOjQ21s2SEPGDlmx22sP3SfXDVojRA.3ET3X3QS.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/Sdv_bJ_L4LJ-pjYTmg4DWb8OhzWIgQ_rJes_SpsGGDE.JURQBMW3.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-JG5TTAQX.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-WXYD37WS.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-NDB2COON.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-5PAJXYRL.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-FU2THMXP.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-PPGZR3XU.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-3HCQZVJE.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-XD26AGYF.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-SU4LO4GK.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ON2MHPHA.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-TRAFVTPD.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CZN7TJBE.mjs" }, { "type": "unknown", @@ -291602,27 +293103,27 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CZAHSIUL.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-K3DM5GVC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-JNFREO7Q.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-WNUNCA5Q.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-C6P7JGC7.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-MY46IZO4.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-UGPGQPCT.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-SCJLTW3K.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-U3TUINNF.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-NDYCBOVH.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-EDNJW34D.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ZVIABW3T.mjs" }, { "type": "unknown", @@ -291630,7 +293131,7 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.K4HLJQM7.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.NJZH7WDH.mjs" }, { "type": "unknown", @@ -291698,7 +293199,7 @@ }, { "type": "unknown", - "url": "https://app.framerstatic.com/Inter-Regular.latin-JLQMKCHE.woff2" + "url": "https://events.framer.com/anonymous" }, { "type": "unknown", @@ -291706,87 +293207,87 @@ }, { "type": "unknown", - "url": "https://events.framer.com/anonymous" + "url": "https://app.framerstatic.com/Inter-Regular.latin-JLQMKCHE.woff2" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/h_9NjPQ46ALJcXWvRUrBmg8z76H-5Q7C3KZnSirKRSc.ATZ6JVTD.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/h_9NjPQ46ALJcXWvRUrBmg8z76H-5Q7C3KZnSirKRSc.ZJLSITUP.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/H5cxoVEfL75blCROSzvCnEXeMOpTOLu9A095BZNeu3k.DOV6CB5A.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/H5cxoVEfL75blCROSzvCnEXeMOpTOLu9A095BZNeu3k.LCBZ2ZTW.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/JJChJH3HuZe0Z_yxninmKSt-7zKu0DzvOyopk8p-YIE.KHZRPHKK.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/mxUhBq3YTFCd19aLenL9-udeg7SsM5LM9WCtlWQbkGg.CSX7KUUW.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/jh4F148_kc8QQZSMzmPRa7Yb1k_nGBvlR2kPmXRaz-g.MRG6UDRW.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/jh4F148_kc8QQZSMzmPRa7Yb1k_nGBvlR2kPmXRaz-g.UAEVIZLU.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/w6SLbsd35ZivnD80KcWO2Mrfeg66gMZ60PXUQ3Gt07M.HY4UWFOW.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QDSRPQGZ.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QDSRPQGZ.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-NZDE5KFM.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-6NXXWXLP.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BDCHPJIB.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BDCHPJIB.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-DFV5Z3KF.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-35AATOVJ.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/HPeMjQgXNjO7_FZqv70P_3Q6vTtuCur5dDy-oeCf-kQ.E4HOE2CU.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-3ST7MB3X.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-Y6JLOGWR.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-SAFUA77X.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-LJRGMNYA.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ET52QJO5.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-J5XTIRNC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-I66UFB66.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-7HQHEOHU.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-7LNDW5E2.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-7JJRXPBX.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-MPVWXCX2.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-XSJ7AI4O.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-GNVDTK22.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-M7ZXM23U.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-U3ETPXUZ.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-2KBTTETW.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CYGPOAYN.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-3LCAVLJK.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-OO3P6A5P.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-EEEPCUB7.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-6SBQSVKZ.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-MGVLHF5X.mjs" }, { "type": "unknown", @@ -291794,29 +293295,29 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-PGGV67DG.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-62ZPG3IF.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-DAIFIOGG.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-5JHC4M25.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-PF7AHE2P.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-74O55326.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-6MX7NEOS.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-EKTFSZB5.mjs" } ], "cookies": [ { - "name": "_pk_ses.243.1db9", + "name": "_pk_ses.81.1db9", "value": "1", "domain": "plusfraichemaville.fr", "path": "/", - "expires": 1702805514, - "size": 17, + "expires": 1703410643, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -291826,12 +293327,12 @@ "sourcePort": 443 }, { - "name": "_pk_id.243.1db9", - "value": "15a2f243b7336d34.1702803714.", + "name": "_pk_id.81.1db9", + "value": "7e565aebdcbdf90e.1703408843.", "domain": "plusfraichemaville.fr", "path": "/", - "expires": 1736758914, - "size": 43, + "expires": 1737364043, + "size": 42, "httpOnly": false, "secure": false, "session": false, @@ -291844,21 +293345,21 @@ "headers": { "cache-control": "public, max-age=0, must-revalidate", "content-encoding": "br", - "content-length": "16960", + "content-length": "16964", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 09:01:53 GMT", - "etag": "\"c5002d4f38af53c808184dfb10368ea1\"", - "last-modified": "Thu, 07 Dec 2023 09:53:43 GMT", + "date": "Sun, 24 Dec 2023 09:07:22 GMT", + "etag": "\"0019c9215f7d382f0e889328f86e946e\"", + "last-modified": "Wed, 20 Dec 2023 15:04:42 GMT", "link": "; rel=\"preconnect\", ; rel=\"preconnect\"; crossorigin=\"\"", - "server": "Framer/72d08bf", - "server-timing": "region;desc=\"us-east-1\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"72d08bf\"", + "server": "Framer/1921063", + "server-timing": "region;desc=\"us-east-1\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"1921063\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding" }, "endpoints": [ { "hostname": "plusfraichemaville.fr", - "ip": "52.223.52.2", + "ip": "35.71.142.77", "geoip": { "continent": { "code": "NA", @@ -292007,7 +293508,7 @@ }, { "hostname": "framerusercontent.com", - "ip": "108.138.106.28", + "ip": "18.165.83.69", "geoip": { "continent": { "code": "NA", @@ -292061,7 +293562,7 @@ }, { "hostname": "events.framer.com", - "ip": "13.225.63.112", + "ip": "3.162.125.21", "geoip": { "continent": { "code": "NA", @@ -292115,7 +293616,7 @@ }, { "hostname": "static.hotjar.com", - "ip": "18.160.41.112", + "ip": "52.85.254.126", "geoip": { "continent": { "code": "NA", @@ -292169,7 +293670,7 @@ }, { "hostname": "app.framerstatic.com", - "ip": "18.67.65.26", + "ip": "18.67.65.90", "geoip": { "continent": { "code": "NA", @@ -292396,7 +293897,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:01:15", + "@generated": "Sun, 24 Dec 2023 09:06:43", "site": [ { "@name": "https://plusfraichemaville.fr", @@ -292560,7 +294061,7 @@ "type": "dns", "host": "plusfraichemaville.fr.", "matched-at": "plusfraichemaville.fr", - "timestamp": "2023-12-17T09:04:02.437334861Z", + "timestamp": "2023-12-24T09:09:33.669680336Z", "matcher-status": true }, { @@ -292596,7 +294097,7 @@ "ns81.domaincontrol.com.", "ns82.domaincontrol.com." ], - "timestamp": "2023-12-17T09:04:03.282296236Z", + "timestamp": "2023-12-24T09:09:33.738360899Z", "matcher-status": true }, { @@ -292632,7 +294133,7 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410103087Z", + "timestamp": "2023-12-24T09:10:03.774277435Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292664,12 +294165,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410154433Z", + "timestamp": "2023-12-24T09:10:03.77488142Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292701,12 +294202,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410170923Z", + "timestamp": "2023-12-24T09:10:03.775283449Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292738,12 +294239,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410184809Z", + "timestamp": "2023-12-24T09:10:03.775685037Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292775,12 +294276,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410197092Z", + "timestamp": "2023-12-24T09:10:03.776103988Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292812,12 +294313,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410209364Z", + "timestamp": "2023-12-24T09:10:03.776531374Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292854,7 +294355,7 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410224703Z", + "timestamp": "2023-12-24T09:10:03.777024402Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292886,12 +294387,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.41023929Z", + "timestamp": "2023-12-24T09:10:03.777439265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292923,12 +294424,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-frame-options", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410252464Z", + "timestamp": "2023-12-24T09:10:03.777819674Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292960,45 +294461,15 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:35.410264687Z", + "timestamp": "2023-12-24T09:10:03.778189342Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, - { - "template": "http/exposures/configs/editor-exposure.yaml", - "template-url": "https://templates.nuclei.sh/public/editor-exposure", - "template-id": "editor-exposure", - "template-path": "/home/runner/nuclei-templates/http/exposures/configs/editor-exposure.yaml", - "info": { - "name": "Editor Configuration File - Detect", - "author": [ - "dhiyaneshdk" - ], - "tags": [ - "config", - "exposure" - ], - "description": "Editor configuration file was detected.", - "severity": "low", - "metadata": { - "max-request": 1, - "shodan-query": "html:\"editorconfig\"", - "verified": true - } - }, - "type": "http", - "host": "https://plusfraichemaville.fr", - "matched-at": "https://plusfraichemaville.fr/.editorconfig", - "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:36.495826099Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/.editorconfig'", - "matcher-status": true - }, { "template": "http/technologies/metatag-cms.yaml", "template-url": "https://templates.nuclei.sh/public/metatag-cms", @@ -293026,10 +294497,10 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "extracted-results": [ - "Framer 47124a4" + "Framer 1cc6588" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:38.767205512Z", + "timestamp": "2023-12-24T09:10:07.073268282Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293057,7 +294528,7 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr/robots.txt", "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:41.516614277Z", + "timestamp": "2023-12-24T09:10:09.79825366Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/robots.txt'", "matcher-status": true }, @@ -293095,15 +294566,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "active" + "2022-12-17T18:53:06.153009Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129535322Z", + "timestamp": "2023-12-24T09:10:10.574499631Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293141,15 +294612,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2024-12-12T18:46:34.678623Z" + "Penelope Liot" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129586187Z", + "timestamp": "2023-12-24T09:10:10.57454186Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293187,18 +294658,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "nameServers", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "39 hameau Boileau, 39 hameau Boileau", - "Paris", - "75016", - "FR" + "ns82.domaincontrol.com", + "ns81.domaincontrol.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129602407Z", + "timestamp": "2023-12-24T09:10:10.574552049Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293236,15 +294705,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrationDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "FR" + "2022-12-12T18:46:34.698709Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129642652Z", + "timestamp": "2023-12-24T09:10:10.574561337Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293282,16 +294751,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "expirationDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "ns81.domaincontrol.com", - "ns82.domaincontrol.com" + "2024-12-12T18:46:34.678623Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129664953Z", + "timestamp": "2023-12-24T09:10:10.574572557Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293329,15 +294797,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantName", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2022-12-12T18:46:34.698709Z" + "beta.gouv" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129682666Z", + "timestamp": "2023-12-24T09:10:10.574588407Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293375,15 +294843,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantEmail", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2022-12-17T18:53:06.153009Z" + "penelope.liot@beta.gouv.fr" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129701871Z", + "timestamp": "2023-12-24T09:10:10.574602944Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293421,15 +294889,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantPhone", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "beta.gouv" + "+33.0677910405" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129744592Z", + "timestamp": "2023-12-24T09:10:10.574613383Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293467,15 +294935,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantAddress", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "Penelope Liot" + "Paris", + "75016", + "FR", + "39 hameau Boileau, 39 hameau Boileau" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129764559Z", + "timestamp": "2023-12-24T09:10:10.574623021Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293513,15 +294984,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantCountry", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "penelope.liot@beta.gouv.fr" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129794985Z", + "timestamp": "2023-12-24T09:10:10.574644011Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293559,15 +295030,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "secureDNS", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "+33.0677910405" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129827636Z", + "timestamp": "2023-12-24T09:10:10.574658317Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293605,15 +295076,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "status", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "false" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T09:04:42.129848986Z", + "timestamp": "2023-12-24T09:10:10.574679437Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293647,12 +295118,12 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr/", "extracted-results": [ - "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.K4HLJQM7.mjs", "https://tarteaucitron.io/load.js?domain=plusfraichemaville.fr&uuid=fa6b8234bcd4e90e59acb03bba538bf06d50a4e9", - "https://events.framer.com/script" + "https://events.framer.com/script", + "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.NJZH7WDH.mjs" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:04:44.482000309Z", + "timestamp": "2023-12-24T09:10:13.678664928Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: plusfraichemaville.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/'", "matcher-status": true }, @@ -293667,7 +295138,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -293682,7 +295154,7 @@ "Let's Encrypt" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:07:42.599263253Z", + "timestamp": "2023-12-24T09:13:01.793685346Z", "matcher-status": true }, { @@ -293696,7 +295168,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -293711,7 +295184,7 @@ "plusfraichemaville.fr" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:07:42.599395848Z", + "timestamp": "2023-12-24T09:13:01.793819956Z", "matcher-status": true }, { @@ -293726,7 +295199,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -293741,7 +295215,7 @@ "tls12" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:07:42.667571367Z", + "timestamp": "2023-12-24T09:13:01.832884671Z", "matcher-status": true }, { @@ -293756,7 +295230,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -293771,7 +295246,7 @@ "tls13" ], "ip": "52.223.52.2", - "timestamp": "2023-12-17T09:07:42.704266573Z", + "timestamp": "2023-12-24T09:13:01.848382851Z", "matcher-status": true } ], @@ -293779,7 +295254,7 @@ { "requestedUrl": "https://plusfraichemaville.fr/", "finalUrl": "https://plusfraichemaville.fr/", - "fetchTime": "2023-12-17T09:01:29.064Z", + "fetchTime": "2023-12-24T09:06:57.678Z", "runWarnings": [], "categories": { "performance": { @@ -293790,7 +295265,7 @@ "snapshot" ], "id": "performance", - "score": 0.2991340637207031 + "score": 0.29084110260009766 }, "accessibility": { "title": "Accessibility", @@ -293842,53 +295317,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3842, + "numericValue": 6111, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3263, - "firstMeaningfulPaint": 3263, - "largestContentfulPaint": 5273, - "interactive": 3842, - "speedIndex": 3353, - "totalBlockingTime": 300, - "maxPotentialFID": 352, + "firstContentfulPaint": 3149, + "firstMeaningfulPaint": 3149, + "largestContentfulPaint": 5148, + "interactive": 6111, + "speedIndex": 3434, + "totalBlockingTime": 898, + "maxPotentialFID": 617, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 349826099, + "observedTimeOriginTs": 214681593, "observedNavigationStart": 0, - "observedNavigationStartTs": 349826099, - "observedFirstPaint": 381, - "observedFirstPaintTs": 350207292, - "observedFirstContentfulPaint": 381, - "observedFirstContentfulPaintTs": 350207292, - "observedFirstContentfulPaintAllFrames": 381, - "observedFirstContentfulPaintAllFramesTs": 350207292, - "observedFirstMeaningfulPaint": 381, - "observedFirstMeaningfulPaintTs": 350207292, - "observedLargestContentfulPaint": 381, - "observedLargestContentfulPaintTs": 350207292, - "observedLargestContentfulPaintAllFrames": 381, - "observedLargestContentfulPaintAllFramesTs": 350207292, - "observedTraceEnd": 3483, - "observedTraceEndTs": 353309062, - "observedLoad": 754, - "observedLoadTs": 350580479, - "observedDomContentLoaded": 404, - "observedDomContentLoadedTs": 350230310, + "observedNavigationStartTs": 214681593, + "observedFirstPaint": 377, + "observedFirstPaintTs": 215058135, + "observedFirstContentfulPaint": 377, + "observedFirstContentfulPaintTs": 215058135, + "observedFirstContentfulPaintAllFrames": 377, + "observedFirstContentfulPaintAllFramesTs": 215058135, + "observedFirstMeaningfulPaint": 377, + "observedFirstMeaningfulPaintTs": 215058135, + "observedLargestContentfulPaint": 377, + "observedLargestContentfulPaintTs": 215058135, + "observedLargestContentfulPaintAllFrames": 377, + "observedLargestContentfulPaintAllFramesTs": 215058135, + "observedTraceEnd": 3976, + "observedTraceEndTs": 218657128, + "observedLoad": 1667, + "observedLoadTs": 216348544, + "observedDomContentLoaded": 376, + "observedDomContentLoadedTs": 215058063, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, "observedFirstVisualChange": 376, - "observedFirstVisualChangeTs": 350202099, - "observedLastVisualChange": 726, - "observedLastVisualChangeTs": 350552099, - "observedSpeedIndex": 387, - "observedSpeedIndexTs": 350213324 + "observedFirstVisualChangeTs": 215057593, + "observedLastVisualChange": 426, + "observedLastVisualChangeTs": 215107593, + "observedSpeedIndex": 378, + "observedSpeedIndexTs": 215059564 }, { "lcpInvalidated": false @@ -293910,19 +295385,19 @@ "numScripts": 50, "numStylesheets": 0, "numFonts": 5, - "numTasks": 1090, - "numTasksOver10ms": 8, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 1342, + "numTasksOver10ms": 11, + "numTasksOver25ms": 4, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.241, - "throughput": 70666229.48612842, - "maxRtt": 87.842, - "maxServerLatency": 75.03200000000001, - "totalByteWeight": 2101692, - "totalTaskTime": 536.6419999999991, - "mainDocumentTransferSize": 17355 + "rtt": 1.5570000000000004, + "throughput": 64212023.23213039, + "maxRtt": 233.271, + "maxServerLatency": 188.5240000000001, + "totalByteWeight": 2145171, + "totalTaskTime": 869.837999999998, + "mainDocumentTransferSize": 17358 } ] } @@ -293983,7 +295458,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 67, - "lighthouse_performance": 0.2991340637207031, + "lighthouse_performance": 0.29084110260009766, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -294019,7 +295494,7 @@ "http": { "url": "https://mission-transition-ecologique.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:02:17 GMT", + "end_time": "Sun, 24 Dec 2023 02:01:11 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -294027,17 +295502,17 @@ "Access-Control-Allow-Origin": "*", "Cache-Control": "no-cache", "Connection": "keep-alive", - "Content-Length": "805", + "Content-Length": "501", "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:02:16 GMT", - "ETag": "W/\"805-1702309733000\"", - "Last-Modified": "Mon, 11 Dec 2023 15:48:53 GMT", + "Date": "Sun, 24 Dec 2023 02:01:10 GMT", + "ETag": "W/\"501-1703158017000\"", + "Last-Modified": "Thu, 21 Dec 2023 11:26:57 GMT", "Strict-Transport-Security": "max-age=31536000", - "X-Request-ID": "2e8b05de-e1ca-44e4-9d6a-2bc8076facd3" + "X-Request-ID": "7d4d72a6-b27d-428d-bb0c-8ba88415bacd" }, - "scan_id": 45537240, + "scan_id": 45752650, "score": 40, - "start_time": "Sun, 17 Dec 2023 02:02:13 GMT", + "start_time": "Sun, 24 Dec 2023 02:01:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -294231,77 +295706,77 @@ "testssl": [ { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294309,7 +295784,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294317,7 +295792,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294325,7 +295800,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294333,7 +295808,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294341,7 +295816,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294349,504 +295824,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702804064" + "finding": "1703409625" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -294854,7 +296329,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -294863,7 +296338,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -294872,7 +296347,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -294881,7 +296356,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -294890,7 +296365,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -294898,7 +296373,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -294907,7 +296382,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -294916,7 +296391,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -294925,7 +296400,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -294934,14 +296409,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -294950,7 +296425,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -294959,7 +296434,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -294968,7 +296443,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -294977,7 +296452,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -294986,7 +296461,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -294995,7 +296470,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -295004,7 +296479,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -295013,7 +296488,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -295022,7 +296497,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -295031,392 +296506,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295424,7 +296899,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295432,7 +296907,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295440,7 +296915,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295448,7 +296923,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295456,7 +296931,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295464,504 +296939,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702804115" + "finding": "1703409685" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -295969,7 +297444,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -295978,7 +297453,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -295987,7 +297462,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -295996,7 +297471,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -296005,7 +297480,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -296013,7 +297488,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -296022,7 +297497,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -296031,7 +297506,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -296040,7 +297515,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -296049,14 +297524,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -296065,7 +297540,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -296074,7 +297549,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -296083,7 +297558,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -296092,7 +297567,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296101,7 +297576,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296110,7 +297585,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -296119,7 +297594,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -296128,7 +297603,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -296137,7 +297612,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -296146,315 +297621,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" @@ -296659,7 +298134,7 @@ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -296806,7 +298281,7 @@ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "59 >= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", @@ -297009,7 +298484,7 @@ "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702804168" + "finding": "1703409742" }, { "id": "HSTS_time", @@ -297576,77 +299051,77 @@ }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297654,7 +299129,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297662,7 +299137,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297670,7 +299145,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297678,7 +299153,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297686,7 +299161,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297694,504 +299169,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702804220" + "finding": "1703409801" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -298199,7 +299674,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -298208,7 +299683,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -298217,7 +299692,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -298226,7 +299701,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -298235,7 +299710,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -298243,7 +299718,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -298252,7 +299727,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -298261,7 +299736,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -298270,7 +299745,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -298279,14 +299754,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -298295,7 +299770,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -298304,7 +299779,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -298313,7 +299788,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -298322,7 +299797,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298331,7 +299806,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298340,7 +299815,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -298349,7 +299824,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -298358,7 +299833,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -298367,7 +299842,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -298376,325 +299851,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "211" + "finding": "238" } ], "thirdparties": { @@ -298704,63 +300179,23 @@ "url": "https://tee-frontend.osc-fr1.scalingo.io//images/logos/mission-transition-logo-alone.png" } ], - "cookies": [ - { - "name": "_pk_ses.23.0a23", - "value": "1", - "domain": "mission-transition-ecologique.beta.gouv.fr", - "path": "/", - "expires": 1702805803, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.23.0a23", - "value": "f1b4a67a2d361ef3.1702804004.", - "domain": "mission-transition-ecologique.beta.gouv.fr", - "path": "/", - "expires": 1736500004, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], + "cookies": [], "headers": { "access-control-allow-origin": "*", "cache-control": "no-cache", - "content-length": "805", + "content-length": "501", "content-type": "text/html;charset=utf-8", - "date": "Sun, 17 Dec 2023 09:06:42 GMT", - "etag": "W/\"805-1702309733000\"", - "last-modified": "Mon, 11 Dec 2023 15:48:53 GMT", + "date": "Sun, 24 Dec 2023 09:19:17 GMT", + "etag": "W/\"501-1703158017000\"", + "last-modified": "Thu, 21 Dec 2023 11:26:57 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "814d00a3-433d-4959-a2d1-4009b0d65249" + "x-request-id": "485c324c-eadc-433d-8ff3-4ca6596c97b4" }, "endpoints": [ { "hostname": "mission-transition-ecologique.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "148.253.75.120", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -298792,13 +300227,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -298813,33 +300245,12 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { "hostname": "tee-frontend.osc-fr1.scalingo.io", - "ip": "148.253.75.120", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -298920,24 +300331,6 @@ ], "rootPath": true }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, { "slug": "ovhcloud", "name": "OVHcloud", @@ -298984,7 +300377,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:05:45", + "@generated": "Sun, 24 Dec 2023 09:18:20", "site": [ { "@name": "https://mission-transition-ecologique.beta.gouv.fr", @@ -299117,22 +300510,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -299149,9 +300543,11 @@ "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:mx.ovh.com -all\"" + "100 mx3.mail.ovh.net.", + "5 mx2.mail.ovh.net.", + "1 mx1.mail.ovh.net." ], - "timestamp": "2023-12-17T09:11:41.240263811Z", + "timestamp": "2023-12-24T09:24:48.818603826Z", "matcher-status": true }, { @@ -299186,28 +300582,24 @@ "type": "dns", "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", - "timestamp": "2023-12-17T09:11:41.241417413Z", + "timestamp": "2023-12-24T09:24:48.854259705Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -299223,28 +300615,30 @@ "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", "extracted-results": [ - "5 mx2.mail.ovh.net.", - "100 mx3.mail.ovh.net.", - "1 mx1.mail.ovh.net." + "ns102.ovh.net.", + "dns102.ovh.net." ], - "timestamp": "2023-12-17T09:11:41.243734368Z", + "timestamp": "2023-12-24T09:24:49.007200661Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -299260,10 +300654,9 @@ "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", "extracted-results": [ - "ns102.ovh.net.", - "dns102.ovh.net." + "\"v=spf1 include:mx.ovh.com -all\"" ], - "timestamp": "2023-12-17T09:11:41.246983568Z", + "timestamp": "2023-12-24T09:24:49.989042838Z", "matcher-status": true }, { @@ -299294,12 +300687,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.307961659Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499102546Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299331,12 +300724,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.3080108Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499149723Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299368,12 +300761,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308026129Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499165463Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299405,12 +300798,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308038622Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499179539Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299442,12 +300835,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308052177Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.49930419Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299479,12 +300872,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308099395Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499323847Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299516,12 +300909,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308114754Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499341139Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299553,12 +300946,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308127678Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499357039Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299590,12 +300983,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308140502Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499373119Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299627,15 +301020,43 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:12:24.308154488Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:39.499388207Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, + { + "template": "http/miscellaneous/robots-txt-endpoint.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", + "template-id": "robots-txt-endpoint", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "info": { + "name": "robots.txt endpoint prober", + "author": [ + "caspergn", + "pdteam" + ], + "tags": [ + "misc", + "generic" + ], + "severity": "info", + "metadata": { + "max-request": 2 + } + }, + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr/robots.txt", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:25:50.904234667Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/robots.txt'", + "matcher-status": true + }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -299647,7 +301068,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -299661,8 +301083,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:18:25.005657696Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:31:48.973091864Z", "matcher-status": true }, { @@ -299676,7 +301098,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -299690,8 +301113,8 @@ "extracted-results": [ "mission-transition-ecologique.beta.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:18:25.005769624Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:31:48.973196799Z", "matcher-status": true }, { @@ -299706,7 +301129,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -299720,8 +301144,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:18:26.511030389Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:31:50.715964418Z", "matcher-status": true }, { @@ -299736,7 +301160,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -299750,8 +301175,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2023-12-17T09:18:26.698051875Z", + "ip": "109.232.233.130", + "timestamp": "2023-12-24T09:31:50.96616235Z", "matcher-status": true } ], @@ -299759,7 +301184,7 @@ { "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/", "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/", - "fetchTime": "2023-12-17T09:05:59.684Z", + "fetchTime": "2023-12-24T09:18:34.328Z", "runWarnings": [], "categories": { "performance": { @@ -299770,7 +301195,7 @@ "snapshot" ], "id": "performance", - "score": 0.5 + "score": 0.9510311126708985 }, "accessibility": { "title": "Accessibility", @@ -299822,53 +301247,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 26089, + "numericValue": 4991, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 23855, - "firstMeaningfulPaint": 24067, - "largestContentfulPaint": 24530, - "interactive": 26089, - "speedIndex": 23855, - "totalBlockingTime": 413, - "maxPotentialFID": 423, - "cumulativeLayoutShift": 0.2986744062635634, - "cumulativeLayoutShiftMainFrame": 0.2986744062635634, - "totalCumulativeLayoutShift": 0.2986744062635634, + "firstContentfulPaint": 4668, + "firstMeaningfulPaint": 4755, + "largestContentfulPaint": 5418, + "interactive": 4991, + "speedIndex": 4668, + "totalBlockingTime": 62, + "maxPotentialFID": 173, + "cumulativeLayoutShift": 0.29474678039550783, + "cumulativeLayoutShiftMainFrame": 0.29474678039550783, + "totalCumulativeLayoutShift": 0.29474678039550783, "observedTimeOrigin": 0, - "observedTimeOriginTs": 213255593, + "observedTimeOriginTs": 185633695, "observedNavigationStart": 0, - "observedNavigationStartTs": 213255593, - "observedFirstPaint": 1370, - "observedFirstPaintTs": 214625524, - "observedFirstContentfulPaint": 1370, - "observedFirstContentfulPaintTs": 214625524, - "observedFirstContentfulPaintAllFrames": 1370, - "observedFirstContentfulPaintAllFramesTs": 214625524, - "observedFirstMeaningfulPaint": 1370, - "observedFirstMeaningfulPaintTs": 214625524, - "observedLargestContentfulPaint": 1460, - "observedLargestContentfulPaintTs": 214715856, - "observedLargestContentfulPaintAllFrames": 1460, - "observedLargestContentfulPaintAllFramesTs": 214715856, - "observedTraceEnd": 4145, - "observedTraceEndTs": 217400126, - "observedLoad": 1834, - "observedLoadTs": 215089486, - "observedDomContentLoaded": 1360, - "observedDomContentLoadedTs": 214615764, - "observedCumulativeLayoutShift": 0.2986744062635634, - "observedCumulativeLayoutShiftMainFrame": 0.2986744062635634, - "observedTotalCumulativeLayoutShift": 0.2986744062635634, - "observedFirstVisualChange": 1369, - "observedFirstVisualChangeTs": 214624593, - "observedLastVisualChange": 1852, - "observedLastVisualChangeTs": 215107593, - "observedSpeedIndex": 1392, - "observedSpeedIndexTs": 214647247 + "observedNavigationStartTs": 185633695, + "observedFirstPaint": 1147, + "observedFirstPaintTs": 186781144, + "observedFirstContentfulPaint": 1147, + "observedFirstContentfulPaintTs": 186781144, + "observedFirstContentfulPaintAllFrames": 1147, + "observedFirstContentfulPaintAllFramesTs": 186781144, + "observedFirstMeaningfulPaint": 1147, + "observedFirstMeaningfulPaintTs": 186781144, + "observedLargestContentfulPaint": 1281, + "observedLargestContentfulPaintTs": 186914378, + "observedLargestContentfulPaintAllFrames": 1281, + "observedLargestContentfulPaintAllFramesTs": 186914378, + "observedTraceEnd": 4030, + "observedTraceEndTs": 189663696, + "observedLoad": 1723, + "observedLoadTs": 187356256, + "observedDomContentLoaded": 1137, + "observedDomContentLoadedTs": 186770612, + "observedCumulativeLayoutShift": 0.29474678039550783, + "observedCumulativeLayoutShiftMainFrame": 0.29474678039550783, + "observedTotalCumulativeLayoutShift": 0.29474678039550783, + "observedFirstVisualChange": 1158, + "observedFirstVisualChangeTs": 186791695, + "observedLastVisualChange": 1742, + "observedLastVisualChangeTs": 187375695, + "observedSpeedIndex": 1187, + "observedSpeedIndexTs": 186820694 }, { "lcpInvalidated": false @@ -299886,23 +301311,23 @@ "type": "debugdata", "items": [ { - "numRequests": 29, - "numScripts": 2, + "numRequests": 27, + "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 905, - "numTasksOver10ms": 5, - "numTasksOver25ms": 4, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasks": 697, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.969, - "throughput": 49138428.503848195, - "maxRtt": 85.009, - "maxServerLatency": 5.39800000000001, - "totalByteWeight": 5280061, - "totalTaskTime": 458.6029999999998, - "mainDocumentTransferSize": 1049 + "rtt": 100.98400000000001, + "throughput": 12544070.268334692, + "maxRtt": 101.653, + "maxServerLatency": 18.377999999999986, + "totalByteWeight": 1305314, + "totalTaskTime": 214.4279999999971, + "mainDocumentTransferSize": 745 } ] } @@ -299912,7 +301337,7 @@ { "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", - "fetchTime": "2023-12-17T09:06:11.911Z", + "fetchTime": "2023-12-24T09:18:46.225Z", "runWarnings": [], "categories": { "performance": { @@ -299923,7 +301348,7 @@ "snapshot" ], "id": "performance", - "score": 0.16 + "score": 0.25 }, "accessibility": { "title": "Accessibility", @@ -299975,53 +301400,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 27224, + "numericValue": 7581, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 23874, - "firstMeaningfulPaint": 25393, - "largestContentfulPaint": 31164, - "interactive": 27224, - "speedIndex": 23874, - "totalBlockingTime": 2832, - "maxPotentialFID": 3038, - "cumulativeLayoutShift": 0.002524695078531901, - "cumulativeLayoutShiftMainFrame": 0.002524695078531901, - "totalCumulativeLayoutShift": 0.002524695078531901, + "firstContentfulPaint": 4656, + "firstMeaningfulPaint": 6043, + "largestContentfulPaint": 10835, + "interactive": 7581, + "speedIndex": 7902, + "totalBlockingTime": 2575, + "maxPotentialFID": 2775, + "cumulativeLayoutShift": 0.002181165483262804, + "cumulativeLayoutShiftMainFrame": 0.002181165483262804, + "totalCumulativeLayoutShift": 0.002181165483262804, "observedTimeOrigin": 0, - "observedTimeOriginTs": 225471892, + "observedTimeOriginTs": 197534240, "observedNavigationStart": 0, - "observedNavigationStartTs": 225471892, - "observedFirstPaint": 2709, - "observedFirstPaintTs": 228181382, - "observedFirstContentfulPaint": 2709, - "observedFirstContentfulPaintTs": 228181382, - "observedFirstContentfulPaintAllFrames": 2709, - "observedFirstContentfulPaintAllFramesTs": 228181382, - "observedFirstMeaningfulPaint": 2709, - "observedFirstMeaningfulPaintTs": 228181382, - "observedLargestContentfulPaint": 3255, - "observedLargestContentfulPaintTs": 228727387, - "observedLargestContentfulPaintAllFrames": 3255, - "observedLargestContentfulPaintAllFramesTs": 228727387, - "observedTraceEnd": 5550, - "observedTraceEndTs": 231021648, - "observedLoad": 3240, - "observedLoadTs": 228711526, - "observedDomContentLoaded": 2684, - "observedDomContentLoadedTs": 228155926, - "observedCumulativeLayoutShift": 0.002524695078531901, - "observedCumulativeLayoutShiftMainFrame": 0.002524695078531901, - "observedTotalCumulativeLayoutShift": 0.002524695078531901, - "observedFirstVisualChange": 2718, - "observedFirstVisualChangeTs": 228189892, - "observedLastVisualChange": 3268, - "observedLastVisualChangeTs": 228739892, - "observedSpeedIndex": 3017, - "observedSpeedIndexTs": 228488527 + "observedNavigationStartTs": 197534240, + "observedFirstPaint": 2474, + "observedFirstPaintTs": 200008051, + "observedFirstContentfulPaint": 2474, + "observedFirstContentfulPaintTs": 200008051, + "observedFirstContentfulPaintAllFrames": 2474, + "observedFirstContentfulPaintAllFramesTs": 200008051, + "observedFirstMeaningfulPaint": 2474, + "observedFirstMeaningfulPaintTs": 200008051, + "observedLargestContentfulPaint": 3117, + "observedLargestContentfulPaintTs": 200650966, + "observedLargestContentfulPaintAllFrames": 3117, + "observedLargestContentfulPaintAllFramesTs": 200650966, + "observedTraceEnd": 5421, + "observedTraceEndTs": 202955618, + "observedLoad": 3114, + "observedLoadTs": 200648428, + "observedDomContentLoaded": 2451, + "observedDomContentLoadedTs": 199985403, + "observedCumulativeLayoutShift": 0.002181165483262804, + "observedCumulativeLayoutShiftMainFrame": 0.002181165483262804, + "observedTotalCumulativeLayoutShift": 0.002181165483262804, + "observedFirstVisualChange": 2474, + "observedFirstVisualChangeTs": 200008240, + "observedLastVisualChange": 3124, + "observedLastVisualChangeTs": 200658240, + "observedSpeedIndex": 2841, + "observedSpeedIndexTs": 200374818 }, { "lcpInvalidated": false @@ -300039,23 +301464,23 @@ "type": "debugdata", "items": [ { - "numRequests": 28, - "numScripts": 2, + "numRequests": 23, + "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1330, + "numTasks": 1090, "numTasksOver10ms": 4, - "numTasksOver25ms": 3, - "numTasksOver50ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 82.674, - "throughput": 30255220.85933088, - "maxRtt": 88.59400000000001, - "maxServerLatency": 83.74900000000002, - "totalByteWeight": 7436016, - "totalTaskTime": 1787.1190000000154, - "mainDocumentTransferSize": 1049 + "rtt": 100.56200000000001, + "throughput": 20648105.19328502, + "maxRtt": 100.647, + "maxServerLatency": 100.76999999999997, + "totalByteWeight": 3460545, + "totalTaskTime": 1552.2049999999929, + "mainDocumentTransferSize": 745 } ] } @@ -300152,12 +301577,12 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-02-15T08:52:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, + "cookiesGrade": "A", + "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.5, - "lighthouse_performanceGrade": "D", + "lighthouse_performance": 0.9510311126708985, + "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, @@ -300182,7 +301607,7 @@ "http": { "url": "https://potentiel.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:57:05 GMT", + "end_time": "Sun, 24 Dec 2023 05:06:27 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -300193,8 +301618,8 @@ "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 04:57:04 GMT", - "ETag": "W/\"4f81-gCmBRI+yyuP1fJEPZRobq6B/ld8\"", + "Date": "Sun, 24 Dec 2023 05:06:25 GMT", + "ETag": "W/\"4f81-J8fwQoKBQ1ZO2X1s9jJSE8uksUc\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; preload", @@ -300204,12 +301629,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "902d337e-e2a2-4833-b099-755df5049895", + "X-Request-ID": "2de2978c-f5fe-4c59-a0cc-6b509f6b52ca", "X-XSS-Protection": "0" }, - "scan_id": 45540817, + "scan_id": 45756884, "score": 50, - "start_time": "Sun, 17 Dec 2023 04:57:01 GMT", + "start_time": "Sun, 24 Dec 2023 05:06:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -300222,43 +301647,43 @@ "output": { "data": { "connect-src": [ - "analytics.potentiel.beta.gouv.fr", - "client.crisp.chat", "'unsafe-inline'", "'self'", - "wss://client.relay.crisp.chat" + "analytics.potentiel.beta.gouv.fr", + "wss://client.relay.crisp.chat", + "client.crisp.chat" ], "default-src": [ - "'self'", "metabase.potentiel.beta.gouv.fr", - "blob:" + "blob:", + "'self'" ], "font-src": [ - "client.crisp.chat", + "data:", "'self'", - "data:" + "client.crisp.chat" ], "img-src": [ - "client.crisp.chat", - "'self'", "data:", + "'self'", + "client.crisp.chat", "image.crisp.chat" ], "object-src": [ "'none'" ], "script-src": [ - "analytics.potentiel.beta.gouv.fr", - "client.crisp.chat", "'unsafe-inline'", + "metabase.potentiel.beta.gouv.fr", "'self'", - "metabase.potentiel.beta.gouv.fr" + "analytics.potentiel.beta.gouv.fr", + "client.crisp.chat" ], "style-src": [ - "client.crisp.chat", "'unsafe-inline'", + "data:", "'self'", - "data:" + "client.crisp.chat" ] }, "http": true, @@ -300446,15 +301871,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T09:26:39Z", - "next_check_at": "2023-12-17T09:31:36Z", + "last_check_at": "2023-12-24T09:34:48Z", + "next_check_at": "2023-12-24T09:39:47Z", "mute_until": null, "favicon_url": "https://potentiel.beta.gouv.fr/dsfr/favicon/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T08:56:47Z", + "tested_at": "2023-12-24T09:14:54Z", "expires_at": "2024-02-05T05:16:10Z", "valid": true, "error": null @@ -300463,11 +301888,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 175, - "connection": 107, - "handshake": 117, - "response": 118, - "total": 517 + "namelookup": 139, + "connection": 131, + "handshake": 137, + "response": 137, + "total": 545 } }, "uptimeGrade": "A", @@ -300845,7 +302270,7 @@ "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "49 >= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", @@ -301048,7 +302473,7 @@ "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702804780" + "finding": "1703409901" }, { "id": "HSTS_multiple", @@ -301988,7 +303413,7 @@ "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "49 >= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", @@ -302191,7 +303616,7 @@ "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702804835" + "finding": "1703409955" }, { "id": "HSTS_multiple", @@ -302808,7 +304233,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/cb5c5c5f-a671-43cf-b84f-cd514ea51495/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-9-18" + "url": "https://client.crisp.chat/settings/website/cb5c5c5f-a671-43cf-b84f-cd514ea51495/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-9-24" }, { "type": "unknown", @@ -302824,11 +304249,11 @@ }, { "type": "unknown", - "url": "https://image.crisp.chat/avatar/operator/935182e1-a735-44c0-b292-5c3225c63e38/60/?1701774271621" + "url": "https://image.crisp.chat/avatar/operator/81bcaad6-8b13-45bb-a630-0dcddd458ed3/60/?1701774271621" }, { "type": "unknown", - "url": "https://image.crisp.chat/avatar/operator/81bcaad6-8b13-45bb-a630-0dcddd458ed3/60/?1701774271621" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2F3efa55f874adf000%2Fdelph1-1_1sj7foo.jpg&width=60&height=60&1701774271621" }, { "type": "unknown", @@ -302866,8 +304291,8 @@ "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 09:18:45 GMT", - "etag": "W/\"4f81-gCmBRI+yyuP1fJEPZRobq6B/ld8\"", + "date": "Sun, 24 Dec 2023 09:24:06 GMT", + "etag": "W/\"4f81-J8fwQoKBQ1ZO2X1s9jJSE8uksUc\"", "origin-agent-cluster": "?1", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000\nmax-age=63072000; preload", @@ -302876,7 +304301,7 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "76a00f56-3f3c-45a9-84be-3941149c1424", + "x-request-id": "3ad121c7-33a7-444d-84f6-39455247f217", "x-xss-protection": "0" }, "endpoints": [ @@ -302938,42 +304363,8 @@ }, { "hostname": "client.crisp.chat", - "ip": "172.64.153.75", + "ip": "104.18.34.181", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -303056,37 +304447,37 @@ "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true @@ -303114,7 +304505,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:18:05", + "@generated": "Sun, 24 Dec 2023 09:23:27", "site": [ { "@name": "https://potentiel.beta.gouv.fr", @@ -303178,6 +304569,13 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.

" + }, { "name": "Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec)", "riskcode": "1", @@ -303192,6 +304590,13 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, + { + "name": "Content-Type Header Missing", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The Content-Type header was either missing or empty.

" + }, { "name": "Information Disclosure - Sensitive Information in URL", "riskcode": "0", @@ -303280,539 +304685,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "potentiel.beta.gouv.fr.", - "matched-at": "_dmarc.potentiel.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=reject; rua=mailto:team@potentiel.beta.gouv.fr; pct=100; adkim=r; aspf=r\"" - ], - "timestamp": "2023-12-17T09:21:58.472064995Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "potentiel.beta.gouv.fr.", - "matched-at": "potentiel.beta.gouv.fr", - "extracted-results": [ - "\"google-site-verification=TFLKznVdoFHp8aVSWp4Wjg00cOLTfJR6Vldor6flWYE\"", - "\"v=spf1 include:_spf.alwaysdata.com include:spf.mailjet.com ?all\"" - ], - "timestamp": "2023-12-17T09:21:58.782034586Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "potentiel.beta.gouv.fr.", - "matched-at": "potentiel.beta.gouv.fr", - "timestamp": "2023-12-17T09:21:58.795329535Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "potentiel.beta.gouv.fr.", - "matched-at": "potentiel.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-17T09:21:59.46078Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "potentiel.beta.gouv.fr.", - "matched-at": "potentiel.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T09:21:59.469192491Z", - "matcher-status": true - }, - { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", - "info": { - "name": "Allowed Options Method", - "author": [ - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr", - "extracted-results": [ - "GET,HEAD" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:22:05.284836439Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:22:40.377343986Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:22:40.377386275Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:22:40.377396575Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr/", - "extracted-results": [ - "https://analytics.potentiel.beta.gouv.fr/umami.js" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:22:54.931465903Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: potentiel.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "securesphere", - "type": "http", - "host": "https://potentiel.beta.gouv.fr", - "matched-at": "https://potentiel.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:23:01.790466382Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: potentiel.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://potentiel.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "potentiel.beta.gouv.fr", - "matched-at": "potentiel.beta.gouv.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:26:00.78396335Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "potentiel.beta.gouv.fr", - "matched-at": "potentiel.beta.gouv.fr:443", - "extracted-results": [ - "potentiel.beta.gouv.fr" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:26:00.784093645Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "potentiel.beta.gouv.fr", - "matched-at": "potentiel.beta.gouv.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:26:02.348240546Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "potentiel.beta.gouv.fr", - "matched-at": "potentiel.beta.gouv.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T09:26:02.520127729Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://potentiel.beta.gouv.fr/", "finalUrl": "https://potentiel.beta.gouv.fr/", - "fetchTime": "2023-12-17T09:18:19.522Z", + "fetchTime": "2023-12-24T09:23:41.455Z", "runWarnings": [], "categories": { "performance": { @@ -303855,7 +304733,7 @@ "snapshot" ], "id": "seo", - "score": 0.88 + "score": 0.81 }, "pwa": { "title": "PWA", @@ -303875,53 +304753,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2128, + "numericValue": 2110, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2128, - "firstMeaningfulPaint": 2128, - "largestContentfulPaint": 3949, - "interactive": 2128, - "speedIndex": 2128, + "firstContentfulPaint": 2110, + "firstMeaningfulPaint": 2110, + "largestContentfulPaint": 3913, + "interactive": 2110, + "speedIndex": 2110, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.20660458755493166, "cumulativeLayoutShiftMainFrame": 0.20660458755493166, "totalCumulativeLayoutShift": 0.20660458755493166, "observedTimeOrigin": 0, - "observedTimeOriginTs": 209613538, + "observedTimeOriginTs": 342374755, "observedNavigationStart": 0, - "observedNavigationStartTs": 209613538, - "observedFirstPaint": 440, - "observedFirstPaintTs": 210053047, - "observedFirstContentfulPaint": 440, - "observedFirstContentfulPaintTs": 210053047, - "observedFirstContentfulPaintAllFrames": 440, - "observedFirstContentfulPaintAllFramesTs": 210053047, - "observedFirstMeaningfulPaint": 440, - "observedFirstMeaningfulPaintTs": 210053047, - "observedLargestContentfulPaint": 440, - "observedLargestContentfulPaintTs": 210053047, - "observedLargestContentfulPaintAllFrames": 440, - "observedLargestContentfulPaintAllFramesTs": 210053047, - "observedTraceEnd": 3255, - "observedTraceEndTs": 212868156, - "observedLoad": 610, - "observedLoadTs": 210223904, + "observedNavigationStartTs": 342374755, + "observedFirstPaint": 429, + "observedFirstPaintTs": 342804049, + "observedFirstContentfulPaint": 429, + "observedFirstContentfulPaintTs": 342804049, + "observedFirstContentfulPaintAllFrames": 429, + "observedFirstContentfulPaintAllFramesTs": 342804049, + "observedFirstMeaningfulPaint": 429, + "observedFirstMeaningfulPaintTs": 342804049, + "observedLargestContentfulPaint": 429, + "observedLargestContentfulPaintTs": 342804049, + "observedLargestContentfulPaintAllFrames": 429, + "observedLargestContentfulPaintAllFramesTs": 342804049, + "observedTraceEnd": 3265, + "observedTraceEndTs": 345639840, + "observedLoad": 616, + "observedLoadTs": 342990953, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 209614091, + "observedDomContentLoadedTs": 342375400, "observedCumulativeLayoutShift": 0.20660458755493166, "observedCumulativeLayoutShiftMainFrame": 0.20660458755493166, "observedTotalCumulativeLayoutShift": 0.20660458755493166, - "observedFirstVisualChange": 444, - "observedFirstVisualChangeTs": 210057538, - "observedLastVisualChange": 1044, - "observedLastVisualChangeTs": 210657538, - "observedSpeedIndex": 453, - "observedSpeedIndexTs": 210066264 + "observedFirstVisualChange": 428, + "observedFirstVisualChangeTs": 342802755, + "observedLastVisualChange": 1028, + "observedLastVisualChangeTs": 343402755, + "observedSpeedIndex": 437, + "observedSpeedIndexTs": 342811287 }, { "lcpInvalidated": false @@ -303949,13 +304827,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 3.119, - "throughput": 15898204.679457448, - "maxRtt": 80.777, - "maxServerLatency": 7.349000000000002, - "totalByteWeight": 646109, - "totalTaskTime": 1.9169999999999996, - "mainDocumentTransferSize": 6370 + "rtt": 5.718, + "throughput": 15836101.692842314, + "maxRtt": 82.677, + "maxServerLatency": 11.61, + "totalByteWeight": 646881, + "totalTaskTime": 2.9410000000000003, + "mainDocumentTransferSize": 6396 } ] } @@ -304065,8 +304943,8 @@ "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.88, - "lighthouse_seoGrade": "A", + "lighthouse_seo": 0.81, + "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.6, "lighthouse_pwaGrade": "C", "statsGrade": "B", @@ -304085,7 +304963,7 @@ "http": { "url": "https://recosante.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 04:22:17 GMT", + "end_time": "Sun, 24 Dec 2023 04:07:15 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -304097,7 +304975,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 04:22:15 GMT", + "Date": "Sun, 24 Dec 2023 04:07:13 GMT", "ETag": "W/\"37e1e-18c59d4da78\"", "Last-Modified": "Mon, 11 Dec 2023 17:02:51 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", @@ -304105,9 +304983,9 @@ "Vary": "Accept-Encoding", "X-Powered-By": "Express" }, - "scan_id": 45539984, + "scan_id": 45755198, "score": 40, - "start_time": "Sun, 17 Dec 2023 04:22:11 GMT", + "start_time": "Sun, 24 Dec 2023 04:07:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -304297,32 +305175,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T09:33:37Z", - "next_check_at": "2023-12-17T09:38:36Z", + "last_check_at": "2023-12-24T09:36:23Z", + "next_check_at": "2023-12-24T09:41:21Z", "mute_until": null, "favicon_url": "https://recosante.beta.gouv.fr/favicon-32x32.png?v=312ed0e942b49d10349a5b019914c5bf", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:33:38Z", + "tested_at": "2023-12-24T09:11:31Z", "expires_at": "2024-03-05T14:40:43Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.896, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 44, - "connection": 124, - "handshake": 129, - "response": 281, - "total": 578 + "namelookup": 67, + "connection": 111, + "handshake": 120, + "response": 113, + "total": 411 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "recosante.beta.gouv.fr", @@ -304698,7 +305576,7 @@ "ip": "recosante.beta.gouv.fr/20.74.14.77", "port": "443", "severity": "OK", - "finding": "79 >= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", @@ -304901,7 +305779,7 @@ "ip": "recosante.beta.gouv.fr/20.74.14.77", "port": "443", "severity": "INFO", - "finding": "1702805153" + "finding": "1703410165" }, { "id": "HSTS_time", @@ -305493,7 +306371,7 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 09:24:56 GMT", + "date": "Sun, 24 Dec 2023 09:28:28 GMT", "etag": "W/\"37e1e-18c59d4da78\"", "last-modified": "Mon, 11 Dec 2023 17:02:51 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", @@ -305597,7 +306475,7 @@ }, { "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.24.14", + "ip": "104.17.25.14", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -305933,7 +306811,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:24:14", + "@generated": "Sun, 24 Dec 2023 09:27:46", "site": [ { "@name": "https://recosante.beta.gouv.fr", @@ -306071,12 +306949,928 @@ } ] }, - "nuclei": [], + "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "recosante.beta.gouv.fr.", + "matched-at": "recosante.beta.gouv.fr", + "timestamp": "2023-12-24T09:30:42.240701821Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "recosante.beta.gouv.fr.", + "matched-at": "_dmarc.recosante.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2023-12-24T09:30:42.315437267Z", + "matcher-status": true + }, + { + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "info": { + "name": "MX Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "recosante.beta.gouv.fr.", + "matched-at": "recosante.beta.gouv.fr", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2023-12-24T09:30:42.318217314Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "recosante.beta.gouv.fr.", + "matched-at": "recosante.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2023-12-24T09:30:43.315336047Z", + "matcher-status": true + }, + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "recosante.beta.gouv.fr.", + "matched-at": "recosante.beta.gouv.fr", + "extracted-results": [ + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"Sendinblue-code:d6fdaf85a5e982dfabdb0d973944f42b\"", + "\"google-site-verification=Q2ej2lSSlWAxrHY506YYObybs2Mb9GV1EX5sMAdL9cE\"" + ], + "timestamp": "2023-12-24T09:30:43.467571579Z", + "matcher-status": true + }, + { + "template": "http/miscellaneous/addeventlistener-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/addeventlistener-detect", + "template-id": "addeventlistener-detect", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/addeventlistener-detect.yaml", + "info": { + "name": "DOM EventListener - Cross-Site Scripting", + "author": [ + "yavolo", + "dwisiswant0" + ], + "tags": [ + "xss", + "misc" + ], + "description": "EventListener contains a cross-site scripting vulnerability via the document object model (DOM). An attacker can execute arbitrary script which can then allow theft of cookie-based authentication credentials and launch of other attacks.", + "reference": [ + "https://portswigger.net/web-security/dom-based/controlling-the-web-message-source" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-79" + ], + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "cvss-score": 7.2 + } + }, + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:31:18.432419847Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/metatag-cms.yaml", + "template-url": "https://templates.nuclei.sh/public/metatag-cms", + "template-id": "metatag-cms", + "template-path": "/home/runner/nuclei-templates/http/technologies/metatag-cms.yaml", + "info": { + "name": "Metatag CMS Detection", + "author": [ + "dadevel" + ], + "tags": [ + "tech", + "cms" + ], + "description": "Generic CMS Detection using html meta generator tag", + "reference": [ + "https://www.w3schools.com/tags/att_meta_name.asp" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "extracted-results": [ + "Gatsby 5.11.0" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:32:47.574648204Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "react", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:32:48.100251347Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "gatsby", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:32:48.100287064Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "express", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:32:48.100302543Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938381502Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938420475Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938437577Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938453757Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938469085Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938481118Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938493601Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938505573Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938523036Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:33:12.938536722Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/missing-sri.yaml", + "template-url": "https://templates.nuclei.sh/public/missing-sri", + "template-id": "missing-sri", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", + "info": { + "name": "Missing Subresource Integrity", + "author": [ + "lucky0x0d", + "pulsesecurity.co.nz" + ], + "tags": [ + "compliance", + "js", + "sri", + "misconfig" + ], + "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr/", + "extracted-results": [ + "https://cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.2/iframeResizer.contentWindow.min.js" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:34:00.125261107Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: recosante.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "ats", + "type": "http", + "host": "https://recosante.beta.gouv.fr", + "matched-at": "https://recosante.beta.gouv.fr/", + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:34:26.618088184Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: recosante.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr/'", + "matcher-status": true + }, + { + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "info": { + "name": "Detect SSL Certificate Issuer", + "author": [ + "lingtren" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "recosante.beta.gouv.fr", + "matched-at": "recosante.beta.gouv.fr:443", + "extracted-results": [ + "Let's Encrypt" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:36:43.962482638Z", + "matcher-status": true + }, + { + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "info": { + "name": "SSL DNS Names", + "author": [ + "pdteam" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "recosante.beta.gouv.fr", + "matched-at": "recosante.beta.gouv.fr:443", + "extracted-results": [ + "recosante.beta.gouv.fr" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:36:43.962591872Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "recosante.beta.gouv.fr", + "matched-at": "recosante.beta.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:36:46.235176919Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "recosante.beta.gouv.fr", + "matched-at": "recosante.beta.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "20.74.14.77", + "timestamp": "2023-12-24T09:36:46.425961386Z", + "matcher-status": true + } + ], "lhr": [ { "requestedUrl": "https://recosante.beta.gouv.fr/", "finalUrl": "https://recosante.beta.gouv.fr/", - "fetchTime": "2023-12-17T09:24:28.634Z", + "fetchTime": "2023-12-24T09:28:00.620Z", "runWarnings": [], "categories": { "performance": { @@ -306087,7 +307881,7 @@ "snapshot" ], "id": "performance", - "score": 0.85 + "score": 0.65 }, "accessibility": { "title": "Accessibility", @@ -306139,53 +307933,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5850, + "numericValue": 5829, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1485, - "firstMeaningfulPaint": 1485, - "largestContentfulPaint": 1485, - "interactive": 5850, - "speedIndex": 2308, - "totalBlockingTime": 349, - "maxPotentialFID": 506, + "firstContentfulPaint": 1493, + "firstMeaningfulPaint": 1493, + "largestContentfulPaint": 1493, + "interactive": 5829, + "speedIndex": 2319, + "totalBlockingTime": 348, + "maxPotentialFID": 446, "cumulativeLayoutShift": 0.0861409371693929, "cumulativeLayoutShiftMainFrame": 0.0861409371693929, "totalCumulativeLayoutShift": 0.0861409371693929, "observedTimeOrigin": 0, - "observedTimeOriginTs": 313080074, + "observedTimeOriginTs": 348097605, "observedNavigationStart": 0, - "observedNavigationStartTs": 313080074, - "observedFirstPaint": 408, - "observedFirstPaintTs": 313487786, - "observedFirstContentfulPaint": 408, - "observedFirstContentfulPaintTs": 313487786, - "observedFirstContentfulPaintAllFrames": 408, - "observedFirstContentfulPaintAllFramesTs": 313487786, - "observedFirstMeaningfulPaint": 408, - "observedFirstMeaningfulPaintTs": 313487786, - "observedLargestContentfulPaint": 408, - "observedLargestContentfulPaintTs": 313487786, - "observedLargestContentfulPaintAllFrames": 408, - "observedLargestContentfulPaintAllFramesTs": 313487786, - "observedTraceEnd": 3794, - "observedTraceEndTs": 316873700, - "observedLoad": 983, - "observedLoadTs": 314063194, - "observedDomContentLoaded": 511, - "observedDomContentLoadedTs": 313591229, + "observedNavigationStartTs": 348097605, + "observedFirstPaint": 404, + "observedFirstPaintTs": 348501423, + "observedFirstContentfulPaint": 404, + "observedFirstContentfulPaintTs": 348501423, + "observedFirstContentfulPaintAllFrames": 404, + "observedFirstContentfulPaintAllFramesTs": 348501423, + "observedFirstMeaningfulPaint": 404, + "observedFirstMeaningfulPaintTs": 348501423, + "observedLargestContentfulPaint": 404, + "observedLargestContentfulPaintTs": 348501423, + "observedLargestContentfulPaintAllFrames": 404, + "observedLargestContentfulPaintAllFramesTs": 348501423, + "observedTraceEnd": 3906, + "observedTraceEndTs": 352003622, + "observedLoad": 1013, + "observedLoadTs": 349110524, + "observedDomContentLoaded": 529, + "observedDomContentLoadedTs": 348626947, "observedCumulativeLayoutShift": 0.0861409371693929, "observedCumulativeLayoutShiftMainFrame": 0.0861409371693929, "observedTotalCumulativeLayoutShift": 0.0861409371693929, - "observedFirstVisualChange": 407, - "observedFirstVisualChangeTs": 313487074, - "observedLastVisualChange": 3107, - "observedLastVisualChangeTs": 316187074, - "observedSpeedIndex": 509, - "observedSpeedIndexTs": 313588956 + "observedFirstVisualChange": 405, + "observedFirstVisualChangeTs": 348502605, + "observedLastVisualChange": 3121, + "observedLastVisualChangeTs": 351218605, + "observedSpeedIndex": 508, + "observedSpeedIndexTs": 348605222 }, { "lcpInvalidated": false @@ -306203,23 +307997,23 @@ "type": "debugdata", "items": [ { - "numRequests": 53, + "numRequests": 57, "numScripts": 9, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1522, - "numTasksOver10ms": 15, + "numTasks": 1071, + "numTasksOver10ms": 14, "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.236000000000001, - "throughput": 10413301.740674471, - "maxRtt": 85.789, - "maxServerLatency": 8.689999999999998, - "totalByteWeight": 634502, - "totalTaskTime": 666.9570000000003, - "mainDocumentTransferSize": 49196 + "rtt": 5.15, + "throughput": 10139471.707761472, + "maxRtt": 84.65799999999999, + "maxServerLatency": 8.522999999999998, + "totalByteWeight": 634518, + "totalTaskTime": 629.4759999999975, + "mainDocumentTransferSize": 49187 } ] } @@ -306315,8 +308109,8 @@ "sonarcloud": null, "summary": { "httpGrade": "D+", - "apdex": 0.896, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -306329,8 +308123,8 @@ "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.85, - "lighthouse_performanceGrade": "A", + "lighthouse_performance": 0.65, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, @@ -306355,7 +308149,7 @@ "http": { "url": "https://resorption-bidonvilles.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:17:21 GMT", + "end_time": "Sat, 23 Dec 2023 19:19:44 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -306364,7 +308158,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://stats.data.gouv.fr/matomo.php; font-src 'self'; img-src 'self'; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 17 Dec 2023 05:17:20 GMT", + "Date": "Sat, 23 Dec 2023 19:19:43 GMT", "Server": "nginx/1.19.10", "Strict-Transport-Security": "max-age=63072000; preload", "Transfer-Encoding": "chunked", @@ -306374,9 +308168,9 @@ "X-XSS-Protection": "1; mode=block", "x-powered-by": "Nuxt" }, - "scan_id": 45541415, + "scan_id": 45746504, "score": 80, - "start_time": "Sun, 17 Dec 2023 05:17:16 GMT", + "start_time": "Sat, 23 Dec 2023 19:19:40 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -306389,9 +308183,9 @@ "output": { "data": { "connect-src": [ + "https://stats.data.gouv.fr/matomo.php", "https://api.resorption-bidonvilles.beta.gouv.fr/", - "ws://localhost:*/_nuxt/", - "https://stats.data.gouv.fr/matomo.php" + "ws://localhost:*/_nuxt/" ], "default-src": [ "'none'" @@ -306600,32 +308394,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T09:36:48Z", - "next_check_at": "2023-12-17T09:41:46Z", + "last_check_at": "2023-12-24T09:47:20Z", + "next_check_at": "2023-12-24T09:52:19Z", "mute_until": null, "favicon_url": "https://resorption-bidonvilles.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:36:48Z", + "tested_at": "2023-12-24T09:12:34Z", "expires_at": "2024-01-18T12:23:19Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.957, "timings": { "redirect": 0, - "namelookup": 93, - "connection": 113, - "handshake": 119, - "response": 141, - "total": 467 + "namelookup": 159, + "connection": 183, + "handshake": 188, + "response": 260, + "total": 790 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "E" }, "nmap": { "host": "resorption-bidonvilles.beta.gouv.fr", @@ -307030,8 +308824,8 @@ "id": "cert_expirationStatus", "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "OK", - "finding": "32 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (25)" }, { "id": "cert_notBefore", @@ -307044,7 +308838,7 @@ "id": "cert_notAfter", "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-01-18 12:23" }, { @@ -307241,7 +309035,7 @@ "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "1702805488" + "finding": "1703411125" }, { "id": "HSTS_time", @@ -307825,7 +309619,7 @@ "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "64" + "finding": "69" } ], "thirdparties": { @@ -307836,7 +309630,7 @@ "value": "fr", "domain": "resorption-bidonvilles.beta.gouv.fr", "path": "/", - "expires": 1734341430, + "expires": 1734947060, "size": 17, "httpOnly": false, "secure": false, @@ -307851,7 +309645,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://stats.data.gouv.fr/matomo.php; font-src 'self'; img-src 'self'; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", "content-type": "text/html;charset=utf-8", - "date": "Sun, 17 Dec 2023 09:30:29 GMT", + "date": "Sun, 24 Dec 2023 09:44:20 GMT", "server": "nginx/1.19.10", "strict-transport-security": "max-age=63072000; preload", "vary": "Accept-Encoding\nAccept-Encoding", @@ -308076,7 +309870,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:29:49", + "@generated": "Sun, 24 Dec 2023 09:43:34", "site": [ { "@name": "https://resorption-bidonvilles.beta.gouv.fr", @@ -308216,22 +310010,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -308247,26 +310041,29 @@ "type": "dns", "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", - "timestamp": "2023-12-17T09:32:34.177778933Z", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" + ], + "timestamp": "2023-12-24T09:46:35.957542251Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -308282,10 +310079,7 @@ "type": "dns", "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" - ], - "timestamp": "2023-12-17T09:32:34.180362308Z", + "timestamp": "2023-12-24T09:46:35.989552515Z", "matcher-status": true }, { @@ -308325,7 +310119,7 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T09:32:34.244939469Z", + "timestamp": "2023-12-24T09:46:36.090930868Z", "matcher-status": true }, { @@ -308361,7 +310155,7 @@ "dns2.alwaysdata.com.", "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T09:32:35.199905001Z", + "timestamp": "2023-12-24T09:46:37.102372836Z", "matcher-status": true }, { @@ -308401,7 +310195,7 @@ "1; mode=block" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:32:55.226618241Z", + "timestamp": "2023-12-24T09:46:56.948855038Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308433,7 +310227,7 @@ "nginx/1.19.10" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:32:55.235408657Z", + "timestamp": "2023-12-24T09:46:56.959607057Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308460,7 +310254,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:39.26775432Z", + "timestamp": "2023-12-24T09:47:45.474617804Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308487,7 +310281,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:39.267816657Z", + "timestamp": "2023-12-24T09:47:45.474680751Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308514,7 +310308,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:39.267833829Z", + "timestamp": "2023-12-24T09:47:45.474691511Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308546,12 +310340,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349270494Z", + "timestamp": "2023-12-24T09:48:00.543245113Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308583,12 +310377,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349322281Z", + "timestamp": "2023-12-24T09:48:00.543893879Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308620,12 +310414,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349339984Z", + "timestamp": "2023-12-24T09:48:00.544469491Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308657,12 +310451,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349355043Z", + "timestamp": "2023-12-24T09:48:00.544543599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308694,12 +310488,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349368488Z", + "timestamp": "2023-12-24T09:48:00.544576209Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308731,12 +310525,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349381653Z", + "timestamp": "2023-12-24T09:48:00.544597008Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308768,12 +310562,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:33:54.349393515Z", + "timestamp": "2023-12-24T09:48:00.544609752Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -308808,12 +310602,12 @@ ] } }, - "matcher-name": "ats", + "matcher-name": "nginxgeneric", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:34:31.531461147Z", + "timestamp": "2023-12-24T09:48:40.296663001Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: resorption-bidonvilles.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr/'", "matcher-status": true }, @@ -308848,12 +310642,12 @@ ] } }, - "matcher-name": "nginxgeneric", + "matcher-name": "ats", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:34:31.531501653Z", + "timestamp": "2023-12-24T09:48:40.29671078Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: resorption-bidonvilles.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr/'", "matcher-status": true }, @@ -308868,7 +310662,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -308883,7 +310678,7 @@ "Let's Encrypt" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:35:06.391143971Z", + "timestamp": "2023-12-24T09:49:15.368304631Z", "matcher-status": true }, { @@ -308897,7 +310692,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -308909,13 +310705,13 @@ "host": "resorption-bidonvilles.beta.gouv.fr", "matched-at": "resorption-bidonvilles.beta.gouv.fr:443", "extracted-results": [ - "app.resorption-bidonvilles.beta.gouv.fr", "m.resorption-bidonvilles.beta.gouv.fr", "resorption-bidonvilles.beta.gouv.fr", - "api.resorption-bidonvilles.beta.gouv.fr" + "api.resorption-bidonvilles.beta.gouv.fr", + "app.resorption-bidonvilles.beta.gouv.fr" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:35:06.391264317Z", + "timestamp": "2023-12-24T09:49:15.36843844Z", "matcher-status": true }, { @@ -308930,8 +310726,10 @@ ], "tags": [ "network", - "c2", "jarm", + "c2", + "ir", + "osint", "cti" ], "description": "Detect C2 Servers with JARM Hashes\n", @@ -308947,7 +310745,7 @@ "host": "resorption-bidonvilles.beta.gouv.fr:443", "matched-at": "resorption-bidonvilles.beta.gouv.fr:443", "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:35:07.06342356Z", + "timestamp": "2023-12-24T09:49:15.506172815Z", "matcher-status": true }, { @@ -308962,7 +310760,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -308977,7 +310776,7 @@ "tls12" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:35:08.159756696Z", + "timestamp": "2023-12-24T09:49:17.164094621Z", "matcher-status": true }, { @@ -308992,7 +310791,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -309007,7 +310807,7 @@ "tls13" ], "ip": "51.178.137.38", - "timestamp": "2023-12-17T09:35:08.371733575Z", + "timestamp": "2023-12-24T09:49:17.429451502Z", "matcher-status": true } ], @@ -309015,7 +310815,7 @@ { "requestedUrl": "https://resorption-bidonvilles.beta.gouv.fr/", "finalUrl": "https://resorption-bidonvilles.beta.gouv.fr/", - "fetchTime": "2023-12-17T09:30:03.166Z", + "fetchTime": "2023-12-24T09:43:50.624Z", "runWarnings": [], "categories": { "performance": { @@ -309078,53 +310878,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7443, + "numericValue": 7546, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1480, - "firstMeaningfulPaint": 1480, - "largestContentfulPaint": 1556, - "interactive": 7443, - "speedIndex": 3832, - "totalBlockingTime": 100, - "maxPotentialFID": 121, + "firstContentfulPaint": 1427, + "firstMeaningfulPaint": 1427, + "largestContentfulPaint": 1577, + "interactive": 7546, + "speedIndex": 1763, + "totalBlockingTime": 179, + "maxPotentialFID": 194, "cumulativeLayoutShift": 0.0023717736138237845, "cumulativeLayoutShiftMainFrame": 0.0023717736138237845, "totalCumulativeLayoutShift": 0.0023717736138237845, "observedTimeOrigin": 0, - "observedTimeOriginTs": 367214616, + "observedTimeOriginTs": 805554125, "observedNavigationStart": 0, - "observedNavigationStartTs": 367214616, - "observedFirstPaint": 766, - "observedFirstPaintTs": 367980413, - "observedFirstContentfulPaint": 766, - "observedFirstContentfulPaintTs": 367980413, - "observedFirstContentfulPaintAllFrames": 766, - "observedFirstContentfulPaintAllFramesTs": 367980413, - "observedFirstMeaningfulPaint": 766, - "observedFirstMeaningfulPaintTs": 367980413, - "observedLargestContentfulPaint": 766, - "observedLargestContentfulPaintTs": 367980413, - "observedLargestContentfulPaintAllFrames": 766, - "observedLargestContentfulPaintAllFramesTs": 367980413, - "observedTraceEnd": 3517, - "observedTraceEndTs": 370731784, - "observedLoad": 1128, - "observedLoadTs": 368342467, - "observedDomContentLoaded": 806, - "observedDomContentLoadedTs": 368020337, + "observedNavigationStartTs": 805554125, + "observedFirstPaint": 707, + "observedFirstPaintTs": 806261096, + "observedFirstContentfulPaint": 707, + "observedFirstContentfulPaintTs": 806261096, + "observedFirstContentfulPaintAllFrames": 707, + "observedFirstContentfulPaintAllFramesTs": 806261096, + "observedFirstMeaningfulPaint": 707, + "observedFirstMeaningfulPaintTs": 806261096, + "observedLargestContentfulPaint": 707, + "observedLargestContentfulPaintTs": 806261096, + "observedLargestContentfulPaintAllFrames": 707, + "observedLargestContentfulPaintAllFramesTs": 806261096, + "observedTraceEnd": 3640, + "observedTraceEndTs": 809193951, + "observedLoad": 1177, + "observedLoadTs": 806731459, + "observedDomContentLoaded": 775, + "observedDomContentLoadedTs": 806329400, "observedCumulativeLayoutShift": 0.0023717736138237845, "observedCumulativeLayoutShiftMainFrame": 0.0023717736138237845, "observedTotalCumulativeLayoutShift": 0.0023717736138237845, - "observedFirstVisualChange": 770, - "observedFirstVisualChangeTs": 367984616, - "observedLastVisualChange": 1637, - "observedLastVisualChangeTs": 368851616, - "observedSpeedIndex": 814, - "observedSpeedIndexTs": 368028278 + "observedFirstVisualChange": 713, + "observedFirstVisualChangeTs": 806267125, + "observedLastVisualChange": 1596, + "observedLastVisualChangeTs": 807150125, + "observedSpeedIndex": 775, + "observedSpeedIndexTs": 806329579 }, { "lcpInvalidated": false @@ -309146,18 +310946,18 @@ "numScripts": 9, "numStylesheets": 3, "numFonts": 5, - "numTasks": 965, + "numTasks": 954, "numTasksOver10ms": 6, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasksOver25ms": 4, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.13, - "throughput": 120460784.69047602, - "maxRtt": 102.538, - "maxServerLatency": 112.954, - "totalByteWeight": 15674804, - "totalTaskTime": 292.3239999999995, + "rtt": 101.632, + "throughput": 113057379.33384782, + "maxRtt": 103.17999999999999, + "maxServerLatency": 226.594, + "totalByteWeight": 15768466, + "totalTaskTime": 322.12899999999945, "mainDocumentTransferSize": 8077 } ] @@ -309253,14 +311053,14 @@ "sonarcloud": null, "summary": { "httpGrade": "B+", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.957, + "apdexGrade": "E", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-01-18T12:23:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", @@ -309293,7 +311093,7 @@ "http": { "url": "https://santepsy.etudiant.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 09:39:09 GMT", + "end_time": "Sun, 24 Dec 2023 09:50:25 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -309302,15 +311102,15 @@ "Cache-Control": "no-cache, no-store, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.data.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net data:;object-src 'none';script-src 'self' https://stats.data.gouv.fr/ 'sha256-4sJsjD6jok0r8RIemFeNZ1nEQfYv6qdzYIaUCTrSIhs=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net;script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/;connect-src 'self' https://nominatim.openstreetmap.org https://stats.data.gouv.fr/ https://client.axept.io/", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net;script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/", "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 09:39:08 GMT", - "ETag": "W/\"66b-18c5d9009d0\"", + "Date": "Sun, 24 Dec 2023 09:50:24 GMT", + "ETag": "W/\"6a9-18c7d8e6830\"", "Expires": "0", "Feature-Policy": "geolocation 'self'", - "Last-Modified": "Tue, 12 Dec 2023 10:26:10 GMT", + "Last-Modified": "Mon, 18 Dec 2023 15:32:14 GMT", "Origin-Agent-Cluster": "?1", "Permissions-Policy": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()", "Pragma": "no-cache", @@ -309324,12 +311124,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "9e4c3b65-15b8-4be6-8ba2-2f026dcfd2d4", + "X-Request-ID": "09a90ec1-05ce-4b38-a9c9-4bfa6fb634df", "X-XSS-Protection": "0" }, - "scan_id": 45548405, + "scan_id": 45763845, "score": 110, - "start_time": "Sun, 17 Dec 2023 09:39:05 GMT", + "start_time": "Sun, 24 Dec 2023 09:50:21 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -309345,18 +311145,18 @@ "'self'" ], "connect-src": [ - "https://nominatim.openstreetmap.org", - "'self'", + "https://stats.beta.gouv.fr/", "https://client.axept.io/", - "https://stats.data.gouv.fr/" + "https://nominatim.openstreetmap.org", + "'self'" ], "default-src": [ "'self'" ], "font-src": [ "https:", - "'self'", - "data:" + "data:", + "'self'" ], "form-action": [ "'self'" @@ -309365,42 +311165,42 @@ "'self'" ], "frame-src": [ - "https://santepsy-metabase.osc-secnum-fr1.scalingo.io", "https://bid.g.doubleclick.net/", + "https://santepsy-metabase.osc-secnum-fr1.scalingo.io", "https://stats.santepsyetudiant.beta.gouv.fr" ], "img-src": [ "https://www.google.fr/", + "https://*.tile.openstreetmap.org/", + "data:", "'self'", + "https://axeptio.imgix.net", + "https://stats.beta.gouv.fr/", "https://www.facebook.com", "https://googleads.g.doubleclick.net", - "https://www.google.com/", - "data:", - "https://axeptio.imgix.net", - "https://stats.data.gouv.fr/", - "https://*.tile.openstreetmap.org/" + "https://www.google.com/" ], "object-src": [ "'none'" ], "script-src": [ "'self'", - "https://connect.facebook.net", - "https://googleads.g.doubleclick.net", + "https://stats.beta.gouv.fr/", + "https://www.googleadservices.com/", "https://www.googletagmanager.com/", - "https://stats.data.gouv.fr/", "https://static.axept.io/", - "https://www.googleadservices.com/", - "'sha256-4sjsjd6jok0r8riemfenz1neqfyv6qdzyiauctrsihs='" + "https://googleads.g.doubleclick.net", + "'sha256-sqjiu0yvewrfwpjx2fpbsuhfmtb6cd2u2u+ip0kxg4c='", + "https://connect.facebook.net" ], "script-src-attr": [ - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ], "style-src": [ "https:", - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ], "upgrade-insecure-requests": [ "'none'" @@ -309592,32 +311392,32 @@ "email:3616943751", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T09:51:22Z", - "next_check_at": "2023-12-17T09:53:21Z", + "last_check_at": "2023-12-24T10:13:01Z", + "next_check_at": "2023-12-24T10:15:00Z", "mute_until": null, "favicon_url": "https://santepsy.etudiant.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:39:29Z", + "tested_at": "2023-12-24T10:11:04Z", "expires_at": "2024-02-10T23:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.983, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 107, - "connection": 145, - "handshake": 154, - "response": 192, - "total": 598 + "namelookup": 73, + "connection": 169, + "handshake": 178, + "response": 206, + "total": 626 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" }, "nmap": { "host": "santepsy.etudiant.gouv.fr", @@ -309645,278 +311445,1195 @@ "codescan": null, "testssl": [ { - "id": "scanProblem", + "id": "service", "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "FATAL", - "finding": "Can't connect to '185.75.143.93:443' Make sure a firewall is not between you and your scanning target!" + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_x9f", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10'" + }, + { + "id": "TLS_session_ticket", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "supported" + }, + { + "id": "TLS_timestamp", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "SHA384 with RSA" + }, + { + "id": "cert_keySize", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "RSA 4096 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "9E8D6E7517054698ECDE0DEE7AA6DDAC" + }, + { + "id": "cert_serialNumberLen", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "F3269C8530E21A270D1E7D3E90AB133B46FF618B" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "9EFAA7723BE1A40965DA1565254F9192734DB492EF6016601EB0E63EE3C42CCC" + }, + { + "id": "cert", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIJYTCCB0mgAwIBAgIRAJ6NbnUXBUaY7N4N7nqm3awwDQYJKoZIhvcNAQEMBQAwRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIzMDIxMDAwMDAwMFoXDTI0MDIxMDIzNTk1OVowgYwxCzAJBgNVBAYTAkZSMRcwFQYDVQQIDA7DjmxlLWRlLUZyYW5jZTFJMEcGA1UECgxATWluaXN0w6hyZSBkZSBsJ0VkdWNhdGlvbiBOYXRpb25hbGUgZXQgZGUgbGEgSmV1bmVzc2UgZGVzIHNwb3J0czEZMBcGA1UEAxMQZXR1ZGlhbnQuZ291di5mcjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOUx7L89pTp8TBoBZqPIeolAgjE9o+6AMYZ8jjxYLIwH1XsxHQ6NQwpj2NVcKrDxkKc/VnG99JfpypbNQ7eRo3kVIEKYgY7geA/qiW6FUDMoaJBfHxU52ELK8oVJVg+CICYAL3BrYxJWQLPh2N/qyvKfIlYFS5MRq91xT+bILJLP9TC9NmN5hAETh13iR1qatp3n5bW2eqVXS8xvaA62SfN4nHH84mBi9mewS7Hov/DIMus4r1wzEl4vJvT/2jpVngx3MSOR3EFhHwZ3mM4afzJvRZU/codURWOvkt1x79URS9RbbeMOCFIr6hNlHWwG83iBty7j8/tgYHIOUwZggKv9yhLXi6M7Y9WXo33EkuOnSykpGRkXauJ7sqYC/bqiSvZmdv3x8HCAsMkNunT0fyKx4tvDHYV5Ffkv1WiJCACFXpnN0NBdnpCG6mq4zzKQUoIgT3rj8gXEsmF0xdwUyuq2FKXA2casgtLYXZtXrFkYjzrVtEPKCqx38f1inmF4Xl4quanXVoDCbIBxPeTTeg0Ol629S0FmeQPrQCnEFbKcLpzLixsem9XziJW9scbyJSHLj0xL9H+aC/+rO218LRKrASZYuryiocaVYc0+KX7A/JcGXysWZ91zwXlpSWvII6gsocErO7lMQ+269xI3TpGs5+v58Gkj+eTmzKMuRwPvAgMBAAGjggQDMIID/zAfBgNVHSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQU8Fi2l72cDU1CaojjIx2nbId6eyswDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGGOufCUwAABAMARzBFAiBZKZytBbbPXI4eMOyF/hBtz89sFtrS7Cvyye3sw9SqiAIhAIOWFtZxU7AJPEWE/jBju08SCLiGkVi5oypsL5i3nxz5AHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGGOufCPgAABAMARzBFAiB+yXvni0T7AplxktIcq8AIRiPnRVHL7VKQY0spMBYV8gIhAOZE+EbkXUQBw+i4nzA2f0HruFMqCHf1n3Jn/lrvBF01AHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGGOufCGAAABAMARjBEAiB3XXeDxogRI5xIaILqyi5aaZhScLqdJzxi2kiELw9dugIgXiCUtUbQJaQ82H6pQmH3wD6uRnn21Tb/ziFG11qywp4wgfsGA1UdEQSB8zCB8IIQZXR1ZGlhbnQuZ291di5mcoIVYmFjay5ldHVkaWFudC5nb3V2LmZyghFldHVkaWFudHMuZ291di5mcoIdaXNvcHJvZC5iYWNrLmV0dWRpYW50LmdvdXYuZnKCGGlzb3Byb2QuZXR1ZGlhbnQuZ291di5mcoIZc2FudGVwc3kuZXR1ZGlhbnQuZ291di5mcoIadGVzdC5iYWNrLmV0dWRpYW50LmdvdXYuZnKCFXRlc3QuZXR1ZGlhbnQuZ291di5mcoIUd3d3LmV0dWRpYW50LmdvdXYuZnKCFXd3dy5ldHVkaWFudHMuZ291di5mcjANBgkqhkiG9w0BAQwFAAOCAgEAAlWMAjyU4QwMHCiyJLbUDoWE+pgvlUrT+yzzpGCQdbfwUARNpmtYZDoLvPhWw3ykQoJaNJqq1o0T1eFyzkIjKTn55wyuQjuIilRVMOoiqbUosPGjPDTtCT7qNTBQ6Op7sVfX7K+McevsozGX+6m14vDuDEbvForE4PY3eHXooYii11vahBeTYR2sDtQK3NjexHRaiVOzt3y22YKitkGZY1sau0FaeeZ1F2LlbS4i3xjYcwsvfGVJMQ+HL+s+lFhEpWVWdeapofVZXFaYzeVKALiGFM8dYt4sykEgkSA+cyKa0QLyLIWzwehEfjfTUiT9aU+GLm380lErysmCm/XTeCC+T+PIFbn6Btt2jf+U5OH06UTb3wavXRybB30m6M08yk5AbKXh18jHV5jasgSkM0czIwSRtszrWHOJz9dB+WpcWDb1hJ5JkNLZHX/96+imLCI4KpYGwikEa4ytORNxxOp5bHuwpSa+jXwQpXvFInoEmTOgT1QpkT6GGtKfFin6cZzrc/mP6Tfoe8fDHCgdh872GJyqVdwHy7r17ma0gs+G9ie4XfKFn0tvWarPIJWAvLE+ry4MUWemMTrVojQmgB28+9RlI5SSLkMEuECgzBSBmaM3kxUXLSPZcxbMviGNVmqC2JBW4/S2kNBVfbqGLa7zFlFwEQqBILfs00JCqx8=\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "etudiant.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "*.dedie.ate.info" + }, + { + "id": "cert_subjectAltName", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "etudiant.gouv.fr back.etudiant.gouv.fr etudiants.gouv.fr isoprod.back.etudiant.gouv.fr isoprod.etudiant.gouv.fr santepsy.etudiant.gouv.fr test.back.etudiant.gouv.fr test.etudiant.gouv.fr www.etudiant.gouv.fr www.etudiants.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "MEDIUM", + "finding": "expires < 60 days (48)" + }, + { + "id": "cert_notBefore", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "2023-02-10 00:00" + }, + { + "id": "cert_notAfter", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "MEDIUM", + "finding": "2024-02-10 23:59" + }, + { + "id": "cert_extlifeSpan", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + }, + { + "id": "cert_ocspURL", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "http://GEANT.ocsp.sectigo.com" + }, + { + "id": "OCSP_stapling", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cert_ocspRevoked", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "not revoked" + }, + { + "id": "cert_mustStapleExtension", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "2020-02-18 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "2033-05-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + }, + { + "id": "intermediate_cert <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "2019-03-12 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "2028-12-31 23:59" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "1703412204" + }, + { + "id": "HSTS_time", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "nginx" + }, + { + "id": "banner_application", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net;script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/" + }, + { + "id": "Permissions-Policy", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()" + }, + { + "id": "X-XSS-Protection", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no-referrer" + }, + { + "id": "Cache-Control", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no-cache, no-store, must-revalidate" + }, + { + "id": "Pragma", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "no-cache" + }, + { + "id": "banner_reverseproxy", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9EFAA7723BE1A40965DA1565254F9192734DB492EF6016601EB0E63EE3C42CCC" + }, + { + "id": "LOGJAM", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-android_70", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", + "port": "443", + "severity": "OK", + "finding": "A+" }, { "id": "scanTime", "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" + "severity": "INFO", + "finding": "919" } ], "thirdparties": { - "trackers": [ - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2?t=1590207869815", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - } - ], - "cookies": [ - { - "name": "_pk_ses.160.22ad", - "value": "1", - "domain": "santepsy.etudiant.gouv.fr", - "path": "/", - "expires": 1702807782, - "size": 17, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.160.22ad", - "value": "d691e118e4e1bdf6.1702805982.", - "domain": "santepsy.etudiant.gouv.fr", - "path": "/", - "expires": 1736761182, - "size": 43, - "httpOnly": false, - "secure": true, - "session": false, - "sameSite": "None", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "accept-ranges": "bytes", - "cache-control": "no-cache, no-store, must-revalidate", - "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.data.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net data:;object-src 'none';script-src 'self' https://stats.data.gouv.fr/ 'sha256-4sJsjD6jok0r8RIemFeNZ1nEQfYv6qdzYIaUCTrSIhs=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net;script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/;connect-src 'self' https://nominatim.openstreetmap.org https://stats.data.gouv.fr/ https://client.axept.io/", - "content-type": "text/html; charset=UTF-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 09:39:41 GMT", - "etag": "W/\"66b-18c5d9009d0\"", - "expires": "0", - "feature-policy": "geolocation 'self'", - "last-modified": "Tue, 12 Dec 2023 10:26:10 GMT", - "origin-agent-cluster": "?1", - "permissions-policy": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()", - "pragma": "no-cache", - "referrer-policy": "no-referrer", - "server": "nginx", - "strict-transport-security": "max-age=31536000; includeSubdomains", - "vary": "Accept-Encoding", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "6817f91c-4235-4bb7-bfb0-2a6d1ff5c32f", - "x-xss-protection": "0" - }, - "endpoints": [ - { - "hostname": "santepsy.etudiant.gouv.fr", - "ip": "185.75.143.93", - "geoip": { - "city": { - "geoname_id": 2973317, - "names": { - "en": "Tassin-la-Demi-Lune", - "fr": "Tassin-la-Demi-Lune", - "pt-BR": "Tassin-la-Demi-Lune" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 5, - "latitude": 45.7556, - "longitude": 4.7838, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "69160" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 11071625, - "iso_code": "ARA", - "names": { - "en": "Auvergne-Rhone-Alpes", - "fr": "Auvergne-Rhône-Alpes" - } - }, - { - "geoname_id": 2987410, - "iso_code": "69", - "names": { - "de": "Rhône", - "en": "Rhône", - "es": "Ródano", - "fr": "Rhône", - "pt-BR": "Ródano" - } - } - ] - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", - "geoip": { - "city": { - "geoname_id": 4781530, - "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20190" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - } - ] + "trackers": null, + "cookies": null, + "headers": null }, "wappalyzer": { "urls": { @@ -310145,282 +312862,9 @@ } ] }, - "zap": { - "@programName": "ZAP", - "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:38:40", - "site": [ - { - "@name": "https://santepsy.etudiant.gouv.fr", - "@host": "santepsy.etudiant.gouv.fr", - "@port": "443", - "@ssl": "true", - "alerts": [ - { - "name": "CSP: Wildcard Directive", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "CSP: style-src unsafe-inline", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "Sub Resource Integrity Attribute Missing", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" - }, - { - "name": "Dangerous JS Functions", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" - }, - { - "name": "Deprecated Feature Policy Header Set", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The header has now been renamed to Permissions-Policy.

" - }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, - { - "name": "Base64 Disclosure", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" - }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, - { - "name": "Modern Web Application", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" - }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, - { - "name": "Sec-Fetch-Dest Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" - }, - { - "name": "Sec-Fetch-Mode Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" - }, - { - "name": "Sec-Fetch-Site Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" - }, - { - "name": "Sec-Fetch-User Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Storable but Non-Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" - } - ] - } - ] - }, + "zap": null, "nuclei": [], - "lhr": [ - { - "requestedUrl": "https://santepsy.etudiant.gouv.fr/", - "finalUrl": "https://santepsy.etudiant.gouv.fr/", - "fetchTime": "2023-12-17T09:38:54.374Z", - "runWarnings": [], - "categories": { - "performance": { - "title": "Performance", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "performance", - "score": 0.6497648239135743 - }, - "accessibility": { - "title": "Accessibility", - "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", - "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "accessibility", - "score": 0.87 - }, - "best-practices": { - "title": "Best Practices", - "supportedModes": [ - "navigation", - "timespan", - "snapshot" - ], - "id": "best-practices", - "score": 1 - }, - "seo": { - "title": "SEO", - "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", - "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", - "supportedModes": [ - "navigation", - "snapshot" - ], - "id": "seo", - "score": 0.92 - }, - "pwa": { - "title": "PWA", - "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", - "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", - "supportedModes": [ - "navigation" - ], - "id": "pwa", - "score": 0.2 - } - }, - "audits": { - "metrics": { - "id": "metrics", - "title": "Metrics", - "description": "Collects all available metrics.", - "score": null, - "scoreDisplayMode": "informative", - "numericValue": 1798, - "numericUnit": "millisecond", - "details": { - "type": "debugdata", - "items": [ - { - "firstContentfulPaint": 1798, - "firstMeaningfulPaint": 1798, - "largestContentfulPaint": 9126, - "interactive": 1798, - "speedIndex": 2241, - "totalBlockingTime": 0, - "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0016276295979817709, - "cumulativeLayoutShiftMainFrame": 0.0016276295979817709, - "totalCumulativeLayoutShift": 0.0016276295979817709, - "observedTimeOrigin": 0, - "observedTimeOriginTs": 377873708, - "observedNavigationStart": 0, - "observedNavigationStartTs": 377873708, - "observedFirstPaint": 631, - "observedFirstPaintTs": 378504933, - "observedFirstContentfulPaint": 631, - "observedFirstContentfulPaintTs": 378504933, - "observedFirstContentfulPaintAllFrames": 631, - "observedFirstContentfulPaintAllFramesTs": 378504933, - "observedFirstMeaningfulPaint": 631, - "observedFirstMeaningfulPaintTs": 378504933, - "observedLargestContentfulPaint": 1078, - "observedLargestContentfulPaintTs": 378951562, - "observedLargestContentfulPaintAllFrames": 1078, - "observedLargestContentfulPaintAllFramesTs": 378951562, - "observedTraceEnd": 3431, - "observedTraceEndTs": 381304592, - "observedLoad": 1122, - "observedLoadTs": 378995222, - "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 377874259, - "observedCumulativeLayoutShift": 0.0016276295979817709, - "observedCumulativeLayoutShiftMainFrame": 0.0016276295979817709, - "observedTotalCumulativeLayoutShift": 0.0016276295979817709, - "observedFirstVisualChange": 644, - "observedFirstVisualChangeTs": 378517708, - "observedLastVisualChange": 1477, - "observedLastVisualChangeTs": 379350708, - "observedSpeedIndex": 945, - "observedSpeedIndexTs": 378818347 - }, - { - "lcpInvalidated": false - } - ] - } - }, - "diagnostics": { - "id": "diagnostics", - "title": "Diagnostics", - "description": "Collection of useful page vitals.", - "score": null, - "scoreDisplayMode": "informative", - "details": { - "type": "debugdata", - "items": [ - { - "numRequests": 31, - "numScripts": 5, - "numStylesheets": 2, - "numFonts": 5, - "numTasks": 29, - "numTasksOver10ms": 1, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, - "numTasksOver500ms": 1, - "rtt": 0, - "throughput": 43683700.85745308, - "maxRtt": 85.756, - "maxServerLatency": 39.43100000000001, - "totalByteWeight": 2884817, - "totalTaskTime": 3427.053, - "mainDocumentTransferSize": 2546 - } - ] - } - } - } - } - ], + "lhr": null, "screenshot": true, "stats": { "grade": "A", @@ -310444,19 +312888,21 @@ "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://santepsy.etudiant.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://santepsy.etudiant.gouv.fr/politique-de-confidentialite" } ], "betagouv": { @@ -310503,33 +312949,26 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.983, - "apdexGrade": "B", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 3, - "lighthouse_performance": 0.6497648239135743, - "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.87, - "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 1, - "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.92, - "lighthouse_seoGrade": "A", - "lighthouse_pwa": 0.2, - "lighthouse_pwaGrade": "E", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-02-10T23:59:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": null, + "cookiesCount": null, + "trackersGrade": null, + "trackersCount": null, "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F" + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A" } }, { @@ -310539,7 +312978,7 @@ "http": { "url": "https://espace-membre.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 09:47:36 GMT", + "end_time": "Sun, 24 Dec 2023 09:49:39 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -310548,18 +312987,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 09:47:34 GMT", - "ETag": "\"a4ouczo2wme8a\"", + "Date": "Sun, 24 Dec 2023 09:49:38 GMT", + "ETag": "\"lfkns7z2ioedm\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "910e0b8c-2933-4eaa-aaba-dac728706197", + "X-Request-ID": "7464864a-cf08-45ce-8ad6-16174418c1c2", "x-nextjs-cache": "HIT" }, - "scan_id": 45548617, + "scan_id": 45763821, "score": 40, - "start_time": "Sun, 17 Dec 2023 09:47:31 GMT", + "start_time": "Sun, 24 Dec 2023 09:47:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -310753,77 +313192,77 @@ "testssl": [ { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -310831,7 +313270,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -310839,7 +313278,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -310847,7 +313286,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -310855,7 +313294,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -310863,7 +313302,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -310871,497 +313310,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702806565" + "finding": "1703411491" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -311369,7 +313808,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -311378,7 +313817,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -311387,7 +313826,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -311396,7 +313835,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -311405,7 +313844,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -311413,7 +313852,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -311422,7 +313861,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -311431,7 +313870,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -311440,7 +313879,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -311449,14 +313888,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -311465,7 +313904,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -311474,7 +313913,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -311483,7 +313922,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -311492,7 +313931,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -311501,7 +313940,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -311510,7 +313949,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -311519,7 +313958,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -311528,7 +313967,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -311537,7 +313976,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -311546,392 +313985,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311939,7 +314378,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311947,7 +314386,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311955,7 +314394,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311963,7 +314402,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -311971,7 +314410,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -311979,497 +314418,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702806664" + "finding": "1703411588" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -312477,7 +314916,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -312486,7 +314925,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -312495,7 +314934,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -312504,7 +314943,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -312513,7 +314952,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -312521,7 +314960,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -312530,7 +314969,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -312539,7 +314978,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -312548,7 +314987,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -312557,14 +314996,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -312573,7 +315012,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -312582,7 +315021,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312591,7 +315030,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312600,7 +315039,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312609,7 +315048,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312618,7 +315057,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -312627,7 +315066,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -312636,7 +315075,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -312645,7 +315084,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -312654,392 +315093,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313047,7 +315486,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313055,7 +315494,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313063,7 +315502,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313071,7 +315510,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313079,7 +315518,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313087,497 +315526,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702806766" + "finding": "1703411687" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -313585,7 +316024,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -313594,7 +316033,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -313603,7 +316042,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -313612,7 +316051,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -313621,7 +316060,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -313629,7 +316068,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -313638,7 +316077,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -313647,7 +316086,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -313656,7 +316095,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -313665,14 +316104,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -313681,7 +316120,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -313690,7 +316129,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313699,7 +316138,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313708,7 +316147,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313717,7 +316156,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313726,7 +316165,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -313735,7 +316174,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -313744,7 +316183,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -313753,7 +316192,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -313762,392 +316201,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -314155,7 +316594,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -314163,7 +316602,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -314171,7 +316610,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -314179,7 +316618,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -314187,7 +316626,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -314195,497 +316634,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "72 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702806865" + "finding": "1703411784" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -314693,7 +317132,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -314702,7 +317141,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -314711,7 +317150,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -314720,7 +317159,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -314729,7 +317168,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -314737,7 +317176,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -314746,7 +317185,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -314755,7 +317194,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -314764,7 +317203,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -314773,14 +317212,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -314789,7 +317228,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -314798,7 +317237,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -314807,7 +317246,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -314816,7 +317255,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -314825,7 +317264,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -314834,7 +317273,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -314843,7 +317282,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -314852,7 +317291,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -314861,7 +317300,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -314870,325 +317309,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "406" + "finding": "393" } ], "thirdparties": { @@ -315198,18 +317637,18 @@ "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 09:48:07 GMT", - "etag": "\"a4ouczo2wme8a\"", + "date": "Sun, 24 Dec 2023 09:50:15 GMT", + "etag": "\"lfkns7z2ioedm\"", "strict-transport-security": "max-age=31536000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "005aeee1-e820-4591-8b55-3c3bd6735d3b" + "x-request-id": "4a967ad2-da59-4ca9-9924-4784609caad7" }, "endpoints": [ { "hostname": "espace-membre.incubateur.net", - "ip": "185.21.194.105", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -315396,7 +317835,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:47:05", + "@generated": "Sun, 24 Dec 2023 09:47:32", "site": [ { "@name": "https://espace-membre.incubateur.net", @@ -315518,7 +317957,7 @@ { "requestedUrl": "https://espace-membre.incubateur.net/", "finalUrl": "https://espace-membre.incubateur.net/", - "fetchTime": "2023-12-17T09:47:19.522Z", + "fetchTime": "2023-12-24T09:47:46.878Z", "runWarnings": [], "categories": { "performance": { @@ -315581,53 +318020,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5210, + "numericValue": 5215, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1357, - "firstMeaningfulPaint": 1357, - "largestContentfulPaint": 5461, - "interactive": 5210, - "speedIndex": 5155, - "totalBlockingTime": 54, - "maxPotentialFID": 154, + "firstContentfulPaint": 1355, + "firstMeaningfulPaint": 1355, + "largestContentfulPaint": 5452, + "interactive": 5215, + "speedIndex": 5049, + "totalBlockingTime": 56, + "maxPotentialFID": 159, "cumulativeLayoutShift": 0.0002758246527777778, "cumulativeLayoutShiftMainFrame": 0.0002758246527777778, "totalCumulativeLayoutShift": 0.0005167100694444444, "observedTimeOrigin": 0, - "observedTimeOriginTs": 260030541, + "observedTimeOriginTs": 249806543, "observedNavigationStart": 0, - "observedNavigationStartTs": 260030541, - "observedFirstPaint": 967, - "observedFirstPaintTs": 260997655, - "observedFirstContentfulPaint": 967, - "observedFirstContentfulPaintTs": 260997655, - "observedFirstContentfulPaintAllFrames": 967, - "observedFirstContentfulPaintAllFramesTs": 260997655, - "observedFirstMeaningfulPaint": 967, - "observedFirstMeaningfulPaintTs": 260997655, - "observedLargestContentfulPaint": 2594, - "observedLargestContentfulPaintTs": 262624974, - "observedLargestContentfulPaintAllFrames": 2594, - "observedLargestContentfulPaintAllFramesTs": 262624974, - "observedTraceEnd": 5239, - "observedTraceEndTs": 265269192, - "observedLoad": 1591, - "observedLoadTs": 261621463, - "observedDomContentLoaded": 962, - "observedDomContentLoadedTs": 260992853, + "observedNavigationStartTs": 249806543, + "observedFirstPaint": 898, + "observedFirstPaintTs": 250704982, + "observedFirstContentfulPaint": 898, + "observedFirstContentfulPaintTs": 250704982, + "observedFirstContentfulPaintAllFrames": 898, + "observedFirstContentfulPaintAllFramesTs": 250704982, + "observedFirstMeaningfulPaint": 898, + "observedFirstMeaningfulPaintTs": 250704982, + "observedLargestContentfulPaint": 2519, + "observedLargestContentfulPaintTs": 252325325, + "observedLargestContentfulPaintAllFrames": 2519, + "observedLargestContentfulPaintAllFramesTs": 252325325, + "observedTraceEnd": 5134, + "observedTraceEndTs": 254940795, + "observedLoad": 1152, + "observedLoadTs": 250958428, + "observedDomContentLoaded": 887, + "observedDomContentLoadedTs": 250693745, "observedCumulativeLayoutShift": 0.0002758246527777778, "observedCumulativeLayoutShiftMainFrame": 0.0002758246527777778, "observedTotalCumulativeLayoutShift": 0.0005167100694444444, - "observedFirstVisualChange": 975, - "observedFirstVisualChangeTs": 261005541, - "observedLastVisualChange": 2775, - "observedLastVisualChangeTs": 262805541, - "observedSpeedIndex": 2356, - "observedSpeedIndexTs": 262386671 + "observedFirstVisualChange": 900, + "observedFirstVisualChangeTs": 250706543, + "observedLastVisualChange": 2683, + "observedLastVisualChangeTs": 252489543, + "observedSpeedIndex": 2280, + "observedSpeedIndexTs": 252086416 }, { "lcpInvalidated": false @@ -315645,23 +318084,23 @@ "type": "debugdata", "items": [ { - "numRequests": 48, - "numScripts": 24, + "numRequests": 49, + "numScripts": 25, "numStylesheets": 2, "numFonts": 4, - "numTasks": 861, - "numTasksOver10ms": 5, + "numTasks": 862, + "numTasksOver10ms": 7, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.322, - "throughput": 14666684.24382917, - "maxRtt": 153.61599999999999, - "maxServerLatency": 6.960999999999984, - "totalByteWeight": 835386, - "totalTaskTime": 289.3979999999994, - "mainDocumentTransferSize": 4593 + "rtt": 136.211, + "throughput": 11864766.54777595, + "maxRtt": 136.35799999999998, + "maxServerLatency": 4.30600000000004, + "totalByteWeight": 836341, + "totalTaskTime": 306.1400000000002, + "mainDocumentTransferSize": 4622 } ] } @@ -315747,7 +318186,7 @@ "http": { "url": "https://trackdechets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:34:19 GMT", + "end_time": "Sun, 24 Dec 2023 05:39:54 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -315759,7 +318198,7 @@ "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 05:34:17 GMT", + "Date": "Sun, 24 Dec 2023 05:39:52 GMT", "ETag": "W/\"162ca-18c1564d190\"", "Last-Modified": "Tue, 28 Nov 2023 10:06:18 GMT", "Origin-Agent-Cluster": "?1", @@ -315771,12 +318210,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "DENY", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "a276d629-2e47-4b36-a39e-2d0e8d175a20", + "X-Request-ID": "9e8ba199-5195-4696-97c6-b53db3144bdc", "X-XSS-Protection": "0" }, - "scan_id": 45542104, + "scan_id": 45758166, "score": 50, - "start_time": "Sun, 17 Dec 2023 05:34:14 GMT", + "start_time": "Sun, 24 Dec 2023 05:39:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -315793,16 +318232,16 @@ ], "connect-src": [ "https://formations.trackdechets.beta.gouv.fr", - "'self'", - "https://plausible.trackdechets.beta.gouv.fr/" + "https://plausible.trackdechets.beta.gouv.fr/", + "'self'" ], "default-src": [ "'self'" ], "font-src": [ - "'self'", "https:", - "data:" + "data:", + "'self'" ], "form-action": [ "'self'" @@ -315811,31 +318250,31 @@ "'none'" ], "frame-src": [ - "*.sibforms.com", - "*.trackdechets.beta.gouv.fr", + "youtube.com", "www.youtube.com", - "youtube.com" + "*.sibforms.com", + "*.trackdechets.beta.gouv.fr" ], "img-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "object-src": [ "'none'" ], "script-src": [ "stats.data.gouv.fr", - "'self'", "'unsafe-inline'", - "https://plausible.trackdechets.beta.gouv.fr/" + "https://plausible.trackdechets.beta.gouv.fr/", + "'self'" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'self'", + "https:", "'unsafe-inline'", - "https:" + "'self'" ], "upgrade-insecure-requests": [ "'none'" @@ -316026,15 +318465,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T10:00:41Z", - "next_check_at": "2023-12-17T10:05:41Z", + "last_check_at": "2023-12-24T10:11:24Z", + "next_check_at": "2023-12-24T10:16:22Z", "mute_until": null, "favicon_url": "https://trackdechets.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:15:56Z", + "tested_at": "2023-12-24T09:41:38Z", "expires_at": "2024-01-24T21:06:07Z", "valid": true, "error": null @@ -316043,11 +318482,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 82, - "connection": 75, - "handshake": 79, - "response": 77, - "total": 313 + "namelookup": 150, + "connection": 115, + "handshake": 123, + "response": 117, + "total": 505 } }, "uptimeGrade": "A", @@ -316080,77 +318519,77 @@ "testssl": [ { "id": "service", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -316158,7 +318597,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -316166,7 +318605,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -316174,7 +318613,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -316182,7 +318621,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -316190,7 +318629,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -316198,539 +318637,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-26 21:06" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-24 21:06" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702807065" + "finding": "1703412278" }, { "id": "HSTS_multiple", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self';connect-src 'self' https://formations.trackdechets.beta.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;base-uri 'self';font-src 'self' https: data:;frame-ancestors 'none';frame-src youtube.com www.youtube.com *.sibforms.com *.trackdechets.beta.gouv.fr;img-src 'self' data:;script-src 'self' 'unsafe-inline' stats.data.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;style-src 'self' https: 'unsafe-inline';form-action 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -316738,7 +319177,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -316747,7 +319186,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -316756,7 +319195,7 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -316765,7 +319204,7 @@ }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -316774,7 +319213,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -316782,7 +319221,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -316791,7 +319230,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -316800,7 +319239,7 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -316809,7 +319248,7 @@ }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -316818,14 +319257,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -316834,7 +319273,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -316843,7 +319282,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -316852,7 +319291,7 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -316861,7 +319300,7 @@ }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -316870,7 +319309,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -316879,7 +319318,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -316888,7 +319327,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -316897,7 +319336,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -316906,7 +319345,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -316915,392 +319354,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317308,7 +319747,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317316,7 +319755,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317324,7 +319763,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317332,7 +319771,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -317340,7 +319779,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -317348,539 +319787,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-26 21:06" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-24 21:06" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702807121" + "finding": "1703412377" }, { "id": "HSTS_multiple", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self';connect-src 'self' https://formations.trackdechets.beta.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;base-uri 'self';font-src 'self' https: data:;frame-ancestors 'none';frame-src youtube.com www.youtube.com *.sibforms.com *.trackdechets.beta.gouv.fr;img-src 'self' data:;script-src 'self' 'unsafe-inline' stats.data.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;style-src 'self' https: 'unsafe-inline';form-action 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -317888,7 +320327,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -317897,7 +320336,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -317906,7 +320345,7 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -317915,7 +320354,7 @@ }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -317924,7 +320363,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -317932,7 +320371,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -317941,7 +320380,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -317950,7 +320389,7 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -317959,7 +320398,7 @@ }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -317968,14 +320407,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -317984,7 +320423,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -317993,7 +320432,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -318002,7 +320441,7 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -318011,7 +320450,7 @@ }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -318020,7 +320459,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -318029,7 +320468,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -318038,7 +320477,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -318047,7 +320486,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -318056,7 +320495,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -318065,325 +320504,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "114" + "finding": "203" } ], "thirdparties": { @@ -318396,7 +320835,7 @@ "content-type": "text/html; charset=UTF-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 09:57:04 GMT", + "date": "Sun, 24 Dec 2023 10:03:21 GMT", "etag": "W/\"162ca-18c1564d190\"", "last-modified": "Tue, 28 Nov 2023 10:06:18 GMT", "origin-agent-cluster": "?1", @@ -318407,7 +320846,7 @@ "x-download-options": "noopen", "x-frame-options": "DENY", "x-permitted-cross-domain-policies": "none", - "x-request-id": "ba7883b5-ad4a-4928-9a70-079aabdd38d9", + "x-request-id": "04ff3174-8baf-43ae-9515-5d38326e41eb", "x-xss-protection": "0" }, "endpoints": [ @@ -318693,7 +321132,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 09:56:24", + "@generated": "Sun, 24 Dec 2023 10:02:41", "site": [ { "@name": "https://trackdechets.beta.gouv.fr", @@ -318826,22 +321265,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -318857,28 +321297,28 @@ "type": "dns", "host": "trackdechets.beta.gouv.fr.", "matched-at": "trackdechets.beta.gouv.fr", - "timestamp": "2023-12-17T10:00:07.682818758Z", + "extracted-results": [ + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." + ], + "timestamp": "2023-12-24T10:08:09.761616124Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -318887,36 +321327,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "trackdechets.beta.gouv.fr.", - "matched-at": "_dmarc.trackdechets.beta.gouv.fr", + "matched-at": "trackdechets.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T10:00:07.912443082Z", + "timestamp": "2023-12-24T10:08:09.766705441Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -318932,29 +321372,28 @@ "type": "dns", "host": "trackdechets.beta.gouv.fr.", "matched-at": "trackdechets.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"Sendinblue-code:0b86c28461d8da9c177594d98ac6ccb7\"", - "\"google-site-verification=ESaQrbdx4A2KgYsn6CXN26Y7iTqtkYJBIAdWCqm0t9w\"" - ], - "timestamp": "2023-12-17T10:00:08.663021268Z", + "timestamp": "2023-12-24T10:08:09.895674337Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -318963,37 +321402,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "trackdechets.beta.gouv.fr.", - "matched-at": "trackdechets.beta.gouv.fr", + "matched-at": "_dmarc.trackdechets.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T10:00:08.821160546Z", + "timestamp": "2023-12-24T10:08:09.899368055Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -319010,10 +321448,11 @@ "host": "trackdechets.beta.gouv.fr.", "matched-at": "trackdechets.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"google-site-verification=ESaQrbdx4A2KgYsn6CXN26Y7iTqtkYJBIAdWCqm0t9w\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"Sendinblue-code:0b86c28461d8da9c177594d98ac6ccb7\"" ], - "timestamp": "2023-12-17T10:00:08.977234767Z", + "timestamp": "2023-12-24T10:08:10.761195072Z", "matcher-status": true }, { @@ -319042,7 +321481,7 @@ "GET,HEAD" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:00:15.850871424Z", + "timestamp": "2023-12-24T10:08:23.722423299Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319076,7 +321515,7 @@ "Gatsby 2.28.0" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:00:50.947067192Z", + "timestamp": "2023-12-24T10:09:21.567880802Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319103,7 +321542,7 @@ "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:00:51.294451364Z", + "timestamp": "2023-12-24T10:09:21.90529088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319130,7 +321569,7 @@ "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:00:51.294487701Z", + "timestamp": "2023-12-24T10:09:21.905333921Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319162,12 +321601,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:01:00.984785885Z", + "timestamp": "2023-12-24T10:09:38.056575789Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319199,12 +321638,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:01:00.984829406Z", + "timestamp": "2023-12-24T10:09:38.056624219Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319236,12 +321675,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:01:00.984846498Z", + "timestamp": "2023-12-24T10:09:38.056641762Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319278,7 +321717,7 @@ "https://plausible.trackdechets.beta.gouv.fr/js/script.outbound-links.js?original=/js/index.js" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:01:23.789986963Z", + "timestamp": "2023-12-24T10:10:12.184879502Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: trackdechets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr/'", "matcher-status": true }, @@ -319318,7 +321757,7 @@ "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr/", "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:01:34.105024905Z", + "timestamp": "2023-12-24T10:10:28.112250942Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: trackdechets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr/'", "matcher-status": true }, @@ -319333,7 +321772,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -319348,7 +321788,7 @@ "Let's Encrypt" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:04:41.379706558Z", + "timestamp": "2023-12-24T10:13:51.219678616Z", "matcher-status": true }, { @@ -319362,7 +321802,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -319377,7 +321818,7 @@ "trackdechets.beta.gouv.fr" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:04:41.379834617Z", + "timestamp": "2023-12-24T10:13:51.219854635Z", "matcher-status": true }, { @@ -319392,7 +321833,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -319407,7 +321849,7 @@ "tls12" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:04:43.114639044Z", + "timestamp": "2023-12-24T10:13:56.847644843Z", "matcher-status": true }, { @@ -319422,7 +321864,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -319437,7 +321880,7 @@ "tls13" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T10:04:43.287505758Z", + "timestamp": "2023-12-24T10:13:57.159584976Z", "matcher-status": true } ], @@ -319445,7 +321888,7 @@ { "requestedUrl": "https://trackdechets.beta.gouv.fr/", "finalUrl": "https://trackdechets.beta.gouv.fr/", - "fetchTime": "2023-12-17T09:56:38.294Z", + "fetchTime": "2023-12-24T10:02:55.462Z", "runWarnings": [], "categories": { "performance": { @@ -319508,53 +321951,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1705, + "numericValue": 2228, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 953, - "firstMeaningfulPaint": 1705, - "largestContentfulPaint": 3284, - "interactive": 1705, - "speedIndex": 953, + "firstContentfulPaint": 1024, + "firstMeaningfulPaint": 2228, + "largestContentfulPaint": 2905, + "interactive": 2228, + "speedIndex": 1098, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.1255101185904609, - "cumulativeLayoutShiftMainFrame": 0.1255101185904609, - "totalCumulativeLayoutShift": 0.1255101185904609, + "cumulativeLayoutShift": 0.11550786251491972, + "cumulativeLayoutShiftMainFrame": 0.11550786251491972, + "totalCumulativeLayoutShift": 0.11550786251491972, "observedTimeOrigin": 0, - "observedTimeOriginTs": 227740305, + "observedTimeOriginTs": 213652046, "observedNavigationStart": 0, - "observedNavigationStartTs": 227740305, - "observedFirstPaint": 89, - "observedFirstPaintTs": 227829334, - "observedFirstContentfulPaint": 89, - "observedFirstContentfulPaintTs": 227829334, - "observedFirstContentfulPaintAllFrames": 89, - "observedFirstContentfulPaintAllFramesTs": 227829334, - "observedFirstMeaningfulPaint": 285, - "observedFirstMeaningfulPaintTs": 228025513, - "observedLargestContentfulPaint": 345, - "observedLargestContentfulPaintTs": 228085714, - "observedLargestContentfulPaintAllFrames": 345, - "observedLargestContentfulPaintAllFramesTs": 228085714, - "observedTraceEnd": 3017, - "observedTraceEndTs": 230757237, - "observedLoad": 343, - "observedLoadTs": 228082981, + "observedNavigationStartTs": 213652046, + "observedFirstPaint": 31, + "observedFirstPaintTs": 213683074, + "observedFirstContentfulPaint": 31, + "observedFirstContentfulPaintTs": 213683074, + "observedFirstContentfulPaintAllFrames": 31, + "observedFirstContentfulPaintAllFramesTs": 213683074, + "observedFirstMeaningfulPaint": 661, + "observedFirstMeaningfulPaintTs": 214313506, + "observedLargestContentfulPaint": 614, + "observedLargestContentfulPaintTs": 214265878, + "observedLargestContentfulPaintAllFrames": 614, + "observedLargestContentfulPaintAllFramesTs": 214265878, + "observedTraceEnd": 3637, + "observedTraceEndTs": 217289452, + "observedLoad": 656, + "observedLoadTs": 214308446, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 227740935, - "observedCumulativeLayoutShift": 0.1255101185904609, - "observedCumulativeLayoutShiftMainFrame": 0.1255101185904609, - "observedTotalCumulativeLayoutShift": 0.1255101185904609, - "observedFirstVisualChange": 100, - "observedFirstVisualChangeTs": 227840305, - "observedLastVisualChange": 1333, - "observedLastVisualChangeTs": 229073305, - "observedSpeedIndex": 382, - "observedSpeedIndexTs": 228122041 + "observedDomContentLoadedTs": 213652775, + "observedCumulativeLayoutShift": 0.11550786251491972, + "observedCumulativeLayoutShiftMainFrame": 0.11550786251491972, + "observedTotalCumulativeLayoutShift": 0.11550786251491972, + "observedFirstVisualChange": 39, + "observedFirstVisualChangeTs": 213691046, + "observedLastVisualChange": 1939, + "observedLastVisualChangeTs": 215591046, + "observedSpeedIndex": 487, + "observedSpeedIndexTs": 214139267 }, { "lcpInvalidated": false @@ -319576,19 +322019,19 @@ "numScripts": 9, "numStylesheets": 0, "numFonts": 4, - "numTasks": 15, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.43599999999999, - "throughput": 11448476.466139674, - "maxRtt": 81.207, - "maxServerLatency": 51.47699999999999, - "totalByteWeight": 402412, - "totalTaskTime": 1.6829999999999998, - "mainDocumentTransferSize": 29453 + "rtt": 149.68, + "throughput": 6454398.186298723, + "maxRtt": 150.21599999999998, + "maxServerLatency": 121.57800000000006, + "totalByteWeight": 402374, + "totalTaskTime": 2.998, + "mainDocumentTransferSize": 29429 } ] } @@ -319725,33 +322168,33 @@ "http": { "url": "https://transport.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:56:51 GMT", + "end_time": "Sun, 24 Dec 2023 06:02:29 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Sozu-Id": "01HHV5JGCRF4KN842GBPRZ277H", + "Sozu-Id": "01HJD6NTYZFSWQS4DZGKC4BBHE", "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-length": "8537", - "content-security-policy": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-XOocTRdm6IWlZw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", + "content-length": "8539", + "content-security-policy": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-Ev1jILaBHkHNMw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", "content-type": "text/html; charset=utf-8", "cross-origin-window-policy": "deny", - "date": "Sun, 17 Dec 2023 05:56:50 GMT", + "date": "Sun, 24 Dec 2023 06:02:27 GMT", "server": "Cowboy", - "set-cookie": "_transport_key=SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYMENnTnk1bGUtekRod0FPdE5qWFc2MkFsbQAAAAZsb2NhbGVtAAAAAmZy.sbJQbiEdaqhdwbotPfpcx765PgtZskV5VEqKX78XES4; path=/; expires=Mon, 01 Jan 2024 05:56:50 GMT; max-age=1296000; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_transport_key=SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYMWxyVUJCamw0X21ZaW1Pekx5QW5qdm56bQAAAAZsb2NhbGVtAAAAAmZy.Yz1UEkdlkTYy3JEW7eUHO09PtT-ESZA29QBMOLxN7Kc; path=/; expires=Mon, 08 Jan 2024 06:02:27 GMT; max-age=1296000; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000", "vary": "accept-encoding", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "F6GI24QuqIAqoSgDpWnD", + "x-request-id": "F6OvOg2C5Ssi1JkBtW3k", "x-xss-protection": "1; mode=block" }, - "scan_id": 45542941, + "scan_id": 45759088, "score": 80, - "start_time": "Sun, 17 Dec 2023 05:56:47 GMT", + "start_time": "Sun, 24 Dec 2023 06:02:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -319776,27 +322219,27 @@ "https://www.dailymotion.com/" ], "img-src": [ + "https://static.data.gouv.fr", "'self'", "data:", - "https://api.mapbox.com", + "https://*.dmcdn.net", "https://www.data.gouv.fr", - "https://static.data.gouv.fr", - "https://*.dmcdn.net" + "https://api.mapbox.com" ], "report-uri": [ "https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" ], "script-src": [ + "'unsafe-inline'", "'self'", "'unsafe-eval'", - "'unsafe-inline'", "https://stats.data.gouv.fr/matomo.js" ], "style-src": [ + "'nonce-ev1jilabhkhnmw'", "'sha256-mmuum7+pin7rz79eumm0omufwjcx6nz97rdjoibtnag='", "'self'", - "'sha256-9uoguazm3j6w7+fh2wfvji8p7zxcclrw5tvuu3qkza0='", - "'nonce-xooctrdm6iwlzw'" + "'sha256-9uoguazm3j6w7+fh2wfvji8p7zxcclrw5tvuu3qkza0='" ] }, "http": true, @@ -319839,7 +322282,7 @@ "data": { "_transport_key": { "domain": "transport.data.gouv.fr", - "expires": 1704088611, + "expires": 1704693748, "httponly": true, "max-age": null, "path": "/", @@ -319995,15 +322438,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T10:16:11Z", - "next_check_at": "2023-12-17T10:21:11Z", + "last_check_at": "2023-12-24T10:37:02Z", + "next_check_at": "2023-12-24T10:42:00Z", "mute_until": null, "favicon_url": "https://transport.data.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T10:11:14Z", + "tested_at": "2023-12-24T10:32:08Z", "expires_at": "2024-02-13T17:46:58Z", "valid": true, "error": null @@ -320012,11 +322455,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 448, - "connection": 132, - "handshake": 139, - "response": 145, - "total": 864 + "namelookup": 355, + "connection": 108, + "handshake": 116, + "response": 121, + "total": 701 } }, "uptimeGrade": "A", @@ -320137,70 +322580,70 @@ "testssl": [ { "id": "service", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320208,7 +322651,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320216,7 +322659,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320224,7 +322667,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -320232,7 +322675,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -320240,7 +322683,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -320248,553 +322691,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "04CA0DA5AF08AA3B71E52F89E8FBA36C25C6" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "301C947E91FEC516CA287ED5018790D764CF8FEB" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "cert", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "WARN", "finding": "Unexpected 429 Too Many Requests @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702807666" + "finding": "1703413450" }, { "id": "HSTS_time", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -320802,7 +323245,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -320811,7 +323254,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -320820,7 +323263,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -320829,7 +323272,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -320838,7 +323281,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -320846,7 +323289,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -320855,7 +323298,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -320864,7 +323307,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -320873,7 +323316,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -320882,14 +323325,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -320898,7 +323341,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -320907,7 +323350,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -320916,7 +323359,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -320925,7 +323368,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -320934,7 +323377,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -320943,7 +323386,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -320952,7 +323395,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -320961,7 +323404,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -320970,7 +323413,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -320979,315 +323422,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" @@ -321646,7 +324089,7 @@ "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -321884,14 +324327,14 @@ "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702807733" + "finding": "1703413504" }, { "id": "HSTS_time", @@ -322451,70 +324894,70 @@ }, { "id": "service", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322522,7 +324965,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322530,7 +324973,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322538,7 +324981,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -322546,7 +324989,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -322554,7 +324997,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -322562,553 +325005,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "04CA0DA5AF08AA3B71E52F89E8FBA36C25C6" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "301C947E91FEC516CA287ED5018790D764CF8FEB" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "cert", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "WARN", "finding": "Unexpected 429 Too Many Requests @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702807788" + "finding": "1703413566" }, { "id": "HSTS_time", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -323116,7 +325559,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -323125,7 +325568,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -323134,7 +325577,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -323143,7 +325586,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -323152,7 +325595,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -323160,7 +325603,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -323169,7 +325612,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -323178,7 +325621,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -323187,7 +325630,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -323196,14 +325639,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -323212,7 +325655,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -323221,7 +325664,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -323230,7 +325673,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -323239,7 +325682,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -323248,7 +325691,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -323257,7 +325700,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -323266,7 +325709,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -323275,7 +325718,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -323284,7 +325727,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -323293,385 +325736,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/46.252.181.103", + "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323679,7 +326122,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323687,7 +326130,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323695,7 +326138,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323703,7 +326146,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -323711,7 +326154,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -323719,553 +326162,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "04CA0DA5AF08AA3B71E52F89E8FBA36C25C6" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "301C947E91FEC516CA287ED5018790D764CF8FEB" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "cert", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE+jCCA+KgAwIBAgISBMoNpa8Iqjtx5S+J6PujbCXGMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxNzQ2NTlaFw0yNDAyMTMxNzQ2NThaMCExHzAdBgNVBAMTFnRyYW5zcG9ydC5kYXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuxBSmkltr6O5WfLtxCAs/qB6H9ZB1XDnCIaYapbsAUvvSW/hMzTiCkNYgODrN9WUst1TuxiMnopI1enVGEJIbRLC0tA3zEkUFJvAcXQ//+X8JH/dlnOm706Zd+d8dbCE9kTNBXELCgxBl0BR8SfoSaYH46o45OLJvWknvcBUjmY0J30UG+IECXxTI65H7wpUpF+XYORENnk+416jUlh3qWkcdmjs3q0Ogs5bZDNarA9iPbM219GnOxR3vHeyAwpei+9xnJiH9v2WY/A99h4kQ89wUrvul5WovkO2/884UK8ixTbxPgChw3dHuowTxUQH8iSRw+cGj9FzBr+KZF1nBAgMBAAGjggIZMIICFTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHEQEuWYIm6Rk8ZtZ7OWhTc13woPMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCEGA1UdEQQaMBiCFnRyYW5zcG9ydC5kYXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYvUTtyTAAAEAwBHMEUCIQDSH0mrKHfusGKcDD/23EVHTbTsCo7c3HB+4FX6rlU+VAIgDKGgkxNXk6fF+inInUa+GOCtBgWCzcbIQo0WG8enkJUAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYvUTtzJAAAEAwBIMEYCIQDd+P48/ZjRN7Q9CnlFSATKV0mGU0mcRtq96d1SdmZ+3wIhAPPZ1b0rSGQokb6S1mhIlVFTnY42gmACNeHjVvFAyapIMA0GCSqGSIb3DQEBCwUAA4IBAQA5VsPoT55xo5gqfj2mm24wgXKAJR+hs+KTzasR4xvUVdg56dLa5VaSaDVjoGwwR5cqpIXuAlEQKIs7y5ZAIoYVKRyLQ1en/Pct/4+irOYriFsS947mKbixh8jFsmQ7tksGU0orRnNeR/czA1FoRU+gkC2WBNfMgBcZZSkL/1iOIYelH7VbzzWL1qvaxlo5XX3xNQwVkatWq2Nnwd9ZxgvquVP2hnLAQkohQ3br8zB0EWpi4tKSe2XFoFdm9vTJ0bC2m503Bfs8KU0gUXo/ZGzNfFsg5r9epFYW5YDO/Uku1T1bD6VgLvBXyHlCLschI2KI4DxugMzdzNzmiirz4bXG\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "WARN", "finding": "Unexpected 429 Too Many Requests @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702807847" + "finding": "1703413622" }, { "id": "HSTS_time", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -324273,7 +326716,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -324282,7 +326725,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -324291,7 +326734,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -324300,7 +326743,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -324309,7 +326752,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -324317,7 +326760,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -324326,7 +326769,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -324335,7 +326778,7 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -324344,7 +326787,7 @@ }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -324353,14 +326796,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -324369,7 +326812,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -324378,7 +326821,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -324387,7 +326830,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -324396,7 +326839,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -324405,7 +326848,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -324414,7 +326857,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -324423,7 +326866,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -324432,7 +326875,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -324441,7 +326884,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -324450,343 +326893,343 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "transport.data.gouv.fr/185.42.117.109", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "244" + "finding": "232" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "sozu-id": "01HHVKWM0FFYYGX8S1X3FD24T2", + "sozu-id": "01HJDNKPZR67WQHCZEMAZAAZHH", "cache-control": "max-age=0, private, must-revalidate", "content-length": "0", - "date": "Sun, 17 Dec 2023 10:07:01 GMT", + "date": "Sun, 24 Dec 2023 10:23:26 GMT", "server": "Cowboy", "strict-transport-security": "max-age=31536000", - "x-request-id": "F6GWgpY9bzLKM5UFMjZh" + "x-request-id": "F6O9d-ecKZ4I3WAB0AZE" }, "endpoints": [ { "hostname": "transport.data.gouv.fr", - "ip": "46.252.181.103", + "ip": "185.42.117.108", "geoip": { "continent": { "code": "EU", @@ -325038,7 +327481,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:04:51", + "@generated": "Sun, 24 Dec 2023 10:21:20", "site": [ { "@name": "https://transport-data-gouv-fr-resource-history-prod.cellar-c2.services.clever-cloud.com", @@ -325052,6 +327495,13 @@ "confidence": "3", "riskdesc": "Low (High)", "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" } ] }, @@ -325241,45 +327691,6 @@ ] }, "nuclei": [ - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "transport.data.gouv.fr.", - "matched-at": "transport.data.gouv.fr", - "extracted-results": [ - "\"google-site-verification=2ynzGMtND4Fvl3yI4AaWnX7Okiin_uGWxxMOW3n-xw8\"", - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:_spf.scw-tem.cloud include:servers.mcsv.net -all\"" - ], - "timestamp": "2023-12-17T10:14:41.329934048Z", - "matcher-status": true - }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -325312,7 +327723,7 @@ "type": "dns", "host": "transport.data.gouv.fr.", "matched-at": "transport.data.gouv.fr", - "timestamp": "2023-12-17T10:14:41.333775196Z", + "timestamp": "2023-12-24T10:30:56.815418862Z", "matcher-status": true }, { @@ -325352,7 +327763,7 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T10:14:41.343907148Z", + "timestamp": "2023-12-24T10:30:56.822720299Z", "matcher-status": true }, { @@ -325392,7 +327803,7 @@ "extracted-results": [ "\"v=DMARC1;p=quarantine;\"" ], - "timestamp": "2023-12-17T10:14:41.413174283Z", + "timestamp": "2023-12-24T10:30:56.890219413Z", "matcher-status": true }, { @@ -325425,10 +327836,49 @@ "host": "transport.data.gouv.fr.", "matched-at": "transport.data.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T10:14:42.271176991Z", + "timestamp": "2023-12-24T10:30:57.230666806Z", + "matcher-status": true + }, + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "transport.data.gouv.fr.", + "matched-at": "transport.data.gouv.fr", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:_spf.scw-tem.cloud include:servers.mcsv.net -all\"", + "\"google-site-verification=2ynzGMtND4Fvl3yI4AaWnX7Okiin_uGWxxMOW3n-xw8\"" + ], + "timestamp": "2023-12-24T10:30:57.89416139Z", "matcher-status": true }, { @@ -325459,12 +327909,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187577267Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445213317Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325496,12 +327946,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187626118Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445255034Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325533,12 +327983,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187645023Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445273479Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325570,12 +328020,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187658148Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445288687Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325607,12 +328057,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187674328Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445303875Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325644,12 +328094,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187688725Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.44531743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325681,12 +328131,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187750852Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445329513Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325718,12 +328168,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187785366Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445341185Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325755,12 +328205,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.187828386Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445353137Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325792,12 +328242,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:15:22.1878572Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:31:38.445364918Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -325812,7 +328262,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -325826,8 +328277,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:17:09.461516178Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:35:17.62521582Z", "matcher-status": true }, { @@ -325841,7 +328292,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -325855,8 +328307,8 @@ "extracted-results": [ "transport.data.gouv.fr" ], - "ip": "46.252.181.104", - "timestamp": "2023-12-17T10:17:09.461646531Z", + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:35:17.625336354Z", "matcher-status": true }, { @@ -325871,7 +328323,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -325886,7 +328339,38 @@ "tls12" ], "ip": "46.252.181.103", - "timestamp": "2023-12-17T10:17:53.386791795Z", + "timestamp": "2023-12-24T10:35:18.501293267Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "transport.data.gouv.fr", + "matched-at": "transport.data.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "46.252.181.103", + "timestamp": "2023-12-24T10:35:26.818425317Z", "matcher-status": true } ], @@ -326018,15 +328502,15 @@ "http": { "url": "https://webinaire.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:48:17 GMT", - "grade": "C+", + "end_time": "Sun, 24 Dec 2023 01:46:00 GMT", + "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:48:15 GMT", + "Date": "Sun, 24 Dec 2023 01:45:58 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=15552000;preload", "Transfer-Encoding": "chunked", @@ -326036,13 +328520,13 @@ "X-Robots-Tag": "none", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45536974, - "score": 60, - "start_time": "Sun, 17 Dec 2023 01:44:21 GMT", + "scan_id": 45752430, + "score": 0, + "start_time": "Sun, 24 Dec 2023 01:45:55 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 3, - "tests_passed": 9, + "tests_failed": 5, + "tests_passed": 7, "tests_quantity": 12, "details": { "content-security-policy": { @@ -326090,9 +328574,9 @@ "sameSite": null }, "pass": false, - "result": "cookies-session-without-secure-flag-but-protected-by-hsts", - "score_description": "Session cookie set without the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -10 + "result": "cookies-session-without-secure-flag", + "score_description": "Session cookie set without using the Secure flag or set over HTTP", + "score_modifier": -40 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -326120,8 +328604,8 @@ "preloaded": false }, "pass": true, - "result": "hpkp-not-implemented", - "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "result": "hpkp-invalid-cert", + "score_description": "HTTP Public Key Pinning (HPKP) header cannot be set, as site contains an invalid certificate chain", "score_modifier": 0 }, "redirection": { @@ -326130,17 +328614,13 @@ "output": { "destination": "https://webinaire.numerique.gouv.fr/home", "redirects": true, - "route": [ - "http://webinaire.numerique.gouv.fr/", - "https://webinaire.numerique.gouv.fr/", - "https://webinaire.numerique.gouv.fr/home" - ], + "route": [], "status_code": 200 }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 + "pass": false, + "result": "redirection-invalid-cert", + "score_description": "Invalid certificate chain encountered during redirection", + "score_modifier": -20 }, "referrer-policy": { "expectation": "referrer-policy-private", @@ -326159,16 +328639,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15552000;preload", + "data": null, "includeSubDomains": false, - "max-age": 15552000, - "preload": true, + "max-age": null, + "preload": false, "preloaded": false }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -326221,7 +328701,7 @@ "url": "https://webinaire.numerique.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.977, + "uptime": 100, "down": false, "down_since": null, "error": null, @@ -326235,28 +328715,28 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T10:21:29Z", - "next_check_at": "2023-12-17T10:26:28Z", + "last_check_at": "2023-12-24T10:31:39Z", + "next_check_at": "2023-12-24T10:36:36Z", "mute_until": null, "favicon_url": "https://webinaire.numerique.gouv.fr/static/images/favicon.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T10:16:33Z", - "expires_at": "2024-02-13T21:03:29Z", - "valid": true, - "error": null + "tested_at": "2023-12-24T10:31:40Z", + "expires_at": "2024-11-22T22:59:59Z", + "valid": false, + "error": "error code 20: unable to get local issuer certificate" }, "metrics": { "apdex": 1, "timings": { - "redirect": 431, + "redirect": 305, "namelookup": 0, - "connection": 128, - "handshake": 147, - "response": 140, - "total": 845 + "connection": 95, + "handshake": 103, + "response": 112, + "total": 615 } }, "uptimeGrade": "A", @@ -326275,52 +328755,52 @@ "version": "7.9p1 Debian 10+deb10u2", "vulnerabilities": [ { - "is_exploit": "true", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", + "type": "exploitpack", "cvss": "5.8", - "type": "exploitpack" + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", + "is_exploit": "true" }, { - "is_exploit": "true", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", + "type": "exploitpack", "cvss": "5.8", - "type": "exploitpack" + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", + "is_exploit": "true" }, { - "is_exploit": "true", - "id": "EDB-ID:46516", + "type": "exploitdb", "cvss": "5.8", - "type": "exploitdb" + "id": "EDB-ID:46516", + "is_exploit": "true" }, { - "is_exploit": "true", - "id": "EDB-ID:46193", + "type": "exploitdb", "cvss": "5.8", - "type": "exploitdb" + "id": "EDB-ID:46193", + "is_exploit": "true" }, { - "is_exploit": "false", - "id": "CVE-2019-6111", + "type": "cve", "cvss": "5.8", - "type": "cve" + "id": "CVE-2019-6111", + "is_exploit": "false" }, { - "is_exploit": "true", - "id": "1337DAY-ID-32328", + "type": "zdt", "cvss": "5.8", - "type": "zdt" + "id": "1337DAY-ID-32328", + "is_exploit": "true" }, { - "is_exploit": "true", - "id": "1337DAY-ID-32009", + "type": "zdt", "cvss": "5.8", - "type": "zdt" + "id": "1337DAY-ID-32009", + "is_exploit": "true" }, { - "is_exploit": "true", - "id": "PACKETSTORM:151227", + "type": "packetstorm", "cvss": "0.0", - "type": "packetstorm" + "id": "PACKETSTORM:151227", + "is_exploit": "true" } ] } @@ -326630,8 +329110,8 @@ "id": "cert_keySize", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", - "severity": "OK", - "finding": "RSA 4096 bits (exponent is 65537)" + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", @@ -326645,77 +329125,77 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "0486569294E9F27BC39947DC67B8755E6D26" + "finding": "F7AC1FA9A91022648AE23FBB214A3011" }, { "id": "cert_serialNumberLen", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "18" + "finding": "16" }, { "id": "cert_fingerprintSHA1", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "33DCD43567D180508B43B7076408A554914AC411" + "finding": "92AB44C716A4C875205AD27FD2801CAB614FD621" }, { "id": "cert_fingerprintSHA256", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "38777306482A6B45DD4C79EDDC3A9B16F0503208CB417B6BEC724F67F5D70B7E" + "finding": "E40BA99A37B439485A51A72D68EFD3302D2587FD4414DAC841E447B6891B7A9F" }, { "id": "cert", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIIVDCCBjygAwIBAgIRAPesH6mpECJkiuI/uyFKMBEwDQYJKoZIhvcNAQELBQAweTELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURISU1ZT1RJUzEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEdMBsGA1UEYQwUTlRSRlItNDgxNDYzMDgxMDAwMzYxGTAXBgNVBAMMEENlcnRpZ25hIFdpbGQgQ0EwHhcNMjMxMTIzMjMwMDAwWhcNMjQxMTIyMjI1OTU5WjBtMQswCQYDVQQGEwJGUjEOMAwGA1UEBwwFUEFSSVMxJjAkBgNVBAoMHUdPVVZFUk5FTUVOVCBQUkVNSUVSIE1JTklTVFJFMSYwJAYDVQQDDB0qLndlYmluYWlyZS5udW1lcmlxdWUuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKy46tOIXY7t6aNg/1MS0up9biBiDw56O4tPsmA+d4Zcz8h3AsKQYqIJcXKTDBiIxflxqAw+3x5aPRJWTOjxfOeiuYhJCTljhkKltzFoeZvdL3PIljjOvoigMcuNUToEjxCBCbogelXYJ2vDGhq+N6LfIyHta1qtBgpcEpWkwvQ3ezmrorhD/mT7JMOO88nnOpTHy01WymcIMZJNS/+N/UrQm6j+aJQ9/Hdvp3DGe50QYD9KjZGe1+aWlouGGD3DGtlEQv5Na5f3e5Z8wIkz5AK9dWXeCQXdpz7JjnVxQmfGSs4VF+OWd6Ul4ssCS6DqO8OnZI1lGVbfXMoi+jhKWk0CAwEAAaOCA+EwggPdMIHUBggrBgEFBQcBAQSBxzCBxDAyBggrBgEFBQcwAoYmaHR0cDovL2F1dG9yaXRlLmNlcnRpZ25hLmZyL3dpbGRjYS5kZXIwNAYIKwYBBQUHMAKGKGh0dHA6Ly9hdXRvcml0ZS5kaGlteW90aXMuY29tL3dpbGRjYS5kZXIwLAYIKwYBBQUHMAGGIGh0dHA6Ly93aWxkY2Eub2NzcC5kaGlteW90aXMuY29tMCoGCCsGAQUFBzABhh5odHRwOi8vd2lsZGNhLm9jc3AuY2VydGlnbmEuZnIwHwYDVR0jBBgwFoAUjnwXt7z3w7SY1rY1mSIqxMOeJGcwCQYDVR0TBAIwADBhBgNVHSAEWjBYMAgGBmeBDAECAjBMBgsqgXoBgTECBwECATA9MDsGCCsGAQUFBwIBFi9odHRwczovL3d3dy5jZXJ0aWduYS5jb20vYXV0b3JpdGUtY2VydGlmaWNhdGlvbjBdBgNVHR8EVjBUMCegJaAjhiFodHRwOi8vY3JsLmNlcnRpZ25hLmZyL3dpbGRjYS5jcmwwKaAnoCWGI2h0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS93aWxkY2EuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAOBgNVHQ8BAf8EBAMCBaAwRQYDVR0RBD4wPIIdKi53ZWJpbmFpcmUubnVtZXJpcXVlLmdvdXYuZnKCG3dlYmluYWlyZS5udW1lcmlxdWUuZ291di5mcjAdBgNVHQ4EFgQUK82+87xgK1m9TjGOdr8JuSTYLHIwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjAF+A28AAAQDAEcwRQIgG8ys4WoaLtpAVrdyNqXj8LdN5N6xv2hIzDkNR5OfpB4CIQDQ2t6EpJ6lASRpB5eM7TxcCqeswncSPJsPi3vzep7ymAB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjAF+A+MAAAQDAEgwRgIhAIknmoMon/L0PaFWXWodoMwdswMnJdLbM7cHz1nbQc3qAiEAiPtiICNEjDCn6YQVZkp2jGqwypEXGsi5bIBqC1szeOoAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYwBfgmtAAAEAwBHMEUCIQCMOj+O6uFuiFHC5RMqgML9KUQcjHPioPg7al33bkGnawIgAW/0bkQofBGpN00pMKPOUo31qeRSTRD1AKGzJIDQeNkwDQYJKoZIhvcNAQELBQADggIBAJizjaKY6KMTjHeeTvy85vZPwynnDrtljZtgx6oAj+cPHdK5MB0wagc50qbwUFpvYh7T71fOtkmLqydnspnlWU28ZD+CHTOvloueInSsveKc87BwevP8OKB7lZcLZarZhdV91LcqtKijxghbeV4MljKBNmrZu9E/PQgSi+PlyBaeZRzYyEPg1vvWKCqiQ5JfAHI2TFHnymM0YEzRQl8xgslV/BSbW5TwFvNjlZI/kVze0JJV0/jU7hco53szTW/4IV9f8Zk8/KOHbBVytjQWSkrtOOPIvazC62Lr5OUv8R/5xZ0wvf7GtRnK1qrN0Z9gnnbh8c2VYiQFOBIcI55JCDcJAjIehkbGlIH9zEm45lFA8nLRAA5C5wx59Rew6/wL84A2qoRALtvoi/qmWKw0RalkuoRJt4nHJcvhnVlGhB79VfN95symgrTAaTBLzCy7t/vTZyQwV/MIEAbmNIrCm6vi78IItmMODzn65yCN7sw2WeZgNpiuRHEmtQccviwc1Tw50ICsBuFY7IJ0jp3+iCHKYgnU9r32Pnp756hUQy8LRaIH8cVn8hR9Qovwxj9Gfb29fPJcJ2nrGtQ5r7PSTFogJBVD+pqNpB18kzTHzWEMeL0HGbGtCBD2ZBbD6umq2y8VD64BEfztSEetnV0CFVeVz1itWTNX6HFPPjo7xGSx\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "webinaire.numerique.gouv.fr" + "finding": "*.webinaire.numerique.gouv.fr" }, { "id": "cert_commonName_wo_SNI", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "webinaire.numerique.gouv.fr" + "finding": "*.webinaire.numerique.gouv.fr" }, { "id": "cert_subjectAltName", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "authent.webinaire.numerique.gouv.fr webinaire.numerique.gouv.fr" + "finding": "*.webinaire.numerique.gouv.fr webinaire.numerique.gouv.fr" }, { "id": "cert_trust", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (same w/o SNI)" + "finding": "Ok via SAN (same w/o SNI)" }, { "id": "cert_chain_of_trust", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", - "severity": "OK", - "finding": "passed." + "severity": "CRITICAL", + "finding": "failed (chain incomplete)." }, { "id": "cert_certificatePolicies_EV", @@ -326729,21 +329209,21 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "334 >= 60 days" }, { "id": "cert_notBefore", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "2023-11-15 21:03" + "finding": "2023-11-23 23:00" }, { "id": "cert_notAfter", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "2024-02-13 21:03" + "finding": "2024-11-22 22:59" }, { "id": "cert_extlifeSpan", @@ -326764,14 +329244,14 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "--" + "finding": "http://crl.certigna.fr/wildca.crl http://crl.dhimyotis.com/wildca.crl" }, { "id": "cert_ocspURL", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "http://r3.o.lencr.org" + "finding": "http://wildca.ocsp.dhimyotis.com http://wildca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", @@ -326806,7 +329286,7 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "3" + "finding": "1" }, { "id": "certs_list_ordering_problem", @@ -326820,91 +329300,7 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "webinaire.numerique.gouv.fr/51.15.207.28", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" + "finding": "Certigna Wild CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", @@ -326925,14 +329321,14 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "1702808241" + "finding": "1703413624" }, { "id": "HSTS_time", @@ -327140,7 +329536,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=38777306482A6B45DD4C79EDDC3A9B16F0503208CB417B6BEC724F67F5D70B7E" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E40BA99A37B439485A51A72D68EFD3302D2587FD4414DAC841E447B6891B7A9F" }, { "id": "LOGJAM", @@ -327460,63 +329856,70 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "protocol_support_score_weighted", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "key_exchange_score", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "0" }, { "id": "key_exchange_score_weighted", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "30" + "finding": "0" }, { "id": "cipher_strength_score", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "90" + "finding": "0" }, { "id": "cipher_strength_score_weighted", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "36" + "finding": "0" }, { "id": "final_score", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "96" + "finding": "0" }, { "id": "overall_grade", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", - "severity": "OK", - "finding": "A+" + "severity": "CRITICAL", + "finding": "T" + }, + { + "id": "grade_cap_reason_1", + "ip": "webinaire.numerique.gouv.fr/51.15.207.28", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "105" } ], "thirdparties": { @@ -327524,7 +329927,7 @@ "cookies": [ { "name": "session", - "value": "eyJjdXJyZW50X3Byb3ZpZGVyIjoiZGVmYXVsdCJ9.ZX7Kcg.ojBtNIkBeFxzZ_b0XI1RHYv6Gaw", + "value": "eyJjdXJyZW50X3Byb3ZpZGVyIjoiZGVmYXVsdCJ9.ZYgHEg.kV1XZN9LT03T0B2vgGoPCZ70Pac", "domain": "webinaire.numerique.gouv.fr", "path": "/", "expires": -1, @@ -327541,7 +329944,7 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 10:16:18 GMT", + "date": "Sun, 24 Dec 2023 10:25:22 GMT", "server": "nginx", "strict-transport-security": "max-age=15552000;preload", "transfer-encoding": "chunked", @@ -327664,7 +330067,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:15:38", + "@generated": "Sun, 24 Dec 2023 10:24:41", "site": [ { "@name": "https://webinaire.numerique.gouv.fr", @@ -327832,23 +330235,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -327864,30 +330266,26 @@ "type": "dns", "host": "webinaire.numerique.gouv.fr.", "matched-at": "webinaire.numerique.gouv.fr", - "extracted-results": [ - "10 securemail1.akio.com.", - "20 securemail2.akio.com." - ], - "timestamp": "2023-12-17T10:18:23.516813317Z", + "timestamp": "2023-12-24T10:28:21.664623509Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -327903,26 +330301,30 @@ "type": "dns", "host": "webinaire.numerique.gouv.fr.", "matched-at": "webinaire.numerique.gouv.fr", - "timestamp": "2023-12-17T10:18:23.599850117Z", + "extracted-results": [ + "\"v=spf1 include:spf.akio.cloud ip4:193.51.147.16/28 ~all\"" + ], + "timestamp": "2023-12-24T10:28:22.658118313Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -327939,9 +330341,10 @@ "host": "webinaire.numerique.gouv.fr.", "matched-at": "webinaire.numerique.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.akio.cloud ip4:193.51.147.16/28 ~all\"" + "10 securemail1.akio.com.", + "20 securemail2.akio.com." ], - "timestamp": "2023-12-17T10:18:24.507906852Z", + "timestamp": "2023-12-24T10:28:22.665006283Z", "matcher-status": true }, { @@ -327967,10 +330370,10 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "extracted-results": [ - "HEAD, OPTIONS, GET" + "OPTIONS, HEAD, GET" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:18:30.92374162Z", + "timestamp": "2023-12-24T10:28:34.433009821Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328009,7 +330412,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:18:35.932746393Z", + "timestamp": "2023-12-24T10:28:42.733863727Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328050,7 +330453,7 @@ "1; mode=block" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:18:35.933910329Z", + "timestamp": "2023-12-24T10:28:42.734962816Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328077,7 +330480,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:18:59.974671611Z", + "timestamp": "2023-12-24T10:29:21.341483009Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328104,7 +330507,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:00.018666382Z", + "timestamp": "2023-12-24T10:29:21.407835059Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328136,12 +330539,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692533854Z", + "timestamp": "2023-12-24T10:29:37.448202261Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328173,12 +330576,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.69258524Z", + "timestamp": "2023-12-24T10:29:37.448258986Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328210,12 +330613,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692605639Z", + "timestamp": "2023-12-24T10:29:37.448279665Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328247,12 +330650,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692621649Z", + "timestamp": "2023-12-24T10:29:37.448299903Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328284,12 +330687,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692724764Z", + "timestamp": "2023-12-24T10:29:37.448318808Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328321,12 +330724,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692744Z", + "timestamp": "2023-12-24T10:29:37.448335338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328358,12 +330761,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692758237Z", + "timestamp": "2023-12-24T10:29:37.448350978Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328395,12 +330798,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:09.692792501Z", + "timestamp": "2023-12-24T10:29:37.448365986Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328437,7 +330840,7 @@ "https://rizomo.numerique.gouv.fr/scripts/widget" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:25.525097364Z", + "timestamp": "2023-12-24T10:30:04.481019968Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: webinaire.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr/'", "matcher-status": true }, @@ -328477,7 +330880,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/", "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:32.71902512Z", + "timestamp": "2023-12-24T10:30:16.346395449Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: webinaire.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr/'", "matcher-status": true }, @@ -328527,7 +330930,38 @@ "SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:53.491030167Z", + "timestamp": "2023-12-24T10:30:49.554892686Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "webinaire.numerique.gouv.fr", + "matched-at": "webinaire.numerique.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "51.15.207.28", + "timestamp": "2023-12-24T10:30:57.029440055Z", "matcher-status": true }, { @@ -328541,7 +330975,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -328553,10 +330988,10 @@ "host": "webinaire.numerique.gouv.fr", "matched-at": "webinaire.numerique.gouv.fr:443", "extracted-results": [ - "Let's Encrypt" + "DHIMYOTIS" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:55.746800657Z", + "timestamp": "2023-12-24T10:30:57.06840577Z", "matcher-status": true }, { @@ -328570,7 +331005,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -328582,41 +331018,46 @@ "host": "webinaire.numerique.gouv.fr", "matched-at": "webinaire.numerique.gouv.fr:443", "extracted-results": [ - "authent.webinaire.numerique.gouv.fr", + "*.webinaire.numerique.gouv.fr", "webinaire.numerique.gouv.fr" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:55.746927525Z", + "timestamp": "2023-12-24T10:30:57.068520684Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/wildcard-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/wildcard-tls", + "template-id": "wildcard-tls", + "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Wildcard TLS Certificate", "author": [ - "pdteam", - "pussycat0x" + "lucky0x0d" ], "tags": [ - "ssl" + "ssl", + "wildcard", + "tls" + ], + "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "webinaire.numerique.gouv.fr", "matched-at": "webinaire.numerique.gouv.fr:443", "extracted-results": [ - "tls12" + "CN: *.webinaire.numerique.gouv.fr", + " SAN: [*.webinaire.numerique.gouv.fr webinaire.numerique.gouv.fr]" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:56.904484005Z", + "timestamp": "2023-12-24T10:30:57.068564837Z", "matcher-status": true }, { @@ -328631,7 +331072,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -328646,7 +331088,7 @@ "tls13" ], "ip": "51.15.207.28", - "timestamp": "2023-12-17T10:19:57.095775456Z", + "timestamp": "2023-12-24T10:30:58.593043332Z", "matcher-status": true } ], @@ -328654,7 +331096,7 @@ { "requestedUrl": "https://webinaire.numerique.gouv.fr/", "finalUrl": "https://webinaire.numerique.gouv.fr/home", - "fetchTime": "2023-12-17T10:15:52.816Z", + "fetchTime": "2023-12-24T10:24:55.401Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://webinaire.numerique.gouv.fr/) was redirected to https://webinaire.numerique.gouv.fr/home. Try testing the second URL directly." ], @@ -328667,7 +331109,7 @@ "snapshot" ], "id": "performance", - "score": 0.9467042922973633 + "score": 0.9361322402954102 }, "accessibility": { "title": "Accessibility", @@ -328678,7 +331120,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.97 + "score": 0.8 }, "best-practices": { "title": "Best Practices", @@ -328699,7 +331141,7 @@ "snapshot" ], "id": "seo", - "score": 0.73 + "score": 0.67 }, "pwa": { "title": "PWA", @@ -328719,53 +331161,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6578, + "numericValue": 6736, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6578, - "firstMeaningfulPaint": 6578, - "largestContentfulPaint": 6655, - "interactive": 6578, - "speedIndex": 6578, + "firstContentfulPaint": 6736, + "firstMeaningfulPaint": 6736, + "largestContentfulPaint": 6811, + "interactive": 6736, + "speedIndex": 7224, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.01320934549967448, - "cumulativeLayoutShiftMainFrame": 0.01320934549967448, - "totalCumulativeLayoutShift": 0.01320934549967448, + "cumulativeLayoutShift": 0.011818613688151042, + "cumulativeLayoutShiftMainFrame": 0.011818613688151042, + "totalCumulativeLayoutShift": 0.011818613688151042, "observedTimeOrigin": 0, - "observedTimeOriginTs": 240515281, + "observedTimeOriginTs": 431378737, "observedNavigationStart": 0, - "observedNavigationStartTs": 240515281, - "observedFirstPaint": 1095, - "observedFirstPaintTs": 241610483, - "observedFirstContentfulPaint": 1095, - "observedFirstContentfulPaintTs": 241610483, - "observedFirstContentfulPaintAllFrames": 1095, - "observedFirstContentfulPaintAllFramesTs": 241610483, - "observedFirstMeaningfulPaint": 1095, - "observedFirstMeaningfulPaintTs": 241610483, - "observedLargestContentfulPaint": 1095, - "observedLargestContentfulPaintTs": 241610483, - "observedLargestContentfulPaintAllFrames": 1095, - "observedLargestContentfulPaintAllFramesTs": 241610483, - "observedTraceEnd": 3719, - "observedTraceEndTs": 244234383, - "observedLoad": 1411, - "observedLoadTs": 241925782, - "observedDomContentLoaded": 1077, - "observedDomContentLoadedTs": 241592585, - "observedCumulativeLayoutShift": 0.01320934549967448, - "observedCumulativeLayoutShiftMainFrame": 0.01320934549967448, - "observedTotalCumulativeLayoutShift": 0.01320934549967448, - "observedFirstVisualChange": 1091, - "observedFirstVisualChangeTs": 241606281, - "observedLastVisualChange": 1708, - "observedLastVisualChangeTs": 242223281, - "observedSpeedIndex": 1100, - "observedSpeedIndexTs": 241615002 + "observedNavigationStartTs": 431378737, + "observedFirstPaint": 2075, + "observedFirstPaintTs": 433453825, + "observedFirstContentfulPaint": 2075, + "observedFirstContentfulPaintTs": 433453825, + "observedFirstContentfulPaintAllFrames": 2075, + "observedFirstContentfulPaintAllFramesTs": 433453825, + "observedFirstMeaningfulPaint": 2075, + "observedFirstMeaningfulPaintTs": 433453825, + "observedLargestContentfulPaint": 2075, + "observedLargestContentfulPaintTs": 433453825, + "observedLargestContentfulPaintAllFrames": 2075, + "observedLargestContentfulPaintAllFramesTs": 433453825, + "observedTraceEnd": 5146, + "observedTraceEndTs": 436524848, + "observedLoad": 2839, + "observedLoadTs": 434217364, + "observedDomContentLoaded": 2066, + "observedDomContentLoadedTs": 433444627, + "observedCumulativeLayoutShift": 0.011818613688151042, + "observedCumulativeLayoutShiftMainFrame": 0.011818613688151042, + "observedTotalCumulativeLayoutShift": 0.011818613688151042, + "observedFirstVisualChange": 2070, + "observedFirstVisualChangeTs": 433448737, + "observedLastVisualChange": 2687, + "observedLastVisualChangeTs": 434065737, + "observedSpeedIndex": 2092, + "observedSpeedIndexTs": 433470327 }, { "lcpInvalidated": false @@ -328783,22 +331225,22 @@ "type": "debugdata", "items": [ { - "numRequests": 22, - "numScripts": 4, + "numRequests": 29, + "numScripts": 5, "numStylesheets": 6, "numFonts": 4, - "numTasks": 590, + "numTasks": 698, "numTasksOver10ms": 2, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.94, - "throughput": 20607157.759090506, - "maxRtt": 84.38, - "maxServerLatency": 9.85899999999998, - "totalByteWeight": 1327999, - "totalTaskTime": 146.842, + "rtt": 149.385, + "throughput": 10377334.199148633, + "maxRtt": 149.833, + "maxServerLatency": 9.421999999999997, + "totalByteWeight": 1383427, + "totalTaskTime": 169.2899999999995, "mainDocumentTransferSize": 2899 } ] @@ -328843,8 +331285,10 @@ "slug": "pc", "mention": "Données personnelles", "maxScore": 4, - "score": 4, - "missingWords": [], + "score": 3, + "missingWords": [ + "durée de conservation" + ], "missingTrackers": [], "declarationUrl": "https://webinaire.numerique.gouv.fr/donnees_personnelles" } @@ -328853,28 +331297,28 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "C+", + "httpGrade": "F", "apdex": 1, "apdexGrade": "A", - "uptime": 99.977, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "D", "nmapOpenPortsCount": 5, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2024-02-13T21:03:00.000Z", - "testsslGrade": "A+", + "testsslExpireDate": "2024-11-22T22:59:00.000Z", + "testsslGrade": "T", "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9467042922973633, + "lighthouse_performance": 0.9361322402954102, "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.97, - "lighthouse_accessibilityGrade": "A", + "lighthouse_accessibility": 0.8, + "lighthouse_accessibilityGrade": "B", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.73, + "lighthouse_seo": 0.67, "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", @@ -328883,7 +331327,7 @@ "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "D", - "declaration-rgpd-pc": "A" + "declaration-rgpd-pc": "D" } }, { @@ -328960,7 +331404,7 @@ "type": "dns", "host": "www.peps.beta.gouv.fr.", "matched-at": "www.peps.beta.gouv.fr", - "timestamp": "2023-12-17T10:30:43.623061567Z", + "timestamp": "2023-12-24T10:37:26.590033551Z", "matcher-status": true } ], @@ -329075,7 +331519,7 @@ "http": { "url": "https://www.rdv-solidarites.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:53:48 GMT", + "end_time": "Sun, 24 Dec 2023 01:48:33 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -329085,24 +331529,24 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:53:47 GMT", - "ETag": "W/\"eb5984280d67134910b3886aba862748\"", + "Date": "Sun, 24 Dec 2023 01:48:32 GMT", + "ETag": "W/\"a9076726a5ef3698c2be0f47ddfa54fa\"", "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_lapin_session_id=5912f216ba96116c6f499a73deebb58e; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_lapin_session_id=21c989bae23f34a2d16a88ad2285ddf1; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "36544d3e-6a95-41f7-a635-6cc521a88548, 36544d3e-6a95-41f7-a635-6cc521a88548", - "X-Runtime": "0.012201", + "X-Request-ID": "138cac3c-7baa-448f-99bb-4c6f0e7117e9, 138cac3c-7baa-448f-99bb-4c6f0e7117e9", + "X-Runtime": "0.015187", "X-XSS-Protection": "0" }, - "scan_id": 45537097, + "scan_id": 45752469, "score": 50, - "start_time": "Sun, 17 Dec 2023 01:53:44 GMT", + "start_time": "Sun, 24 Dec 2023 01:48:29 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -329119,11 +331563,11 @@ "blob:" ], "connect-src": [ - "cdnjs.cloudflare.com", - "etalab-tiles.fr", "'self'", + "api-adresse.data.gouv.fr", "stats.data.gouv.fr", - "api-adresse.data.gouv.fr" + "etalab-tiles.fr", + "cdnjs.cloudflare.com" ], "default-src": [ "'self'" @@ -329138,34 +331582,34 @@ "*.instatus.com" ], "img-src": [ - "stats.data.gouv.fr", "'self'", - "data:", "voxusagers.numerique.gouv.fr", - "blob:" + "blob:", + "stats.data.gouv.fr", + "data:" ], "object-src": [ "'none'" ], "script-src": [ - "api.mapbox.com", - "lb.apicit.net", - "fidoapi.com", - "'unsafe-inline'", "'self'", + "lb.apicit.net", "data1.gryplex.com", + "api-adresse.data.gouv.fr", + "blob:", "data1.ollapges.com", + "'unsafe-inline'", "stats.data.gouv.fr", "tags.clickintext.net", - "blob:", - "api-adresse.data.gouv.fr" + "fidoapi.com", + "api.mapbox.com" ], "style-src": [ - "cdnjs.cloudflare.com", - "api.mapbox.com", + "'self'", "*.bootstrapcdn.com", "'unsafe-inline'", - "'self'" + "cdnjs.cloudflare.com", + "api.mapbox.com" ], "worker-src": [ "blob:" @@ -329367,32 +331811,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T10:40:15Z", - "next_check_at": "2023-12-17T10:45:14Z", + "last_check_at": "2023-12-24T10:59:12Z", + "next_check_at": "2023-12-24T11:04:10Z", "mute_until": null, "favicon_url": "https://www.rdv-solidarites.fr/assets/favicon/favicon-a933d69b078f2d798a5fee2eeb0a8e97de10b68c24a6e5af3a2b8b727e14d73d.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:55:28Z", + "tested_at": "2023-12-24T10:19:21Z", "expires_at": "2024-02-17T15:48:10Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.958, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 75, - "connection": 147, - "handshake": 150, - "response": 244, - "total": 615 + "namelookup": 41, + "connection": 120, + "handshake": 126, + "response": 137, + "total": 424 } }, "uptimeGrade": "A", - "apdexGrade": "E" + "apdexGrade": "A" }, "nmap": { "host": "www.rdv-solidarites.fr", @@ -329421,77 +331865,77 @@ "testssl": [ { "id": "service", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329499,7 +331943,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329507,7 +331951,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329515,7 +331959,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -329523,7 +331967,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -329531,7 +331975,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -329539,539 +331983,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702809161" + "finding": "1703414912" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -330079,7 +332523,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -330088,7 +332532,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -330097,7 +332541,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -330106,7 +332550,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -330115,7 +332559,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -330123,7 +332567,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -330132,7 +332576,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -330141,7 +332585,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -330150,7 +332594,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -330159,14 +332603,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -330175,7 +332619,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -330184,7 +332628,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -330193,7 +332637,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -330202,7 +332646,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -330211,7 +332655,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -330220,7 +332664,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -330229,7 +332673,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -330238,7 +332682,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -330247,7 +332691,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -330256,392 +332700,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/80.247.12.255", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330649,7 +333093,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330657,7 +333101,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330665,7 +333109,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -330673,7 +333117,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -330681,7 +333125,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -330689,539 +333133,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702809214" + "finding": "1703414970" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -331229,7 +333673,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -331238,7 +333682,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -331247,7 +333691,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -331256,7 +333700,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -331265,7 +333709,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -331273,7 +333717,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -331282,7 +333726,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -331291,7 +333735,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -331300,7 +333744,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -331309,14 +333753,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -331325,7 +333769,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -331334,7 +333778,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -331343,7 +333787,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -331352,7 +333796,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -331361,7 +333805,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -331370,7 +333814,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -331379,7 +333823,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -331388,7 +333832,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -331397,7 +333841,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -331406,392 +333850,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -331799,7 +334243,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -331807,7 +334251,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -331815,7 +334259,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -331823,7 +334267,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -331831,7 +334275,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -331839,539 +334283,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702809268" + "finding": "1703415027" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -332379,7 +334823,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -332388,7 +334832,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -332397,7 +334841,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -332406,7 +334850,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -332415,7 +334859,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -332423,7 +334867,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -332432,7 +334876,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -332441,7 +334885,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -332450,7 +334894,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -332459,14 +334903,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -332475,7 +334919,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -332484,7 +334928,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -332493,7 +334937,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -332502,7 +334946,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -332511,7 +334955,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -332520,7 +334964,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -332529,7 +334973,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -332538,7 +334982,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -332547,7 +334991,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -332556,392 +335000,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332949,7 +335393,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332957,7 +335401,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332965,7 +335409,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332973,7 +335417,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -332981,7 +335425,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -332989,539 +335433,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702809322" + "finding": "1703415085" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -333529,7 +335973,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -333538,7 +335982,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -333547,7 +335991,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -333556,7 +336000,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -333565,7 +336009,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -333573,7 +336017,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -333582,7 +336026,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -333591,7 +336035,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -333600,7 +336044,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -333609,14 +336053,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -333625,7 +336069,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -333634,7 +336078,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -333643,7 +336087,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -333652,7 +336096,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -333661,7 +336105,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -333670,7 +336114,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -333679,7 +336123,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -333688,7 +336132,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -333697,7 +336141,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -333706,325 +336150,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "www.rdv-solidarites.fr/80.247.13.145", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "218" + "finding": "234" } ], "thirdparties": { @@ -334032,10 +336476,10 @@ "cookies": [ { "name": "_pk_id.123.afa7", - "value": "625b39ba44486f90.1702809104.", + "value": "2fc58957d6682478.1703414852.", "domain": "www.rdv-solidarites.fr", "path": "/", - "expires": 1736764304, + "expires": 1737370052, "size": 43, "httpOnly": false, "secure": false, @@ -334050,7 +336494,7 @@ "value": "1", "domain": "www.rdv-solidarites.fr", "path": "/", - "expires": 1702810904, + "expires": 1703416652, "size": 17, "httpOnly": false, "secure": false, @@ -334062,7 +336506,7 @@ }, { "name": "_lapin_session_id", - "value": "e1fca741fd46d31499a1684bc0e8ba76", + "value": "9b90ac4e133351e34ef42c649a1c38a5", "domain": "www.rdv-solidarites.fr", "path": "/", "expires": -1, @@ -334081,23 +336525,23 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 10:31:42 GMT", - "etag": "W/\"4c692f56ff299e2a49655f817882b900\"", + "date": "Sun, 24 Dec 2023 10:47:31 GMT", + "etag": "W/\"98ae97d18479f1f5639e02037c1b051d\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_lapin_session_id=e1fca741fd46d31499a1684bc0e8ba76; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_lapin_session_id=9b90ac4e133351e34ef42c649a1c38a5; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-permitted-cross-domain-policies": "none", - "x-request-id": "a47fcd41-25df-4a9f-b786-70eaead39540\na47fcd41-25df-4a9f-b786-70eaead39540", - "x-runtime": "0.014149", + "x-request-id": "830fad9b-2f48-4524-882f-04490f3cd884\n830fad9b-2f48-4524-882f-04490f3cd884", + "x-runtime": "0.017352", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "www.rdv-solidarites.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -334277,7 +336721,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:31:03", + "@generated": "Sun, 24 Dec 2023 10:46:49", "site": [ { "@name": "https://www.rdv-solidarites.fr", @@ -334476,7 +336920,7 @@ "extracted-results": [ "production-rdv-solidarites.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T10:36:44.302548441Z", + "timestamp": "2023-12-24T10:52:56.048989578Z", "matcher-status": true }, { @@ -334511,7 +336955,7 @@ "type": "dns", "host": "www.rdv-solidarites.fr.", "matched-at": "www.rdv-solidarites.fr", - "timestamp": "2023-12-17T10:36:44.706969544Z", + "timestamp": "2023-12-24T10:52:56.273082684Z", "matcher-status": true }, { @@ -334548,8 +336992,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:36:56.501391395Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:09.804433334Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334575,8 +337019,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:19.055872718Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:37.454325942Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334612,8 +337056,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.774936561Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.988412755Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334649,8 +337093,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.774990161Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.988463009Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334686,8 +337130,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.775007724Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.988477045Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334723,8 +337167,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.77502134Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.988491632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334760,8 +337204,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.775036248Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.98850645Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334797,8 +337241,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:27.775052548Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:47.988522831Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -334825,8 +337269,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr/robots.txt", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:37.072736533Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:59.633982859Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/robots.txt'", "matcher-status": true }, @@ -334853,8 +337297,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr/robots.txt", - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:37.07640844Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:59.72701754Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/robots.txt'", "matcher-status": true }, @@ -334873,7 +337317,7 @@ "misc", "generic" ], - "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.", + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", "reference": [ "https://securitytxt.org/", "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" @@ -334881,7 +337325,8 @@ "severity": "info", "metadata": { "max-request": 2, - "shodan-query": "http.securitytxt:contact http.status:200" + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, "type": "http", @@ -334890,8 +337335,8 @@ "extracted-results": [ " mailto:support-incubateur@anct.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:37:37.083605083Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:53:59.809119219Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/.well-known/security.txt'", "matcher-status": true }, @@ -334906,7 +337351,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -334920,8 +337366,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:43:28.439496586Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:59:58.800579494Z", "matcher-status": true }, { @@ -334935,7 +337381,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -334949,8 +337396,8 @@ "extracted-results": [ "www.rdv-solidarites.fr" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:43:28.439607713Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T10:59:58.800706652Z", "matcher-status": true }, { @@ -334965,7 +337412,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -334979,8 +337427,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:43:30.846795319Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T11:00:00.20839925Z", "matcher-status": true }, { @@ -334995,7 +337443,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -335009,8 +337458,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T10:43:31.018793674Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T11:00:00.42453288Z", "matcher-status": true } ], @@ -335018,7 +337467,7 @@ { "requestedUrl": "https://www.rdv-solidarites.fr/", "finalUrl": "https://www.rdv-solidarites.fr/", - "fetchTime": "2023-12-17T10:31:17.113Z", + "fetchTime": "2023-12-24T10:47:03.285Z", "runWarnings": [], "categories": { "performance": { @@ -335081,53 +337530,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3062, + "numericValue": 2642, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2090, - "firstMeaningfulPaint": 2090, - "largestContentfulPaint": 2253, - "interactive": 3062, - "speedIndex": 2090, - "totalBlockingTime": 41, - "maxPotentialFID": 132, - "cumulativeLayoutShift": 0.0022073364257812504, - "cumulativeLayoutShiftMainFrame": 0.0022073364257812504, - "totalCumulativeLayoutShift": 0.0022073364257812504, + "firstContentfulPaint": 2161, + "firstMeaningfulPaint": 2161, + "largestContentfulPaint": 2426, + "interactive": 2642, + "speedIndex": 2336, + "totalBlockingTime": 14, + "maxPotentialFID": 77, + "cumulativeLayoutShift": 0.0029078884124755858, + "cumulativeLayoutShiftMainFrame": 0.0029078884124755858, + "totalCumulativeLayoutShift": 0.0029078884124755858, "observedTimeOrigin": 0, - "observedTimeOriginTs": 268924433, + "observedTimeOriginTs": 252848849, "observedNavigationStart": 0, - "observedNavigationStartTs": 268924433, - "observedFirstPaint": 670, - "observedFirstPaintTs": 269594650, - "observedFirstContentfulPaint": 670, - "observedFirstContentfulPaintTs": 269594650, - "observedFirstContentfulPaintAllFrames": 670, - "observedFirstContentfulPaintAllFramesTs": 269594650, - "observedFirstMeaningfulPaint": 670, - "observedFirstMeaningfulPaintTs": 269594650, - "observedLargestContentfulPaint": 670, - "observedLargestContentfulPaintTs": 269594650, - "observedLargestContentfulPaintAllFrames": 670, - "observedLargestContentfulPaintAllFramesTs": 269594650, - "observedTraceEnd": 3335, - "observedTraceEndTs": 272259622, - "observedLoad": 1029, - "observedLoadTs": 269953335, - "observedDomContentLoaded": 673, - "observedDomContentLoadedTs": 269597902, - "observedCumulativeLayoutShift": 0.0022073364257812504, - "observedCumulativeLayoutShiftMainFrame": 0.0022073364257812504, - "observedTotalCumulativeLayoutShift": 0.0022073364257812504, - "observedFirstVisualChange": 681, - "observedFirstVisualChangeTs": 269605433, - "observedLastVisualChange": 864, - "observedLastVisualChangeTs": 269788433, - "observedSpeedIndex": 685, - "observedSpeedIndexTs": 269609549 + "observedNavigationStartTs": 252848849, + "observedFirstPaint": 835, + "observedFirstPaintTs": 253683446, + "observedFirstContentfulPaint": 835, + "observedFirstContentfulPaintTs": 253683446, + "observedFirstContentfulPaintAllFrames": 835, + "observedFirstContentfulPaintAllFramesTs": 253683446, + "observedFirstMeaningfulPaint": 835, + "observedFirstMeaningfulPaintTs": 253683446, + "observedLargestContentfulPaint": 835, + "observedLargestContentfulPaintTs": 253683446, + "observedLargestContentfulPaintAllFrames": 835, + "observedLargestContentfulPaintAllFramesTs": 253683446, + "observedTraceEnd": 3537, + "observedTraceEndTs": 256386330, + "observedLoad": 1227, + "observedLoadTs": 254075821, + "observedDomContentLoaded": 829, + "observedDomContentLoadedTs": 253678076, + "observedCumulativeLayoutShift": 0.0029078884124755858, + "observedCumulativeLayoutShiftMainFrame": 0.0029078884124755858, + "observedTotalCumulativeLayoutShift": 0.0029078884124755858, + "observedFirstVisualChange": 841, + "observedFirstVisualChangeTs": 253689849, + "observedLastVisualChange": 990, + "observedLastVisualChangeTs": 253838849, + "observedSpeedIndex": 844, + "observedSpeedIndexTs": 253692852 }, { "lcpInvalidated": false @@ -335149,19 +337598,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 789, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasks": 790, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.709, - "throughput": 10111800.044355074, - "maxRtt": 84.83500000000001, - "maxServerLatency": 2.8189999999999884, - "totalByteWeight": 524312, - "totalTaskTime": 174.78799999999956, - "mainDocumentTransferSize": 4836 + "rtt": 99.45200000000001, + "throughput": 9503427.914179424, + "maxRtt": 101.098, + "maxServerLatency": 3.2109999999999985, + "totalByteWeight": 524670, + "totalTaskTime": 200.63899999999865, + "mainDocumentTransferSize": 4844 } ] } @@ -335214,8 +337663,8 @@ "sonarcloud": null, "summary": { "httpGrade": "C", - "apdex": 0.958, - "apdexGrade": "E", + "apdex": 1, + "apdexGrade": "A", "uptime": 99.977, "uptimeGrade": "A", "nmapGrade": "A", @@ -335253,7 +337702,7 @@ "http": { "url": "https://osmose.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:00:26 GMT", + "end_time": "Sun, 24 Dec 2023 01:55:51 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -335262,7 +337711,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html;charset=UTF-8", - "Date": "Sun, 17 Dec 2023 02:00:25 GMT", + "Date": "Sun, 24 Dec 2023 01:55:49 GMT", "Expires": "0", "Feature-Policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", @@ -335273,9 +337722,9 @@ "X-Content-Type-Options": "nosniff", "X-XSS-Protection": "1" }, - "scan_id": 45537187, + "scan_id": 45752569, "score": 55, - "start_time": "Sun, 17 Dec 2023 02:00:22 GMT", + "start_time": "Sun, 24 Dec 2023 01:55:46 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -335828,7 +338277,7 @@ "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "109 >= 60 days" + "finding": "102 >= 60 days" }, { "id": "cert_notBefore", @@ -336038,7 +338487,7 @@ "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "1702809236" + "finding": "1703414950" }, { "id": "HSTS_time", @@ -336644,7 +339093,7 @@ "cookies": [ { "name": "JSESSIONID", - "value": "43E268C051909D375745248E51C37D61.n1", + "value": "BCB8DC0BDA7D8EE9A2BAF1CC5AAB8C25.n1", "domain": "osmose.numerique.gouv.fr", "path": "/", "expires": -1, @@ -336661,7 +339110,7 @@ "cache-control": "no-cache, no-store, must-revalidate", "content-encoding": "gzip", "content-type": "text/html;charset=UTF-8", - "date": "Sun, 17 Dec 2023 10:32:50 GMT", + "date": "Sun, 24 Dec 2023 10:48:05 GMT", "expires": "0", "feature-policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", "permissions-policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", @@ -336983,7 +339432,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:32:08", + "@generated": "Sun, 24 Dec 2023 10:47:24", "site": [ { "@name": "https://osmose.numerique.gouv.fr", @@ -337060,22 +339509,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -337091,27 +339540,29 @@ "type": "dns", "host": "osmose.numerique.gouv.fr.", "matched-at": "osmose.numerique.gouv.fr", - "timestamp": "2023-12-17T10:35:12.742214595Z", + "extracted-results": [ + "\"v=spf1 include:spf.xsalto.com include:spf.akio.cloud ~all\"" + ], + "timestamp": "2023-12-24T10:50:27.717004454Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -337127,30 +339578,27 @@ "type": "dns", "host": "osmose.numerique.gouv.fr.", "matched-at": "osmose.numerique.gouv.fr", - "extracted-results": [ - "10 mx01.xsalto.net.", - "20 mx02.xsalto.net." - ], - "timestamp": "2023-12-17T10:35:12.757081378Z", + "timestamp": "2023-12-24T10:50:27.719373143Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -337167,9 +339615,10 @@ "host": "osmose.numerique.gouv.fr.", "matched-at": "osmose.numerique.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.xsalto.com include:spf.akio.cloud ~all\"" + "20 mx02.xsalto.net.", + "10 mx01.xsalto.net." ], - "timestamp": "2023-12-17T10:35:13.733724606Z", + "timestamp": "2023-12-24T10:50:28.708683231Z", "matcher-status": true }, { @@ -337207,7 +339656,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:35:26.850857721Z", + "timestamp": "2023-12-24T10:50:41.907100903Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337248,7 +339697,7 @@ "1" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:35:26.851866294Z", + "timestamp": "2023-12-24T10:50:41.907936688Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337282,7 +339731,7 @@ "Jalios JCMS - Copyright (C) Jalios S.A. 2001 - 2023 - https://www.jalios.com/" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:35:55.513919188Z", + "timestamp": "2023-12-24T10:51:11.483590174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337309,7 +339758,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:35:55.634717072Z", + "timestamp": "2023-12-24T10:51:11.605446776Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337336,7 +339785,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:35:55.634754683Z", + "timestamp": "2023-12-24T10:51:11.605493162Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337377,7 +339826,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:00.833230448Z", + "timestamp": "2023-12-24T10:51:16.916751855Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337409,12 +339858,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097424312Z", + "timestamp": "2023-12-24T10:51:24.274571849Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337446,12 +339895,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097475548Z", + "timestamp": "2023-12-24T10:51:24.274631481Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337483,12 +339932,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097505223Z", + "timestamp": "2023-12-24T10:51:24.274646449Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337520,12 +339969,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097522515Z", + "timestamp": "2023-12-24T10:51:24.274666256Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337557,12 +340006,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097538115Z", + "timestamp": "2023-12-24T10:51:24.274682957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337594,12 +340043,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.09755203Z", + "timestamp": "2023-12-24T10:51:24.27470065Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337631,12 +340080,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:08.097588549Z", + "timestamp": "2023-12-24T10:51:24.274717422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -337664,7 +340113,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/robots.txt", "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:19.894180348Z", + "timestamp": "2023-12-24T10:51:36.378783368Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr/robots.txt'", "matcher-status": true }, @@ -337683,7 +340132,7 @@ "misc", "generic" ], - "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.", + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", "reference": [ "https://securitytxt.org/", "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" @@ -337691,7 +340140,8 @@ "severity": "info", "metadata": { "max-request": 2, - "shodan-query": "http.securitytxt:contact http.status:200" + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, "type": "http", @@ -337701,7 +340151,7 @@ " https://www.jalios.com/jcms/reel_5010/en/contact-us" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:36:20.013730241Z", + "timestamp": "2023-12-24T10:51:36.470950296Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -337716,7 +340166,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -337731,7 +340182,7 @@ "DHIMYOTIS" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:38:22.839964021Z", + "timestamp": "2023-12-24T10:53:39.725368952Z", "matcher-status": true }, { @@ -337745,7 +340196,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -337761,7 +340213,7 @@ "osmose.numerique.gouv.fr" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:38:22.840128669Z", + "timestamp": "2023-12-24T10:53:39.725490069Z", "matcher-status": true }, { @@ -337796,7 +340248,7 @@ " SAN: [*.osmose.numerique.gouv.fr osmose.numerique.gouv.fr]" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:38:22.840179584Z", + "timestamp": "2023-12-24T10:53:39.725532248Z", "matcher-status": true }, { @@ -337811,7 +340263,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -337826,7 +340279,7 @@ "tls12" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:38:23.74480064Z", + "timestamp": "2023-12-24T10:53:40.251163343Z", "matcher-status": true }, { @@ -337841,7 +340294,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -337856,7 +340310,7 @@ "tls13" ], "ip": "148.253.96.234", - "timestamp": "2023-12-17T10:38:24.805945569Z", + "timestamp": "2023-12-24T10:53:41.308981673Z", "matcher-status": true } ], @@ -337864,7 +340318,7 @@ { "requestedUrl": "https://osmose.numerique.gouv.fr/", "finalUrl": "https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", - "fetchTime": "2023-12-17T10:32:22.384Z", + "fetchTime": "2023-12-24T10:47:38.304Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://osmose.numerique.gouv.fr/) was redirected to https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F. Try testing the second URL directly." ], @@ -337877,7 +340331,7 @@ "snapshot" ], "id": "performance", - "score": 0.6968572616577149 + "score": 0.6968469619750977 }, "accessibility": { "title": "Accessibility", @@ -337929,53 +340383,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11567, + "numericValue": 11610, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 11371, - "firstMeaningfulPaint": 11431, - "largestContentfulPaint": 11431, - "interactive": 11567, - "speedIndex": 11371, - "totalBlockingTime": 85, - "maxPotentialFID": 121, + "firstContentfulPaint": 11369, + "firstMeaningfulPaint": 11452, + "largestContentfulPaint": 11452, + "interactive": 11610, + "speedIndex": 11369, + "totalBlockingTime": 122, + "maxPotentialFID": 166, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 233119734, + "observedTimeOriginTs": 183398833, "observedNavigationStart": 0, - "observedNavigationStartTs": 233119734, - "observedFirstPaint": 1373, - "observedFirstPaintTs": 234492555, - "observedFirstContentfulPaint": 1373, - "observedFirstContentfulPaintTs": 234492555, - "observedFirstContentfulPaintAllFrames": 1373, - "observedFirstContentfulPaintAllFramesTs": 234492555, - "observedFirstMeaningfulPaint": 1373, - "observedFirstMeaningfulPaintTs": 234492555, - "observedLargestContentfulPaint": 1373, - "observedLargestContentfulPaintTs": 234492555, - "observedLargestContentfulPaintAllFrames": 1373, - "observedLargestContentfulPaintAllFramesTs": 234492555, - "observedTraceEnd": 3895, - "observedTraceEndTs": 237015162, - "observedLoad": 1487, - "observedLoadTs": 234606319, - "observedDomContentLoaded": 1366, - "observedDomContentLoadedTs": 234485815, + "observedNavigationStartTs": 183398833, + "observedFirstPaint": 1329, + "observedFirstPaintTs": 184727854, + "observedFirstContentfulPaint": 1329, + "observedFirstContentfulPaintTs": 184727854, + "observedFirstContentfulPaintAllFrames": 1329, + "observedFirstContentfulPaintAllFramesTs": 184727854, + "observedFirstMeaningfulPaint": 1329, + "observedFirstMeaningfulPaintTs": 184727854, + "observedLargestContentfulPaint": 1329, + "observedLargestContentfulPaintTs": 184727854, + "observedLargestContentfulPaintAllFrames": 1329, + "observedLargestContentfulPaintAllFramesTs": 184727854, + "observedTraceEnd": 3845, + "observedTraceEndTs": 187243389, + "observedLoad": 1444, + "observedLoadTs": 184842376, + "observedDomContentLoaded": 1323, + "observedDomContentLoadedTs": 184721752, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1370, - "observedFirstVisualChangeTs": 234489734, - "observedLastVisualChange": 3870, - "observedLastVisualChangeTs": 236989734, - "observedSpeedIndex": 1447, - "observedSpeedIndexTs": 234566284 + "observedFirstVisualChange": 1327, + "observedFirstVisualChangeTs": 184725833, + "observedLastVisualChange": 3827, + "observedLastVisualChangeTs": 187225833, + "observedSpeedIndex": 1403, + "observedSpeedIndexTs": 184801608 }, { "lcpInvalidated": false @@ -337997,19 +340451,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 251, + "numTasks": 266, "numTasksOver10ms": 4, "numTasksOver25ms": 2, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 101.04299999999999, - "throughput": 33949731.56145281, - "maxRtt": 101.04299999999999, - "maxServerLatency": 6.510000000000005, - "totalByteWeight": 2637917, - "totalTaskTime": 195.44499999999962, - "mainDocumentTransferSize": 6188 + "rtt": 101.487, + "throughput": 40550172.66441819, + "maxRtt": 101.487, + "maxServerLatency": 5.491, + "totalByteWeight": 2637971, + "totalTaskTime": 213.82899999999972, + "mainDocumentTransferSize": 6185 } ] } @@ -338075,7 +340529,7 @@ "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.6968572616577149, + "lighthouse_performance": 0.6968469619750977, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.85, "lighthouse_accessibilityGrade": "A", @@ -338101,7 +340555,7 @@ "http": { "url": "https://www.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 03:03:46 GMT", + "end_time": "Sun, 24 Dec 2023 03:04:13 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -338110,19 +340564,19 @@ "cache-control": "public", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 03:03:44 GMT", + "date": "Sun, 24 Dec 2023 03:04:10 GMT", "pragma": "public", "server": "nginx", - "set-cookie": "session=d1~eyJjc3JmX3Rva2VuIjoiYjRmZGEyM2Y4MmI0NWM5NWVlZGU5ZDZmNmEyNTliYzI0OWRmMjkyNiJ9.ZX5lEA.dfx-tYt20k5k-mvs1smI4RLjiHM; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", + "set-cookie": "session=d2~eyJjc3JmX3Rva2VuIjoiZGZmNDcwMzIwOWRhMjVmYTAwODhiNzNiMmQzYWJhNzgzOGVkMDk4YyJ9.ZYefqg.9MWr6z49L1clVsBOIOMbG_YfiqA; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", "transfer-encoding": "chunked", "vary": "Accept-Encoding, Cookie", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-xss-protection": "1; mode=block" }, - "scan_id": 45538531, + "scan_id": 45754124, "score": 55, - "start_time": "Sun, 17 Dec 2023 03:03:40 GMT", + "start_time": "Sun, 24 Dec 2023 03:04:06 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -338511,7 +340965,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:42:53", + "@generated": "Sun, 24 Dec 2023 10:48:37", "site": [ { "@name": "https://www.data.gouv.fr", @@ -338596,13 +341050,6 @@ "riskdesc": "Low (Low)", "desc": "

A timestamp was disclosed by the application/web server - Unix

" }, - { - "name": "Authentication Request Identified", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" - }, { "name": "Base64 Disclosure", "riskcode": "0", @@ -338793,7 +341240,7 @@ "http": { "url": "https://anais.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 10:49:50 GMT", + "end_time": "Sun, 24 Dec 2023 11:08:58 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -338801,7 +341248,7 @@ "Cache-Control": "no-store", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 10:49:49 GMT", + "Date": "Sun, 24 Dec 2023 11:08:56 GMT", "Etag": "W/\"653bb2e8-2169\"", "Last-Modified": "Fri, 27 Oct 2023 12:54:00 GMT", "Referrer-Policy": "strict-origin-when-cross-origin", @@ -338814,9 +341261,9 @@ "X-Server": "ANAIS-UI", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 45550663, + "scan_id": 45765009, "score": 75, - "start_time": "Sun, 17 Dec 2023 10:49:45 GMT", + "start_time": "Sun, 24 Dec 2023 11:05:12 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -339001,32 +341448,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T10:08:27Z", - "next_check_at": "2023-12-17T11:08:23Z", + "last_check_at": "2023-12-24T10:19:46Z", + "next_check_at": "2023-12-24T11:19:28Z", "mute_until": "forever", "favicon_url": "https://anais.beta.gouv.fr/assets/images/favicon_anais.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T09:08:34Z", + "tested_at": "2023-12-24T10:19:46Z", "expires_at": "2024-02-29T14:02:58Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.955, "timings": { "redirect": 0, - "namelookup": 153, - "connection": 140, - "handshake": 308, - "response": 139, - "total": 739 + "namelookup": 141, + "connection": 118, + "handshake": 252, + "response": 202, + "total": 713 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "E" }, "nmap": { "host": "anais.beta.gouv.fr", @@ -339402,7 +341849,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "74 >= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", @@ -339605,7 +342052,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "1702810266" + "finding": "1703416218" }, { "id": "HSTS_time", @@ -340196,7 +342643,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "80" + "finding": "81" } ], "thirdparties": { @@ -340206,7 +342653,7 @@ "cache-control": "no-store", "content-encoding": "br", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 10:50:21 GMT", + "date": "Sun, 24 Dec 2023 11:09:31 GMT", "etag": "W/\"653bb2e8-2169\"", "last-modified": "Fri, 27 Oct 2023 12:54:00 GMT", "referrer-policy": "strict-origin-when-cross-origin", @@ -340454,7 +342901,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:49:20", + "@generated": "Sun, 24 Dec 2023 11:04:46", "site": [ { "@name": "https://anais.beta.gouv.fr", @@ -340579,45 +343026,6 @@ ] }, "nuclei": [ - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "anais.beta.gouv.fr.", - "matched-at": "anais.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"google-site-verification=gZJSqcHa6RiC77Hro77aia6TCjElEM9iCw5HuuK4wbk\"" - ], - "timestamp": "2023-12-17T10:52:36.192974785Z", - "matcher-status": true - }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -340655,7 +343063,7 @@ "buypass.com", "sectigo.com" ], - "timestamp": "2023-12-17T10:52:36.289754306Z", + "timestamp": "2023-12-24T11:11:48.3838284Z", "matcher-status": true }, { @@ -340695,24 +343103,28 @@ "extracted-results": [ "\"v=DMARC1; p=reject; rua=mailto:equipe@anais.beta.gouv.fr; ruf=mailto:equipe@anais.beta.gouv.fr; fo=0; adkim=s; aspf=s; pct=100; rf=afrf; sp=reject; ri=604800;\"" ], - "timestamp": "2023-12-17T10:52:36.493001023Z", + "timestamp": "2023-12-24T11:11:48.449640516Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -340728,30 +343140,29 @@ "host": "anais.beta.gouv.fr.", "matched-at": "anais.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T10:52:37.11026646Z", + "timestamp": "2023-12-24T11:11:48.52863343Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -340768,10 +343179,46 @@ "host": "anais.beta.gouv.fr.", "matched-at": "anais.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"google-site-verification=gZJSqcHa6RiC77Hro77aia6TCjElEM9iCw5HuuK4wbk\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2023-12-24T11:11:49.473904646Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "anais.beta.gouv.fr.", + "matched-at": "anais.beta.gouv.fr", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T10:52:37.510375716Z", + "timestamp": "2023-12-24T11:11:49.525025156Z", "matcher-status": true }, { @@ -340810,7 +343257,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:52:52.227911162Z", + "timestamp": "2023-12-24T11:12:04.326787222Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -340851,7 +343298,7 @@ "1; mode=block" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:52:52.241047608Z", + "timestamp": "2023-12-24T11:12:04.335792725Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -340883,7 +343330,7 @@ "nginx/1.21.6" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:52:52.244539921Z", + "timestamp": "2023-12-24T11:12:04.339378013Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -340910,7 +343357,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:22.843191785Z", + "timestamp": "2023-12-24T11:12:35.30665666Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -340942,12 +343389,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879583894Z", + "timestamp": "2023-12-24T11:12:47.497187958Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -340979,12 +343426,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879638015Z", + "timestamp": "2023-12-24T11:12:47.497220989Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341016,12 +343463,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.87965676Z", + "timestamp": "2023-12-24T11:12:47.497231549Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341053,12 +343500,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879674443Z", + "timestamp": "2023-12-24T11:12:47.497240365Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341090,12 +343537,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879691084Z", + "timestamp": "2023-12-24T11:12:47.497252016Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341127,12 +343574,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879711472Z", + "timestamp": "2023-12-24T11:12:47.497266503Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341164,12 +343611,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:53:34.879727913Z", + "timestamp": "2023-12-24T11:12:47.497280469Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341209,7 +343656,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr/", "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:54:06.156177293Z", + "timestamp": "2023-12-24T11:13:19.103282246Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: anais.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr/'", "matcher-status": true }, @@ -341224,7 +343671,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -341239,7 +343687,7 @@ "Let's Encrypt" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:56:03.342116562Z", + "timestamp": "2023-12-24T11:15:16.316875208Z", "matcher-status": true }, { @@ -341253,7 +343701,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -341265,12 +343714,12 @@ "host": "anais.beta.gouv.fr", "matched-at": "anais.beta.gouv.fr:443", "extracted-results": [ + "maps.anais.beta.gouv.fr", "anais.beta.gouv.fr", - "anais.snc.seanais.fr", - "maps.anais.beta.gouv.fr" + "anais.snc.seanais.fr" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:56:03.342239703Z", + "timestamp": "2023-12-24T11:15:16.316993628Z", "matcher-status": true }, { @@ -341285,7 +343734,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -341300,7 +343750,7 @@ "tls12" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:56:04.684887432Z", + "timestamp": "2023-12-24T11:15:17.810934687Z", "matcher-status": true }, { @@ -341315,7 +343765,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -341330,7 +343781,7 @@ "tls13" ], "ip": "91.134.110.2", - "timestamp": "2023-12-17T10:56:04.985412344Z", + "timestamp": "2023-12-24T11:15:18.116427695Z", "matcher-status": true } ], @@ -341338,7 +343789,7 @@ { "requestedUrl": "https://anais.beta.gouv.fr/", "finalUrl": "https://anais.beta.gouv.fr/", - "fetchTime": "2023-12-17T10:49:34.482Z", + "fetchTime": "2023-12-24T11:05:01.272Z", "runWarnings": [], "categories": { "performance": { @@ -341401,53 +343852,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7027, + "numericValue": 6976, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5894, - "firstMeaningfulPaint": 6065, - "largestContentfulPaint": 8819, - "interactive": 7027, - "speedIndex": 6974, - "totalBlockingTime": 733, - "maxPotentialFID": 567, - "cumulativeLayoutShift": 0.09155755276150174, - "cumulativeLayoutShiftMainFrame": 0.09155755276150174, - "totalCumulativeLayoutShift": 0.09155755276150174, + "firstContentfulPaint": 5855, + "firstMeaningfulPaint": 6016, + "largestContentfulPaint": 8780, + "interactive": 6976, + "speedIndex": 6958, + "totalBlockingTime": 721, + "maxPotentialFID": 574, + "cumulativeLayoutShift": 0.2039195751614041, + "cumulativeLayoutShiftMainFrame": 0.2039195751614041, + "totalCumulativeLayoutShift": 0.2039195751614041, "observedTimeOrigin": 0, - "observedTimeOriginTs": 267347495, + "observedTimeOriginTs": 238113283, "observedNavigationStart": 0, - "observedNavigationStartTs": 267347495, - "observedFirstPaint": 383, - "observedFirstPaintTs": 267730273, - "observedFirstContentfulPaint": 1909, - "observedFirstContentfulPaintTs": 269256366, - "observedFirstContentfulPaintAllFrames": 1909, - "observedFirstContentfulPaintAllFramesTs": 269256366, - "observedFirstMeaningfulPaint": 1909, - "observedFirstMeaningfulPaintTs": 269256366, - "observedLargestContentfulPaint": 2104, - "observedLargestContentfulPaintTs": 269451829, - "observedLargestContentfulPaintAllFrames": 2104, - "observedLargestContentfulPaintAllFramesTs": 269451829, - "observedTraceEnd": 4383, - "observedTraceEndTs": 271730890, - "observedLoad": 1337, - "observedLoadTs": 268684500, - "observedDomContentLoaded": 1169, - "observedDomContentLoadedTs": 268516790, - "observedCumulativeLayoutShift": 0.09155755276150174, - "observedCumulativeLayoutShiftMainFrame": 0.09155755276150174, - "observedTotalCumulativeLayoutShift": 0.09155755276150174, - "observedFirstVisualChange": 1908, - "observedFirstVisualChangeTs": 269255495, - "observedLastVisualChange": 2108, - "observedLastVisualChangeTs": 269455495, - "observedSpeedIndex": 2003, - "observedSpeedIndexTs": 269350559 + "observedNavigationStartTs": 238113283, + "observedFirstPaint": 402, + "observedFirstPaintTs": 238515084, + "observedFirstContentfulPaint": 1925, + "observedFirstContentfulPaintTs": 240037923, + "observedFirstContentfulPaintAllFrames": 1925, + "observedFirstContentfulPaintAllFramesTs": 240037923, + "observedFirstMeaningfulPaint": 1925, + "observedFirstMeaningfulPaintTs": 240037923, + "observedLargestContentfulPaint": 2124, + "observedLargestContentfulPaintTs": 240237016, + "observedLargestContentfulPaintAllFrames": 2124, + "observedLargestContentfulPaintAllFramesTs": 240237016, + "observedTraceEnd": 4398, + "observedTraceEndTs": 242511167, + "observedLoad": 1355, + "observedLoadTs": 239468658, + "observedDomContentLoaded": 1183, + "observedDomContentLoadedTs": 239296321, + "observedCumulativeLayoutShift": 0.2039195751614041, + "observedCumulativeLayoutShiftMainFrame": 0.2039195751614041, + "observedTotalCumulativeLayoutShift": 0.2039195751614041, + "observedFirstVisualChange": 1927, + "observedFirstVisualChangeTs": 240040283, + "observedLastVisualChange": 2127, + "observedLastVisualChangeTs": 240240283, + "observedSpeedIndex": 2021, + "observedSpeedIndexTs": 240134728 }, { "lcpInvalidated": false @@ -341469,18 +343920,18 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 4, - "numTasks": 767, + "numTasks": 741, "numTasksOver10ms": 4, - "numTasksOver25ms": 3, + "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 83.824, - "throughput": 21654584.23704312, - "maxRtt": 83.824, - "maxServerLatency": 44.31999999999998, + "rtt": 85.254, + "throughput": 20001292.46707377, + "maxRtt": 85.254, + "maxServerLatency": 5.411999999999992, "totalByteWeight": 1508840, - "totalTaskTime": 500.78999999999854, + "totalTaskTime": 483.5159999999997, "mainDocumentTransferSize": 3027 } ] @@ -341567,8 +344018,8 @@ "sonarcloud": null, "summary": { "httpGrade": "B", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.955, + "apdexGrade": "E", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -341610,7 +344061,7 @@ "http": { "url": "https://www.demarches-simplifiees.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:13:26 GMT", + "end_time": "Sat, 23 Dec 2023 19:27:00 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -341619,12 +344070,12 @@ "content-encoding": "gzip", "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr wxs.ign.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr; report-uri https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 02:13:25 GMT", - "etag": "W/\"abb355b16c0fc965b2e8c7727db5c6c7\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "date": "Sat, 23 Dec 2023 19:26:59 GMT", + "etag": "W/\"aa572be5484a3339a1305fb1a1621318\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltRlpUMDU0WDJWc01uTjBTMjlpTVRKeFpqRXRXRlJVYUZobk9XUktUVnBCWkhOU1YzcEhVRkJsWDJzaSIsImV4cCI6IjIwMjQtMTItMTdUMDI6MTM6MjUuNTg5WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--a5cc3e0348c4a4bd891ad7e637c4be88e8c6309a; path=/; expires=Tue, 17 Dec 2024 02:13:25 GMT; HttpOnly; SameSite=Lax, _DS_session=L1KnzAspbqiybbATv%2B2IHDcme7MkbXYEceK%2FzhO2pPwkyzKP3LjMJ%2FrNbLyACKIXQXByy73iTHArpgWhXakp4hxQbFRcQ1m6jAEwh%2FFw1daJccIx5%2FDWf2iLH4ccHhmxr8Tm1YNKOTPKAs69wpayypSYv3h4nR3XBvQDSNxlx%2FIzQ9PUtZGE3N9bhZQeowXb5y7fl4FOE1aINUfT%2F4ZzC7P94yEpj4MLg60O976eotogADAgiQgvxtDtFpWEGsZq6lnJKqb3toO5EDSuPgKYSjU3FQ%3D%3D--LHhS5pvrqSoUYCWT--jax%2FKMSLqPCagSAyVAo3%2FQ%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltWXpjMmw0ZVY5elZXaHlPVGRaZVhOWFZXd3pZMVJPYUdGR2EyUjBMVFV0UzAxclZYRmhjamxmZURnaSIsImV4cCI6IjIwMjQtMTItMjNUMTk6MjY6NTkuNjg0WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--a8fff442052fef98d8e4e60a2de396931007ff94; path=/; expires=Mon, 23 Dec 2024 19:26:59 GMT; HttpOnly; SameSite=Lax, _DS_session=RTtqGoLXv%2Bd8NwJWU%2FtZ%2FNHXi8xjq%2BCS2vnsyO7mZb32ml4JcOCwKe20qjnv2iaXZXnvawW07DfGfBqR8YaJB%2FO5HcKGtpVBm4Z83RPcOFj22pLM75BIYeiWICnHMLiGZg1is0Em%2FtxrBYLQMsHIz1RKAhevs92bhe0%2BBh05Q8i2evNqyEKv9MonzpwPY%2Bqce8rBB20pw9is53dToegt835LHoHFAsqiUqb3EMcg8xlnKPdvv2RDlaqRKd83oAENJ2fd8VKhrjTp2J8%2BX%2FmP6rUHBg%3D%3D--IwzRCJqM%2FCb4jHpM--V5ovwJUsRJUU1%2BuwQHfzXA%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000", "transfer-encoding": "chunked", "vary": "Accept", @@ -341632,13 +344083,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "0f86b212-0af9-4acf-8d40-999c2db234bd", - "x-runtime": "0.035600", + "x-request-id": "464de11e-277a-44dc-b46f-506363996b86", + "x-runtime": "0.032432", "x-xss-protection": "0" }, - "scan_id": 45537539, + "scan_id": 45746616, "score": 60, - "start_time": "Sun, 17 Dec 2023 02:13:22 GMT", + "start_time": "Sat, 23 Dec 2023 19:26:57 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -341651,76 +344102,76 @@ "output": { "data": { "connect-src": [ - "openmaptiles.geo.data.gouv.fr", - "'self'", - "stats.data.gouv.fr", "app.franceconnect.gouv.fr", - "api-adresse.data.gouv.fr", + "*.crisp.chat", "www.demarches-simplifiees.fr", - "static.demarches-simplifiees.fr", - "wss://*.crisp.chat", - "tiles.geo.api.gouv.fr", - "wxs.ign.fr", + "geo.api.gouv.fr", + "data.education.gouv.fr", + "openmaptiles.geo.data.gouv.fr", "openmaptiles.github.io", + "api-adresse.data.gouv.fr", + "'self'", "sentry.io", - "*.crisp.chat", - "data.education.gouv.fr", - "geo.api.gouv.fr" + "static.demarches-simplifiees.fr", + "tiles.geo.api.gouv.fr", + "wss://*.crisp.chat", + "stats.data.gouv.fr", + "wxs.ign.fr" ], "default-src": [ - "player.vimeo.com", - "'self'", - "*.crisp.help", "app.franceconnect.gouv.fr", + "blob:", + "*.crisp.chat", "data", - "crisp.chat", - "static.demarches-simplifiees.fr", - "sibautomation.com", "in-automate.sendinblue.com", + "sibautomation.com", + "*.sibautomation.com", + "fonts.gstatic.com", "'report-sample'", + "*.crisp.help", + "'self'", "sentry.io", - "blob:", - "fonts.gstatic.com", - "*.crisp.chat", - "*.sibautomation.com" + "crisp.chat", + "player.vimeo.com", + "static.demarches-simplifiees.fr" ], "frame-src": [ "stats.data.gouv.fr", "'self'" ], "img-src": [ - "stats.data.gouv.fr", - "'self'", + "blob:", + "*", "*.openstreetmap.org", - "data:", "static.demarches-simplifiees.fr", - "*", - "blob:" + "'self'", + "stats.data.gouv.fr", + "data:" ], "report-uri": [ "https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly" ], "script-src": [ + "blob:", + "*.crisp.chat", "maxcdn.bootstrapcdn.com", - "'self'", - "stats.data.gouv.fr", "cdn.jsdelivr.net", - "unpkg.com", - "crisp.chat", - "'unsafe-inline'", "code.jquery.com", - "blob:", - "*.crisp.chat", - "'unsafe-eval'" + "'unsafe-inline'", + "stats.data.gouv.fr", + "'self'", + "crisp.chat", + "'unsafe-eval'", + "unpkg.com" ], "style-src": [ + "*.crisp.chat", "maxcdn.bootstrapcdn.com", - "'self'", "cdn.jsdelivr.net", - "unpkg.com", - "crisp.chat", "'unsafe-inline'", - "*.crisp.chat" + "'self'", + "crisp.chat", + "unpkg.com" ] }, "http": true, @@ -341773,7 +344224,7 @@ }, "_csrf_token": { "domain": "www.demarches-simplifiees.fr", - "expires": 1734401605, + "expires": 1734982019, "httponly": true, "max-age": null, "path": "/", @@ -342290,8 +344741,8 @@ "id": "cert_expirationStatus", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (30)" + "severity": "HIGH", + "finding": "expires < 30 days (23)" }, { "id": "cert_notBefore", @@ -342304,7 +344755,7 @@ "id": "cert_notAfter", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "MEDIUM", + "severity": "HIGH", "finding": "2024-01-16 22:59" }, { @@ -342494,7 +344945,7 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "1702810627" + "finding": "1703416450" }, { "id": "HSTS_time", @@ -343113,7 +345564,7 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "108" } ], "thirdparties": { @@ -343129,7 +345580,7 @@ "value": "1", "domain": ".www.demarches-simplifiees.fr", "path": "/", - "expires": 1702812353, + "expires": 1703418150, "size": 16, "httpOnly": false, "secure": false, @@ -343141,10 +345592,10 @@ }, { "name": "_pk_id.73.dc9f", - "value": "148a31a9b7bad267.1702810553.", + "value": "228445080d256921.1703416350.", "domain": ".www.demarches-simplifiees.fr", "path": "/", - "expires": 1736765753, + "expires": 1737371550, "size": 42, "httpOnly": false, "secure": false, @@ -343156,11 +345607,11 @@ }, { "name": "_DS_session", - "value": "8ynluGIEQEESOxoxmIY9Gl7h7Zckz2qOzK2y8hiCDw2iUcYeJhVdDUVNHuPiy4%2Fr39%2F4nDbcVwv721CsOvBIwaiy7U7WSHvI6Kgf%2BDcOpGaeVAr9zV3c7GxjYQ6FhYH%2BYnMXI04fyj5k0Z%2B6JlB9cnnisIxpy8mRRXWZKtCN4K1HqwgsSrRhEKMByV9txNsWQisuKtzM0Q%2FfiOnFMpuBHHB%2FvYLz8ELhG0w8PLOoyGGrWU%2FxowW3yDzK2Q4omDQ9ixLHV7EPLZpLnbBCKJUMR6msQw%3D%3D--XgvArcfZS7x7RKVX--9OgFBPpIGjsEe4%2BL3B32RA%3D%3D", + "value": "j6AjcHcjs01dqezJsvQTz5yFMZTdocm8qvkCGdOFneYrVBSW161JUiWa2koEwaWAS34o1j71xHZjQpiEeLyEXYfQrnnM5y5dehfrIjSVMcqaFhSajKGldKZhEzqF5rti3WfifIGZfavQk%2FI%2B2at8NLWrIlcqTT2SnUbRKTMcDWrzohexSfVAeVbMuudkE%2Bj0cLQijYbW6Smx12WUTFCErryxZjt7QRDMOAhr8jFBspxceE0JHMhqvfREKfRNX3qCWxZDQJ52T9%2FMMvzRIf0VL7F%2Fkg%3D%3D--jerZ3VCXHvVcsBOV--BsY1sqR1OF1xF5UBBrtnDg%3D%3D", "domain": "www.demarches-simplifiees.fr", "path": "/", "expires": -1, - "size": 365, + "size": 357, "httpOnly": true, "secure": false, "session": true, @@ -343171,10 +345622,10 @@ }, { "name": "_csrf_token", - "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqbFFkSFI1UlVNM1ZEUlBWaTFNT1dVMk0wNVJZMnBSU2tWUGVERTRZbEpqUlZkQlZEbElaVTl0WjFraSIsImV4cCI6IjIwMjQtMTItMTdUMTA6NTU6MzUuMTEzWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--241323db429c0f6ce0325a9bae74eb861ea161a5", + "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltdEVhbkZET1dOQmFWTjNkRVJtTFdveWVYaDNOVlp4UW5oWlYzbHNYMGRrYVRneFV6UjNhRFV5V21zaSIsImV4cCI6IjIwMjQtMTItMjRUMTE6MTI6MjQuOTQyWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--70ee2fcbe35c480aeea14127d751dea802a995e9", "domain": "www.demarches-simplifiees.fr", "path": "/", - "expires": 1734432935.167136, + "expires": 1735038745.022387, "size": 253, "httpOnly": true, "secure": false, @@ -343190,19 +345641,19 @@ "content-encoding": "gzip", "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr wxs.ign.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr; report-uri https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 10:55:35 GMT", - "etag": "W/\"bf4248b0f31ea2ab420b32cb6f98adc0\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "date": "Sun, 24 Dec 2023 11:12:24 GMT", + "etag": "W/\"2b1eaadb47d273e61ca61fa44842a485\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqbFFkSFI1UlVNM1ZEUlBWaTFNT1dVMk0wNVJZMnBSU2tWUGVERTRZbEpqUlZkQlZEbElaVTl0WjFraSIsImV4cCI6IjIwMjQtMTItMTdUMTA6NTU6MzUuMTEzWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--241323db429c0f6ce0325a9bae74eb861ea161a5; path=/; expires=Tue, 17 Dec 2024 10:55:35 GMT; HttpOnly; SameSite=Lax\n_DS_session=8ynluGIEQEESOxoxmIY9Gl7h7Zckz2qOzK2y8hiCDw2iUcYeJhVdDUVNHuPiy4%2Fr39%2F4nDbcVwv721CsOvBIwaiy7U7WSHvI6Kgf%2BDcOpGaeVAr9zV3c7GxjYQ6FhYH%2BYnMXI04fyj5k0Z%2B6JlB9cnnisIxpy8mRRXWZKtCN4K1HqwgsSrRhEKMByV9txNsWQisuKtzM0Q%2FfiOnFMpuBHHB%2FvYLz8ELhG0w8PLOoyGGrWU%2FxowW3yDzK2Q4omDQ9ixLHV7EPLZpLnbBCKJUMR6msQw%3D%3D--XgvArcfZS7x7RKVX--9OgFBPpIGjsEe4%2BL3B32RA%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkltdEVhbkZET1dOQmFWTjNkRVJtTFdveWVYaDNOVlp4UW5oWlYzbHNYMGRrYVRneFV6UjNhRFV5V21zaSIsImV4cCI6IjIwMjQtMTItMjRUMTE6MTI6MjQuOTQyWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--70ee2fcbe35c480aeea14127d751dea802a995e9; path=/; expires=Tue, 24 Dec 2024 11:12:24 GMT; HttpOnly; SameSite=Lax\n_DS_session=j6AjcHcjs01dqezJsvQTz5yFMZTdocm8qvkCGdOFneYrVBSW161JUiWa2koEwaWAS34o1j71xHZjQpiEeLyEXYfQrnnM5y5dehfrIjSVMcqaFhSajKGldKZhEzqF5rti3WfifIGZfavQk%2FI%2B2at8NLWrIlcqTT2SnUbRKTMcDWrzohexSfVAeVbMuudkE%2Bj0cLQijYbW6Smx12WUTFCErryxZjt7QRDMOAhr8jFBspxceE0JHMhqvfREKfRNX3qCWxZDQJ52T9%2FMMvzRIf0VL7F%2Fkg%3D%3D--jerZ3VCXHvVcsBOV--BsY1sqR1OF1xF5UBBrtnDg%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "379a61b0-42ea-4ab1-a543-29da76cd963d", - "x-runtime": "0.037072", + "x-request-id": "48e4404c-25fc-4467-b2ae-9c2f290c0c7c", + "x-runtime": "0.030607", "x-xss-protection": "0" }, "endpoints": [ @@ -343561,24 +346012,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "sendinblue", "name": "Sendinblue", @@ -343602,6 +346035,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "vite", "name": "Vite", @@ -343625,7 +346076,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 10:54:39", + "@generated": "Sun, 24 Dec 2023 11:11:39", "site": [ { "@name": "https://www.demarches-simplifiees.fr", @@ -343856,7 +346307,7 @@ "\"l|fr\"", "\"3|welcome\"" ], - "timestamp": "2023-12-17T10:58:31.066101722Z", + "timestamp": "2023-12-24T11:15:59.791274309Z", "matcher-status": true }, { @@ -343891,7 +346342,7 @@ "type": "dns", "host": "www.demarches-simplifiees.fr.", "matched-at": "www.demarches-simplifiees.fr", - "timestamp": "2023-12-17T10:58:31.0662797Z", + "timestamp": "2023-12-24T11:15:59.791526671Z", "matcher-status": true }, { @@ -343931,7 +346382,7 @@ "1 mx4.mail.ovh.net.", "10 mx3.mail.ovh.net." ], - "timestamp": "2023-12-17T10:58:31.134533811Z", + "timestamp": "2023-12-24T11:15:59.863855478Z", "matcher-status": true }, { @@ -343970,7 +346421,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:58:43.008388718Z", + "timestamp": "2023-12-24T11:16:19.800768311Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344001,7 +346452,7 @@ "4248116497b049dea165998d79024565@sentry.io" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:58:43.011356918Z", + "timestamp": "2023-12-24T11:16:19.803694324Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344040,7 +346491,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:58:43.014152206Z", + "timestamp": "2023-12-24T11:16:19.806429177Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344076,7 +346527,7 @@ "https://4248116497b049dea165998d79024565@sentry.io/1429547" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:58:43.037195207Z", + "timestamp": "2023-12-24T11:16:19.828424352Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344103,7 +346554,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:07.984690604Z", + "timestamp": "2023-12-24T11:16:59.876723264Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344135,12 +346586,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:16.880873372Z", + "timestamp": "2023-12-24T11:17:14.757700524Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344172,12 +346623,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:16.880911162Z", + "timestamp": "2023-12-24T11:17:14.75774624Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344209,12 +346660,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:16.880927963Z", + "timestamp": "2023-12-24T11:17:14.757762381Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344246,12 +346697,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:16.880944875Z", + "timestamp": "2023-12-24T11:17:14.757776517Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344283,12 +346734,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:16.880959622Z", + "timestamp": "2023-12-24T11:17:14.757789151Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -344316,7 +346767,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/robots.txt", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:26.984473456Z", + "timestamp": "2023-12-24T11:17:32.188502931Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/robots.txt'", "matcher-status": true }, @@ -344344,7 +346795,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/robots.txt", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:26.987445299Z", + "timestamp": "2023-12-24T11:17:32.194537763Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/robots.txt'", "matcher-status": true }, @@ -344384,7 +346835,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/", "ip": "176.31.79.200", - "timestamp": "2023-12-17T10:59:40.932001796Z", + "timestamp": "2023-12-24T11:17:55.7165397Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.demarches-simplifiees.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/'", "matcher-status": true }, @@ -344400,7 +346851,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -344415,7 +346867,7 @@ "tls12" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T11:01:35.45296858Z", + "timestamp": "2023-12-24T11:20:04.24367388Z", "matcher-status": true }, { @@ -344429,7 +346881,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -344444,7 +346897,7 @@ "DHIMYOTIS" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T11:01:35.475634869Z", + "timestamp": "2023-12-24T11:20:04.7566342Z", "matcher-status": true }, { @@ -344458,7 +346911,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -344470,28 +346924,28 @@ "host": "www.demarches-simplifiees.fr", "matched-at": "www.demarches-simplifiees.fr:443", "extracted-results": [ - "pr.demarches-simplifiees.fr", - "qa.demarches-simplifiees.fr", - "tartiflette.demarches-simplifiees.fr", + "blog.demarches-simplifiees.fr", + "forum.demarches-simplifiees.fr", + "admin.demarches-simplifiees.fr", + "cdn.demarches-simplifiees.fr", "stats.demarches-simplifiees.fr", + "dev.demarches-simplifiees.fr", + "www.demarches-simplifiees.fr", "static.demarches-simplifiees.fr", - "docs.demarches-simplifiees.fr", "test.demarches-simplifiees.fr", - "www.demarches-simplifiees.fr", - "blog.demarches-simplifiees.fr", - "dev.demarches-simplifiees.fr", - "storage.demarches-simplifiees.fr", - "demarches-simplifiees.fr", - "cdn.demarches-simplifiees.fr", - "admin.demarches-simplifiees.fr", - "forum.demarches-simplifiees.fr", - "storage.dev.demarches-simplifiees.fr", "mail.demarches-simplifiees.fr", "assets.demarches-simplifiees.fr", - "api.demarches-simplifiees.fr" + "storage.demarches-simplifiees.fr", + "storage.dev.demarches-simplifiees.fr", + "demarches-simplifiees.fr", + "pr.demarches-simplifiees.fr", + "qa.demarches-simplifiees.fr", + "api.demarches-simplifiees.fr", + "tartiflette.demarches-simplifiees.fr", + "docs.demarches-simplifiees.fr" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T11:01:35.475771574Z", + "timestamp": "2023-12-24T11:20:04.756874472Z", "matcher-status": true }, { @@ -344506,7 +346960,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -344521,7 +346976,7 @@ "tls13" ], "ip": "176.31.79.200", - "timestamp": "2023-12-17T11:01:36.326362974Z", + "timestamp": "2023-12-24T11:20:05.69668493Z", "matcher-status": true } ], @@ -344529,7 +346984,7 @@ { "requestedUrl": "https://www.demarches-simplifiees.fr/", "finalUrl": "https://www.demarches-simplifiees.fr/", - "fetchTime": "2023-12-17T10:54:53.158Z", + "fetchTime": "2023-12-24T11:11:53.857Z", "runWarnings": [], "categories": { "performance": { @@ -344540,7 +346995,7 @@ "snapshot" ], "id": "performance", - "score": 0.5844615936279297 + "score": 0.5 }, "accessibility": { "title": "Accessibility", @@ -344592,53 +347047,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 17650, + "numericValue": 21200, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 14200, - "firstMeaningfulPaint": 14217, - "largestContentfulPaint": 16373, - "interactive": 17650, - "speedIndex": 31806, - "totalBlockingTime": 103, - "maxPotentialFID": 133, + "firstContentfulPaint": 17466, + "firstMeaningfulPaint": 17483, + "largestContentfulPaint": 19584, + "interactive": 21200, + "speedIndex": 19046, + "totalBlockingTime": 106, + "maxPotentialFID": 131, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 218113927, + "observedTimeOriginTs": 250879344, "observedNavigationStart": 0, - "observedNavigationStartTs": 218113927, - "observedFirstPaint": 15764, - "observedFirstPaintTs": 233878289, - "observedFirstContentfulPaint": 15764, - "observedFirstContentfulPaintTs": 233878289, - "observedFirstContentfulPaintAllFrames": 15764, - "observedFirstContentfulPaintAllFramesTs": 233878289, - "observedFirstMeaningfulPaint": 15810, - "observedFirstMeaningfulPaintTs": 233923922, - "observedLargestContentfulPaint": 15866, - "observedLargestContentfulPaintTs": 233979462, - "observedLargestContentfulPaintAllFrames": 15866, - "observedLargestContentfulPaintAllFramesTs": 233979462, - "observedTraceEnd": 18564, - "observedTraceEndTs": 236677593, - "observedLoad": 16256, - "observedLoadTs": 234370054, - "observedDomContentLoaded": 15786, - "observedDomContentLoadedTs": 233900106, + "observedNavigationStartTs": 250879344, + "observedFirstPaint": 5042, + "observedFirstPaintTs": 255921838, + "observedFirstContentfulPaint": 5042, + "observedFirstContentfulPaintTs": 255921838, + "observedFirstContentfulPaintAllFrames": 5042, + "observedFirstContentfulPaintAllFramesTs": 255921838, + "observedFirstMeaningfulPaint": 5089, + "observedFirstMeaningfulPaintTs": 255967938, + "observedLargestContentfulPaint": 5203, + "observedLargestContentfulPaintTs": 256082295, + "observedLargestContentfulPaintAllFrames": 5203, + "observedLargestContentfulPaintAllFramesTs": 256082295, + "observedTraceEnd": 8150, + "observedTraceEndTs": 259029507, + "observedLoad": 5843, + "observedLoadTs": 256722035, + "observedDomContentLoaded": 5065, + "observedDomContentLoadedTs": 255944759, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 15776, - "observedFirstVisualChangeTs": 233889927, - "observedLastVisualChange": 16060, - "observedLastVisualChangeTs": 234173927, - "observedSpeedIndex": 15853, - "observedSpeedIndexTs": 233966974 + "observedFirstVisualChange": 5043, + "observedFirstVisualChangeTs": 255922344, + "observedLastVisualChange": 5377, + "observedLastVisualChangeTs": 256256344, + "observedSpeedIndex": 5164, + "observedSpeedIndexTs": 256042925 }, { "lcpInvalidated": false @@ -344660,19 +347115,19 @@ "numScripts": 10, "numStylesheets": 2, "numFonts": 5, - "numTasks": 1116, + "numTasks": 1110, "numTasksOver10ms": 5, "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.608, - "throughput": 1660228.7796116401, - "maxRtt": 85.428, - "maxServerLatency": 170.377, - "totalByteWeight": 3227194, - "totalTaskTime": 255.68599999999816, - "mainDocumentTransferSize": 9888 + "rtt": 1.9110000000000003, + "throughput": 7124191.379384433, + "maxRtt": 152.12300000000002, + "maxServerLatency": 54.006, + "totalByteWeight": 3940132, + "totalTaskTime": 254.1099999999982, + "mainDocumentTransferSize": 9891 } ] } @@ -344778,8 +347233,8 @@ "cookiesCount": 4, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.5844615936279297, - "lighthouse_performanceGrade": "C", + "lighthouse_performance": 0.5, + "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -344804,28 +347259,28 @@ "http": { "url": "https://www.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 11:14:31 GMT", + "end_time": "Sun, 24 Dec 2023 11:18:46 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "836ebe0868f6fa96-SJC", + "CF-RAY": "83a871f00e3c9e65-SJC", "Cache-Control": "max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 11:14:25 GMT", - "Expires": "Sun, 17 Dec 2023 11:14:25 GMT", - "Last-Modified": "Sun, 17 Dec 2023 08:59:30 GMT", + "Date": "Sun, 24 Dec 2023 11:18:42 GMT", + "Expires": "Sun, 24 Dec 2023 11:18:42 GMT", + "Last-Modified": "Sun, 24 Dec 2023 04:13:18 GMT", "Server": "cloudflare", - "Sozu-Id": "01HHVQR0HGQA4PY3VAHVCG6HPP", + "Sozu-Id": "01HJDRRWQDB2CRCW17GRBMWA9E", "Transfer-Encoding": "chunked", "Vary": "X-Forwarded-Proto,Accept-Encoding,User-Agent" }, - "scan_id": 45551476, + "scan_id": 45765202, "score": 0, - "start_time": "Sun, 17 Dec 2023 11:14:22 GMT", + "start_time": "Sun, 24 Dec 2023 11:18:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -344865,7 +347320,7 @@ "data": { "handl_ip": { "domain": ".snu.gouv.fr", - "expires": 1705403670, + "expires": 1706008725, "httponly": false, "max-age": null, "path": "/", @@ -344875,7 +347330,7 @@ }, "handl_landing_page": { "domain": ".snu.gouv.fr", - "expires": 1705403670, + "expires": 1706008725, "httponly": false, "max-age": null, "path": "/", @@ -344885,7 +347340,7 @@ }, "handl_url": { "domain": ".snu.gouv.fr", - "expires": 1705403670, + "expires": 1706008725, "httponly": false, "max-age": null, "path": "/", @@ -345081,77 +347536,77 @@ "testssl": [ { "id": "service", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -345159,7 +347614,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -345167,7 +347622,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -345175,7 +347630,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -345183,7 +347638,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -345191,7 +347646,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -345199,490 +347654,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "62 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2023-11-27 04:00" }, { "id": "cert_notAfter", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2024-02-25 04:00" }, { "id": "cert_extlifeSpan", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "http://crls.pki.goog/gts1p5/Zn3bDrcK0Gs.crl" }, { "id": "cert_ocspURL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "http://ocsp.pki.goog/s/gts1p5/fNrAY1x2JNQ" }, { "id": "OCSP_stapling", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 (Google Trust Services LLC from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "1702811751" + "finding": "1703416810" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -345690,7 +348145,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -345699,7 +348154,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -345708,7 +348163,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -345717,7 +348172,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -345726,7 +348181,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -345734,7 +348189,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -345743,7 +348198,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -345752,7 +348207,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -345761,7 +348216,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -345770,14 +348225,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -345786,7 +348241,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -345795,7 +348250,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -345804,7 +348259,7 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -345813,7 +348268,7 @@ }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -345822,7 +348277,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -345831,7 +348286,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -345840,7 +348295,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -345849,7 +348304,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -345858,7 +348313,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -345867,399 +348322,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -346267,7 +348722,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -346275,7 +348730,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -346283,7 +348738,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -346291,7 +348746,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -346299,7 +348754,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -346307,490 +348762,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "62 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "2023-11-27 04:00" }, { "id": "cert_notAfter", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "2024-02-25 04:00" }, { "id": "cert_extlifeSpan", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "http://crls.pki.goog/gts1p5/Zn3bDrcK0Gs.crl" }, { "id": "cert_ocspURL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "http://ocsp.pki.goog/s/gts1p5/fNrAY1x2JNQ" }, { "id": "OCSP_stapling", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 (Google Trust Services LLC from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "1702811810" + "finding": "1703416868" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -346798,7 +349253,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -346807,7 +349262,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -346816,7 +349271,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -346825,7 +349280,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -346834,7 +349289,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -346842,7 +349297,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -346851,7 +349306,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -346860,7 +349315,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -346869,7 +349324,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -346878,14 +349333,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -346894,7 +349349,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -346903,7 +349358,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -346912,7 +349367,7 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -346921,7 +349376,7 @@ }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -346930,7 +349385,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -346939,7 +349394,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -346948,7 +349403,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -346957,7 +349412,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -346966,7 +349421,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -346975,399 +349430,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/172.67.4.138", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347375,7 +349830,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347383,7 +349838,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347391,7 +349846,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347399,7 +349854,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -347407,7 +349862,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -347415,490 +349870,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "62 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2023-11-27 04:00" }, { "id": "cert_notAfter", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2024-02-25 04:00" }, { "id": "cert_extlifeSpan", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "http://crls.pki.goog/gts1p5/Zn3bDrcK0Gs.crl" }, { "id": "cert_ocspURL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "http://ocsp.pki.goog/s/gts1p5/fNrAY1x2JNQ" }, { "id": "OCSP_stapling", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 (Google Trust Services LLC from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "1702811868" + "finding": "1703416925" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -347906,7 +350361,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -347915,7 +350370,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -347924,7 +350379,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -347933,7 +350388,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -347942,7 +350397,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -347950,7 +350405,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -347959,7 +350414,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -347968,7 +350423,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -347977,7 +350432,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -347986,14 +350441,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -348002,7 +350457,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -348011,7 +350466,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -348020,7 +350475,7 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -348029,7 +350484,7 @@ }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -348038,7 +350493,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -348047,7 +350502,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -348056,7 +350511,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -348065,7 +350520,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -348074,7 +350529,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -348083,332 +350538,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "177" + "finding": "174" } ], "thirdparties": { @@ -348439,28 +350894,62 @@ }, { "type": "unknown", - "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1702811699467" + "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1703416758620" } ], "cookies": [], "headers": { "cache-control": "max-age=0", "cf-cache-status": "DYNAMIC", - "cf-ray": "836ebed35ba8241d-IAD", + "cf-ray": "83a872c2ee92394a-IAD", "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 11:14:57 GMT", - "expires": "Sun, 17 Dec 2023 11:14:57 GMT", - "last-modified": "Sun, 17 Dec 2023 00:40:58 GMT", + "date": "Sun, 24 Dec 2023 11:19:15 GMT", + "expires": "Sun, 24 Dec 2023 11:19:15 GMT", + "last-modified": "Sun, 24 Dec 2023 01:41:06 GMT", "server": "cloudflare", - "sozu-id": "01HHVQPQF3P1WP0DMA6C70HH90", + "sozu-id": "01HJDRQSB9BSTZMMPB1E9DHKCJ", "vary": "X-Forwarded-Proto,Accept,Accept-Encoding,User-Agent" }, "endpoints": [ { "hostname": "www.snu.gouv.fr", - "ip": "104.22.16.136", + "ip": "172.67.4.138", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -349227,7 +351716,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:13:56", + "@generated": "Sun, 24 Dec 2023 11:18:15", "site": [ { "@name": "https://www.snu.gouv.fr", @@ -349431,13 +351920,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, { "name": "Storable but Non-Cacheable Content", "riskcode": "0", @@ -349483,7 +351965,7 @@ "extracted-results": [ "www.snu.gouv.fr.cdn.cloudflare.net." ], - "timestamp": "2023-12-17T11:19:05.013942631Z", + "timestamp": "2023-12-24T11:23:22.051609186Z", "matcher-status": true }, { @@ -349518,7 +352000,7 @@ "type": "dns", "host": "www.snu.gouv.fr.", "matched-at": "www.snu.gouv.fr", - "timestamp": "2023-12-17T11:19:05.017135982Z", + "timestamp": "2023-12-24T11:23:22.373123726Z", "matcher-status": true }, { @@ -349553,10 +352035,10 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/wp-content/plugins/contact-form-7/readme.txt", "extracted-results": [ - "5.8.4" + "5.8.5" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:17.399793791Z", + "timestamp": "2023-12-24T11:23:35.123152553Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/contact-form-7/readme.txt'", "matcher-status": true }, @@ -349596,7 +352078,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:18.173981691Z", + "timestamp": "2023-12-24T11:23:35.781946351Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -349628,12 +352110,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605233252Z", + "timestamp": "2023-12-24T11:24:04.30202353Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -349665,12 +352147,234 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302068815Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302085486Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302098801Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302111294Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302125871Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr", + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:04.302138635Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605281191Z", + "timestamp": "2023-12-24T11:24:04.302150377Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -349707,7 +352411,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605294807Z", + "timestamp": "2023-12-24T11:24:04.302162259Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -349744,192 +352448,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605306699Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605320334Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605336985Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605349659Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605361661Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605373353Z", + "timestamp": "2023-12-24T11:24:04.302174491Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -349966,44 +352485,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605385015Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:44.605397748Z", + "timestamp": "2023-12-24T11:24:04.302187366Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350035,51 +352517,10 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/readme.html", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:51.625048998Z", + "timestamp": "2023-12-24T11:24:11.531347435Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/readme.html'", "matcher-status": true }, - { - "template": "http/misconfiguration/cloudflare-image-ssrf.yaml", - "template-url": "https://templates.nuclei.sh/public/cloudflare-external-image-resize", - "template-id": "cloudflare-external-image-resize", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/cloudflare-image-ssrf.yaml", - "info": { - "name": "Cloudflare External Image Resizing Misconfiguration", - "author": [ - "vavkamil" - ], - "tags": [ - "cloudflare", - "misconfig", - "oast" - ], - "description": "Cloudflare Image Resizing defaults to restricting resizing to the same domain. This prevents third parties from resizing any image at any origin. However, you can enable this option if you check Resize images from any origin.", - "reference": [ - "https://support.cloudflare.com/hc/en-us/articles/360028146432-understanding-cloudflare-image-resizing#12345684" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr/cdn-cgi/image/width/https://clvdiacqhqm7airsbkfgayq49rdr98bdi.oast.live", - "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:57.08888129Z", - "interaction": { - "protocol": "http", - "unique-id": "clvdiacqhqm7airsbkfgayq49rdr98bdi", - "full-id": "clvdiacqhqm7airsbkfgayq49rdr98bdi", - "raw-request": "GET / HTTP/2.0\r\nHost: clvdiacqhqm7airsbkfgayq49rdr98bdi.oast.live\r\nAccept: image/jpeg,image/png,image/gif;q=0.1,image/*;q=0.1\r\nAccept-Encoding: gzip\r\nCf-Connecting-Ip: 2a06:98c0:3600::103\r\nCf-Ew-Via: 15\r\nCf-Ray: 836ec61fc3baa196-SIN\r\nCf-Visitor: {\"scheme\":\"https\"}\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nVia: 1.1 image-resizing-proxy\r\nX-Forwarded-For: 2a06:98c0:3600::103,2a06:98c0:3600::103\r\nX-Forwarded-Proto: https\r\n\r\n", - "raw-response": "HTTP/1.1 200 OK\r\nConnection: close\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: Content-Type, Authorization\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/html; charset=utf-8\r\nServer: oast.live\r\nX-Interactsh-Version: 1.1.8\r\n\r\nidb89rdr94qyagfkbsria7mqhqcaidvlc", - "remote-address": "172.70.189.180", - "timestamp": "2023-12-17T11:19:56.157278243Z" - }, - "curl-command": "curl -X 'GET' -d '' -H 'Accept: */*' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/cdn-cgi/image/width/https://clvdiacqhqm7airsbkfgayq49rdr98bdi.oast.live'", - "matcher-status": true - }, { "template": "http/technologies/metatag-cms.yaml", "template-url": "https://templates.nuclei.sh/public/metatag-cms", @@ -350110,7 +352551,7 @@ "WordPress 6.4.2" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:58.27130766Z", + "timestamp": "2023-12-24T11:24:18.833710203Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350145,50 +352586,64 @@ "matched-at": "https://www.snu.gouv.fr/", "extracted-results": [ "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/plugins.min.js", - "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17", - "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.4.2", - "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/app.min.js", "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a", + "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1", - "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/init.min.js", - "https://www.snu.gouv.fr/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js", - "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317", "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=1701768835", + "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17", "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=1701768835", "https://www.snu.gouv.fr/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.4.2", - "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", - "https://plausible.io/js/script.js" + "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317", + "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/init.min.js", + "https://plausible.io/js/script.js", + "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.4.2", + "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/app.min.js", + "https://www.snu.gouv.fr/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:58.399512814Z", + "timestamp": "2023-12-24T11:24:18.870507032Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "template": "http/misconfiguration/cloudflare-image-ssrf.yaml", + "template-url": "https://templates.nuclei.sh/public/cloudflare-external-image-resize", + "template-id": "cloudflare-external-image-resize", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/cloudflare-image-ssrf.yaml", "info": { - "name": "Wappalyzer Technology Detection", + "name": "Cloudflare External Image Resizing Misconfiguration", "author": [ - "hakluke" + "vavkamil" ], "tags": [ - "tech" + "cloudflare", + "misconfig", + "oast" + ], + "description": "Cloudflare Image Resizing defaults to restricting resizing to the same domain. This prevents third parties from resizing any image at any origin. However, you can enable this option if you check Resize images from any origin.", + "reference": [ + "https://support.cloudflare.com/hc/en-us/articles/360028146432-understanding-cloudflare-image-resizing#12345684" ], "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "youtube", "type": "http", "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr/cdn-cgi/image/width/https://cm419auc4pgn80fpi2fgqtuhbxwfe8yxm.oast.site", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:59.511825065Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", + "timestamp": "2023-12-24T11:24:19.173350855Z", + "interaction": { + "protocol": "http", + "unique-id": "cm419auc4pgn80fpi2fgqtuhbxwfe8yxm", + "full-id": "cm419auc4pgn80fpi2fgqtuhbxwfe8yxm", + "raw-request": "GET / HTTP/2.0\r\nHost: cm419auc4pgn80fpi2fgqtuhbxwfe8yxm.oast.site\r\nAccept: image/jpeg,image/png,image/gif;q=0.1,image/*;q=0.1\r\nAccept-Encoding: gzip\r\nCf-Connecting-Ip: 2a06:98c0:3600::103\r\nCf-Ew-Via: 15\r\nCf-Ray: 83a87a12c4f291a7-SIN\r\nCf-Visitor: {\"scheme\":\"https\"}\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nVia: 1.1 image-resizing-proxy\r\nX-Forwarded-For: 2a06:98c0:3600::103,2a06:98c0:3600::103\r\nX-Forwarded-Proto: https\r\n\r\n", + "raw-response": "HTTP/1.1 200 OK\r\nConnection: close\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: Content-Type, Authorization\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/html; charset=utf-8\r\nServer: oast.site\r\nX-Interactsh-Version: 1.1.8\r\n\r\nmxy8efwxbhutqgf2ipf08ngp4cua914mc", + "remote-address": "172.70.93.15", + "timestamp": "2023-12-24T11:24:15.188440184Z" + }, + "curl-command": "curl -X 'GET' -d '' -H 'Accept: */*' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/cdn-cgi/image/width/https://cm419auc4pgn80fpi2fgqtuhbxwfe8yxm.oast.site'", "matcher-status": true }, { @@ -350209,12 +352664,12 @@ "max-request": 1 } }, - "matcher-name": "cloudflare", + "matcher-name": "vue.js", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:59.511873626Z", + "timestamp": "2023-12-24T11:24:20.040132111Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350236,54 +352691,40 @@ "max-request": 1 } }, - "matcher-name": "vue.js", + "matcher-name": "youtube", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:19:59.511891359Z", + "timestamp": "2023-12-24T11:24:20.040168349Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, { - "template": "http/technologies/wordpress/plugins/adminimize.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-adminimize", - "template-id": "wordpress-adminimize", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/adminimize.yaml", + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", "info": { - "name": "Adminimize Detection", + "name": "Wappalyzer Technology Detection", "author": [ - "ricardomaia" + "hakluke" ], "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/adminimize/" + "tech" ], "severity": "info", "metadata": { - "max-request": 1, - "plugin_namespace": "adminimize", - "wpscan": "https://wpscan.com/plugin/adminimize" + "max-request": 1 } }, - "extractor-name": "detected_version", + "matcher-name": "cloudflare", "type": "http", "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr/wp-content/plugins/adminimize/readme.txt", - "extracted-results": [ - "1.11.10" - ], - "meta": { - "last_version": "1.11.9" - }, + "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:04.654221853Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/adminimize/readme.txt'", + "timestamp": "2023-12-24T11:24:20.040178177Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, { @@ -350322,7 +352763,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:04.6616061Z", + "timestamp": "2023-12-24T11:24:25.160901766Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, @@ -350362,7 +352803,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:04.661635084Z", + "timestamp": "2023-12-24T11:24:25.160939086Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, @@ -350402,10 +352843,51 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:04.661646174Z", + "timestamp": "2023-12-24T11:24:25.160969463Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, + { + "template": "http/technologies/wordpress/plugins/adminimize.yaml", + "template-url": "https://templates.nuclei.sh/public/wordpress-adminimize", + "template-id": "wordpress-adminimize", + "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/adminimize.yaml", + "info": { + "name": "Adminimize Detection", + "author": [ + "ricardomaia" + ], + "tags": [ + "tech", + "wordpress", + "wp-plugin", + "top-200" + ], + "reference": [ + "https://wordpress.org/plugins/adminimize/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "plugin_namespace": "adminimize", + "wpscan": "https://wpscan.com/plugin/adminimize" + } + }, + "extractor-name": "detected_version", + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr/wp-content/plugins/adminimize/readme.txt", + "extracted-results": [ + "1.11.10" + ], + "meta": { + "last_version": "1.11.9" + }, + "ip": "104.22.16.136", + "timestamp": "2023-12-24T11:24:25.162239559Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/adminimize/readme.txt'", + "matcher-status": true + }, { "template": "http/technologies/wordpress-detect.yaml", "template-url": "https://templates.nuclei.sh/public/wordpress-detect", @@ -350440,7 +352922,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:04.7083272Z", + "timestamp": "2023-12-24T11:24:25.279577538Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350481,7 +352963,7 @@ "last_version": "4.12.2" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:05.094162751Z", + "timestamp": "2023-12-24T11:24:25.598714923Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/cloudflare/readme.txt'", "matcher-status": true }, @@ -350522,7 +353004,7 @@ "last_version": "1.2.6.7" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:05.176026417Z", + "timestamp": "2023-12-24T11:24:25.715186487Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/contact-form-cfdb7/readme.txt'", "matcher-status": true }, @@ -350563,7 +353045,7 @@ "last_version": "1.1.36" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:05.800970539Z", + "timestamp": "2023-12-24T11:24:26.992633063Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/header-footer-code-manager/readme.txt'", "matcher-status": true }, @@ -350605,7 +353087,7 @@ "last_version": "2.1.3" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:06.024691555Z", + "timestamp": "2023-12-24T11:24:27.15544362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/imagify/readme.txt'", "matcher-status": true }, @@ -350647,7 +353129,7 @@ "last_version": "5.3.10" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:06.636035857Z", + "timestamp": "2023-12-24T11:24:27.793716998Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/redirection/readme.txt'", "matcher-status": true }, @@ -350688,7 +353170,7 @@ "last_version": "1.7.9" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:06.917414599Z", + "timestamp": "2023-12-24T11:24:28.028881147Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/taxonomy-terms-order/readme.txt'", "matcher-status": true }, @@ -350730,7 +353212,7 @@ "last_version": "21.5" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:07.247680797Z", + "timestamp": "2023-12-24T11:24:28.372476944Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt'", "matcher-status": true }, @@ -350772,7 +353254,7 @@ "last_version": "7.10.7" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:07.308158579Z", + "timestamp": "2023-12-24T11:24:28.460158786Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wordfence/readme.txt'", "matcher-status": true }, @@ -350814,7 +353296,7 @@ "last_version": "3.10.0" }, "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:07.423871975Z", + "timestamp": "2023-12-24T11:24:28.519079386Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wp-mail-smtp/readme.txt'", "matcher-status": true }, @@ -350840,53 +353322,56 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/license.txt", "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:20:20.525845976Z", + "timestamp": "2023-12-24T11:24:41.829282106Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/license.txt'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "TLS Version - Detect", "author": [ - "lingtren" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "www.snu.gouv.fr", "matched-at": "www.snu.gouv.fr:443", "extracted-results": [ - "Google Trust Services LLC" + "tls12" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:25:21.982764681Z", + "timestamp": "2023-12-24T11:28:43.371521193Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -350896,40 +353381,40 @@ "host": "www.snu.gouv.fr", "matched-at": "www.snu.gouv.fr:443", "extracted-results": [ - "www.snu.gouv.fr" + "Google Trust Services LLC" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:25:21.982893571Z", + "timestamp": "2023-12-24T11:28:43.37192076Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "www.snu.gouv.fr", "matched-at": "www.snu.gouv.fr:443", "extracted-results": [ - "tls12" + "www.snu.gouv.fr" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:25:22.144657404Z", + "timestamp": "2023-12-24T11:28:43.372031176Z", "matcher-status": true }, { @@ -350944,7 +353429,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -350959,7 +353445,7 @@ "tls13" ], "ip": "104.22.16.136", - "timestamp": "2023-12-17T11:25:22.199654312Z", + "timestamp": "2023-12-24T11:28:43.429204282Z", "matcher-status": true } ], @@ -350967,7 +353453,7 @@ { "requestedUrl": "https://www.snu.gouv.fr/", "finalUrl": "https://www.snu.gouv.fr/", - "fetchTime": "2023-12-17T11:14:11.140Z", + "fetchTime": "2023-12-24T11:18:28.975Z", "runWarnings": [], "categories": { "performance": { @@ -350978,7 +353464,7 @@ "snapshot" ], "id": "performance", - "score": 0.6480772018432617 + "score": 0.6480831146240235 }, "accessibility": { "title": "Accessibility", @@ -350989,7 +353475,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.95 + "score": 0.97 }, "best-practices": { "title": "Best Practices", @@ -351030,53 +353516,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7171, + "numericValue": 7376, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2585, - "firstMeaningfulPaint": 2585, - "largestContentfulPaint": 4135, - "interactive": 7171, - "speedIndex": 4692, - "totalBlockingTime": 322, - "maxPotentialFID": 242, + "firstContentfulPaint": 2425, + "firstMeaningfulPaint": 2425, + "largestContentfulPaint": 14334, + "interactive": 7376, + "speedIndex": 4926, + "totalBlockingTime": 317, + "maxPotentialFID": 252, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 278012297, + "observedTimeOriginTs": 325007963, "observedNavigationStart": 0, - "observedNavigationStartTs": 278012297, - "observedFirstPaint": 564, - "observedFirstPaintTs": 278576208, - "observedFirstContentfulPaint": 564, - "observedFirstContentfulPaintTs": 278576208, - "observedFirstContentfulPaintAllFrames": 564, - "observedFirstContentfulPaintAllFramesTs": 278576208, - "observedFirstMeaningfulPaint": 564, - "observedFirstMeaningfulPaintTs": 278576208, - "observedLargestContentfulPaint": 768, - "observedLargestContentfulPaintTs": 278780643, - "observedLargestContentfulPaintAllFrames": 768, - "observedLargestContentfulPaintAllFramesTs": 278780643, - "observedTraceEnd": 3625, - "observedTraceEndTs": 281637101, - "observedLoad": 1062, - "observedLoadTs": 279073921, - "observedDomContentLoaded": 1023, - "observedDomContentLoadedTs": 279035391, + "observedNavigationStartTs": 325007963, + "observedFirstPaint": 620, + "observedFirstPaintTs": 325627509, + "observedFirstContentfulPaint": 651, + "observedFirstContentfulPaintTs": 325659387, + "observedFirstContentfulPaintAllFrames": 651, + "observedFirstContentfulPaintAllFramesTs": 325659387, + "observedFirstMeaningfulPaint": 651, + "observedFirstMeaningfulPaintTs": 325659387, + "observedLargestContentfulPaint": 868, + "observedLargestContentfulPaintTs": 325876047, + "observedLargestContentfulPaintAllFrames": 868, + "observedLargestContentfulPaintAllFramesTs": 325876047, + "observedTraceEnd": 3619, + "observedTraceEndTs": 328626775, + "observedLoad": 1051, + "observedLoadTs": 326059444, + "observedDomContentLoaded": 1016, + "observedDomContentLoadedTs": 326023765, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 559, - "observedFirstVisualChangeTs": 278571297, - "observedLastVisualChange": 1543, - "observedLastVisualChangeTs": 279555297, - "observedSpeedIndex": 1168, - "observedSpeedIndexTs": 279180499 + "observedFirstVisualChange": 662, + "observedFirstVisualChangeTs": 325669963, + "observedLastVisualChange": 1562, + "observedLastVisualChangeTs": 326569963, + "observedSpeedIndex": 1225, + "observedSpeedIndexTs": 326232784 }, { "lcpInvalidated": false @@ -351098,19 +353584,19 @@ "numScripts": 17, "numStylesheets": 1, "numFonts": 4, - "numTasks": 1149, - "numTasksOver10ms": 15, - "numTasksOver25ms": 6, + "numTasks": 1134, + "numTasksOver10ms": 13, + "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.303, - "throughput": 62256801.38554249, - "maxRtt": 83.954, - "maxServerLatency": 33.614999999999995, - "totalByteWeight": 2893665, - "totalTaskTime": 543.1079999999972, - "mainDocumentTransferSize": 90594 + "rtt": 5.395000000000001, + "throughput": 77700744.48016821, + "maxRtt": 85.20400000000001, + "maxServerLatency": 41.795, + "totalByteWeight": 2893634, + "totalTaskTime": 507.953999999999, + "mainDocumentTransferSize": 90610 } ] } @@ -351214,9 +353700,9 @@ "cookiesCount": 0, "trackersGrade": "C", "trackersCount": 7, - "lighthouse_performance": 0.6480772018432617, + "lighthouse_performance": 0.6480831146240235, "lighthouse_performanceGrade": "C", - "lighthouse_accessibility": 0.95, + "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", @@ -351240,7 +353726,7 @@ "http": { "url": "https://moncompte.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 11:15:20 GMT", + "end_time": "Sun, 24 Dec 2023 11:28:19 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -351249,7 +353735,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 11:15:19 GMT", + "Date": "Sun, 24 Dec 2023 11:28:18 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -351257,9 +353743,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45551504, + "scan_id": 45765316, "score": 75, - "start_time": "Sun, 17 Dec 2023 11:15:16 GMT", + "start_time": "Sun, 24 Dec 2023 11:28:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -351453,77 +353939,77 @@ "testssl": [ { "id": "service", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -351531,7 +354017,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -351539,7 +354025,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -351547,7 +354033,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -351555,7 +354041,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -351563,7 +354049,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -351571,490 +354057,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "0411AB6E55773AF1C837AC085C1D3B56223F" + "finding": "04B8401E1435CEBA2DFCC8E5182754818D4C" }, { "id": "cert_serialNumberLen", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "0DE832DA842A9E21E7DA1437F3DEEFD856373E18" + "finding": "574D53DAE8283D75760CA35CD627BC07076A64BA" }, { "id": "cert_fingerprintSHA256", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "297F0B6AE3D39E0160EB493FC83B0760FF63C1E2C1195F34758FC5B942B3F9A8" + "finding": "E74BBD4A5EB8CF523420D1C43D79C3C0E27AB4A35C54BEC2B77A2EFB7FE952B0" }, { "id": "cert", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "moncompte.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "moncompte.snu.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "inscription.snu.gouv.fr moncompte.snu.gouv.fr" }, { "id": "cert_trust", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", - "severity": "HIGH", - "finding": "expires < 15 days (12)" + "severity": "OK", + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "2023-10-01 06:05" + "finding": "2023-12-15 05:06" }, { "id": "cert_notAfter", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", - "severity": "HIGH", - "finding": "2023-12-30 06:05" + "severity": "OK", + "finding": "2024-03-14 05:06" }, { "id": "cert_extlifeSpan", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "1702811797" + "finding": "1703417376" }, { "id": "HSTS_time", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -352062,7 +354548,7 @@ }, { "id": "heartbleed", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -352071,7 +354557,7 @@ }, { "id": "CCS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -352080,7 +354566,7 @@ }, { "id": "ticketbleed", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -352089,7 +354575,7 @@ }, { "id": "ROBOT", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -352098,7 +354584,7 @@ }, { "id": "secure_renego", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -352106,7 +354592,7 @@ }, { "id": "secure_client_renego", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -352115,7 +354601,7 @@ }, { "id": "CRIME_TLS", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -352124,7 +354610,7 @@ }, { "id": "BREACH", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -352133,7 +354619,7 @@ }, { "id": "POODLE_SSL", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -352142,14 +354628,14 @@ }, { "id": "fallback_SCSV", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -352158,7 +354644,7 @@ }, { "id": "FREAK", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -352167,7 +354653,7 @@ }, { "id": "DROWN", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -352176,16 +354662,16 @@ }, { "id": "DROWN_hint", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=297F0B6AE3D39E0160EB493FC83B0760FF63C1E2C1195F34758FC5B942B3F9A8" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=E74BBD4A5EB8CF523420D1C43D79C3C0E27AB4A35C54BEC2B77A2EFB7FE952B0" }, { "id": "LOGJAM", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -352194,7 +354680,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -352203,7 +354689,7 @@ }, { "id": "BEAST", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -352212,7 +354698,7 @@ }, { "id": "LUCKY13", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -352221,7 +354707,7 @@ }, { "id": "winshock", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -352230,7 +354716,7 @@ }, { "id": "RC4", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -352239,325 +354725,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "moncompte.snu.gouv.fr/185.231.167.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "57" + "finding": "56" } ], "thirdparties": { @@ -352598,11 +355084,11 @@ "cookies": [ { "name": "bln_challengejs", - "value": "GkT9ns7ThuQ-JX2pbOLhuOtkDiMNzP-TA-fFACw6Tj4VYBlIPSwv83_VP8KA_7oUJJ-6lqyYIGgyh5byYeGowW-BCx5RTW2euqMO-sXrQdSCDn8wgNLtz_NxnWyMOQDR517zryaMx2cn_eNwxkPpph5F010rOy2vcwE3Za43T0dNnIquz5EYKaa_4vxDYS8lSiDca1PkkbECKjsMEe2icUbNq_3HW5Vsw0rdIvPJ4N3_1ZMxTZ5DSFHdxmJsunjXqd0FAZ4D2uyRmCpuLb5F2w", + "value": "IEkhQYSoPEgPFLLbiPcNDvVzA_s2Q2iJtOSjCHi_ADQNT-fhBOBnO5grtdsI0BHnELAEYTvPhWAPpiXUTE8rL-wtZ2TkHylCHxG-FIxUMQo0qQbq_Hdib5wQHy3L_nGrYxu-1DUpNH2gPT9qvSYqJtZfZv-SitTBf_XBWTmonkhqDpP3sNf8VkbdTrwmII_RMi5sx9eNJBAR3rroYWcdzQ8yKEfRz2u2oUuvs5gSjDMDB_yGbnxio80Q50jmLlMs", "domain": ".snu.gouv.fr", "path": "/", - "expires": 1702812652.594988, - "size": 293, + "expires": 1703418232.159204, + "size": 271, "httpOnly": false, "secure": false, "session": false, @@ -352615,12 +355101,12 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 11:15:52 GMT", - "etag": "W/\"11a9-18c6dacc911\"", + "date": "Sun, 24 Dec 2023 11:28:52 GMT", + "etag": "W/\"11a9-18c964b6177\"", "expect-ct": "max-age=0", - "last-modified": "Fri, 15 Dec 2023 13:31:29 GMT", + "last-modified": "Sat, 23 Dec 2023 10:49:31 GMT", "referrer-policy": "no-referrer", - "sozu-id": "01HHVQSB92G3DD6RMWEBC6A0V9", + "sozu-id": "01HJDSBGFS482A0TMBJVQWP033", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-dns-prefetch-control": "off", @@ -352632,7 +355118,7 @@ "endpoints": [ { "hostname": "moncompte.snu.gouv.fr", - "ip": "185.231.167.148", + "ip": "185.179.148.148", "geoip": { "continent": { "code": "EU", @@ -352949,7 +355435,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:13:25", + "@generated": "Sun, 24 Dec 2023 11:26:24", "site": [ { "@name": "https://moncompte.snu.gouv.fr", @@ -353047,73 +355533,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "moncompte.snu.gouv.fr.", "matched-at": "moncompte.snu.gouv.fr", - "extracted-results": [ - "mmlalmlj-snu-app.baleen.cshield.net." - ], - "timestamp": "2023-12-17T11:18:01.690340789Z", + "timestamp": "2023-12-24T11:30:57.917881822Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "moncompte.snu.gouv.fr.", "matched-at": "moncompte.snu.gouv.fr", - "timestamp": "2023-12-17T11:18:01.856661389Z", + "extracted-results": [ + "mmlalmlj-snu-app.baleen.cshield.net." + ], + "timestamp": "2023-12-24T11:30:57.991845994Z", "matcher-status": true }, { @@ -353152,8 +355638,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:12.871632622Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:09.042909539Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353179,8 +355665,8 @@ "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:35.076134827Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:31.707306491Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353212,12 +355698,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511280858Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475201977Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353249,12 +355735,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.51132507Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.47526253Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353286,12 +355772,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511342473Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475278469Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353323,12 +355809,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511359084Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475292105Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353360,12 +355846,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511372028Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475336526Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353397,12 +355883,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511386786Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475381761Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353434,12 +355920,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:18:43.511400431Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:31:40.475418129Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -353454,7 +355940,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -353468,8 +355955,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:20:43.470935852Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:33:41.508523249Z", "matcher-status": true }, { @@ -353483,7 +355970,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -353498,8 +355986,8 @@ "inscription.snu.gouv.fr", "moncompte.snu.gouv.fr" ], - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:20:43.471051056Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:33:41.508659534Z", "matcher-status": true }, { @@ -353514,7 +356002,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -353528,8 +356017,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:20:44.962454813Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:33:42.939995236Z", "matcher-status": true }, { @@ -353544,7 +356033,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -353558,8 +356048,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.179.149.148", - "timestamp": "2023-12-17T11:20:45.151023094Z", + "ip": "185.179.148.148", + "timestamp": "2023-12-24T11:33:43.131003191Z", "matcher-status": true } ], @@ -353567,7 +356057,7 @@ { "requestedUrl": "https://moncompte.snu.gouv.fr/", "finalUrl": "https://moncompte.snu.gouv.fr/auth?disconnected=1", - "fetchTime": "2023-12-17T11:13:39.541Z", + "fetchTime": "2023-12-24T11:26:38.761Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete.", "The page may not be loading as expected because your test URL (https://moncompte.snu.gouv.fr/) was redirected to https://moncompte.snu.gouv.fr/auth?disconnected=1. Try testing the second URL directly." @@ -353581,7 +356071,7 @@ "snapshot" ], "id": "performance", - "score": 0.9644189834594726 + "score": 0.963986587524414 }, "accessibility": { "title": "Accessibility", @@ -353633,53 +356123,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8723, + "numericValue": 8808, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7083, - "firstMeaningfulPaint": 7760, - "largestContentfulPaint": 9613, - "interactive": 8723, - "speedIndex": 7083, - "totalBlockingTime": 863, - "maxPotentialFID": 860, + "firstContentfulPaint": 6880, + "firstMeaningfulPaint": 7578, + "largestContentfulPaint": 9805, + "interactive": 8808, + "speedIndex": 7097, + "totalBlockingTime": 897, + "maxPotentialFID": 893, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 186175878, + "observedTimeOriginTs": 353193465, "observedNavigationStart": 0, - "observedNavigationStartTs": 186175878, - "observedFirstPaint": 262, - "observedFirstPaintTs": 186438337, - "observedFirstContentfulPaint": 585, - "observedFirstContentfulPaintTs": 186760543, - "observedFirstContentfulPaintAllFrames": 585, - "observedFirstContentfulPaintAllFramesTs": 186760543, - "observedFirstMeaningfulPaint": 1072, - "observedFirstMeaningfulPaintTs": 187247512, - "observedLargestContentfulPaint": 990, - "observedLargestContentfulPaintTs": 187165595, - "observedLargestContentfulPaintAllFrames": 990, - "observedLargestContentfulPaintAllFramesTs": 187165595, - "observedTraceEnd": 42854, - "observedTraceEndTs": 229029447, - "observedLoad": 507, - "observedLoadTs": 186682876, - "observedDomContentLoaded": 507, - "observedDomContentLoadedTs": 186682826, + "observedNavigationStartTs": 353193465, + "observedFirstPaint": 422, + "observedFirstPaintTs": 353615818, + "observedFirstContentfulPaint": 722, + "observedFirstContentfulPaintTs": 353915282, + "observedFirstContentfulPaintAllFrames": 722, + "observedFirstContentfulPaintAllFramesTs": 353915282, + "observedFirstMeaningfulPaint": 1299, + "observedFirstMeaningfulPaintTs": 354492878, + "observedLargestContentfulPaint": 1299, + "observedLargestContentfulPaintTs": 354492878, + "observedLargestContentfulPaintAllFrames": 1299, + "observedLargestContentfulPaintAllFramesTs": 354492878, + "observedTraceEnd": 42569, + "observedTraceEndTs": 395762524, + "observedLoad": 643, + "observedLoadTs": 353836954, + "observedDomContentLoaded": 643, + "observedDomContentLoadedTs": 353836588, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 0, - "observedFirstVisualChangeTs": 186175878, - "observedLastVisualChange": 11032, - "observedLastVisualChangeTs": 197207878, - "observedSpeedIndex": 1252, - "observedSpeedIndexTs": 187428003 + "observedFirstVisualChange": 9, + "observedFirstVisualChangeTs": 353202465, + "observedLastVisualChange": 11175, + "observedLastVisualChangeTs": 364368465, + "observedSpeedIndex": 1418, + "observedSpeedIndexTs": 354611648 }, { "lcpInvalidated": false @@ -353701,19 +356191,19 @@ "numScripts": 4, "numStylesheets": 6, "numFonts": 2, - "numTasks": 3723, - "numTasksOver10ms": 12, - "numTasksOver25ms": 7, + "numTasks": 3919, + "numTasksOver10ms": 13, + "numTasksOver25ms": 8, "numTasksOver50ms": 3, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 6.555000000000001, - "throughput": 14160322.472210856, - "maxRtt": 87.379, - "maxServerLatency": 21.895999999999987, - "totalByteWeight": 1235123, - "totalTaskTime": 1386.7269999999933, - "mainDocumentTransferSize": 2077 + "rtt": 5.4910000000000005, + "throughput": 12398237.832368258, + "maxRtt": 88.069, + "maxServerLatency": 68.04299999999999, + "totalByteWeight": 1237390, + "totalTaskTime": 1469.631999999973, + "mainDocumentTransferSize": 2076 } ] } @@ -353803,14 +356293,14 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2023-12-30T06:05:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-03-14T05:06:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.9644189834594726, + "lighthouse_performance": 0.963986587524414, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A", @@ -353836,7 +356326,7 @@ "http": { "url": "https://admin.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 11:16:24 GMT", + "end_time": "Sun, 24 Dec 2023 11:35:18 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -353845,7 +356335,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 11:16:23 GMT", + "Date": "Sun, 24 Dec 2023 11:35:17 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -353853,9 +356343,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45551528, + "scan_id": 45765373, "score": 75, - "start_time": "Sun, 17 Dec 2023 11:16:21 GMT", + "start_time": "Sun, 24 Dec 2023 11:33:35 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -354049,77 +356539,77 @@ "testssl": [ { "id": "service", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -354127,7 +356617,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -354135,7 +356625,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -354143,7 +356633,7 @@ }, { "id": "cipherlist_LOW", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -354151,7 +356641,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -354159,7 +356649,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -354167,490 +356657,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "03C9AEE2D30DB0370FCE604BF68FC0D0F9B4" + "finding": "0344A2296ACC130D099A77BC0385B5BA5B70" }, { "id": "cert_serialNumberLen", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "F13589B1E2736640B93DE6B27E8B20EDF658D67E" + "finding": "3E796ADFF43D1EF64C4FB51C091F4F098890D3BF" }, { "id": "cert_fingerprintSHA256", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "0513429ABC3DEBAD57FD50B31323B8B6E99A758B0EC82C5EEDCF21EBD5922FC4" + "finding": "64B9F786C46AB5707FCD08CB6E2800A08B10A62D949E08FF744873229E3DB6A7" }, { "id": "cert", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIE7zCCA9egAwIBAgISA8mu4tMNsDcPzmBL9o/A0Pm0MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEwMDEwNjE2MzJaFw0yMzEyMzAwNjE2MzFaMBwxGjAYBgNVBAMTEWFkbWluLnNudS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bDnsYZzEP7pv43l1v5iG3Cz5kOjNyTO6EX/biXdBkqzkc0MQ28URj35NHvtovAdm1Qdq6jWVp399RNc5AFxXMbj4tfV8wP8iTVX9J0nZXZyZfwUaFm7P96jC0bE1Rn0M4Ea+bJq6DHSHniBYcDxKRMIp+EU1+cTC0pzzenE46CLfCzTYm+BE2o7zrxTPuZ4Hig6a+t+VktE7KWjOx6qXEBgQyIt1dVO7AYoOdb2viVyYqzJPKucnGU3DxjjpBiv31zfKWZ5JX53SLFmF5s0Gx4IxS3fV/pLouf3ok3ugGdq2jfrogo6X50N3UOr5wsFcJQ3URKzXAFMoudYp65g4QIDAQABo4ICEzCCAg8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS8R7RJABigig3qci1lOOfnkswfXjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAcBgNVHREEFTATghFhZG1pbi5zbnUuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABiuoYjYAAAAQDAEcwRQIhAP8gwV02MOQKH/zVxq/5Fe6R1xNhCeMbuEumSXKR3WJ1AiBjzBl8WWTy/rgai4KyDsfZM95bcfXcg7PyrJ+vT0H6bwB2AHoyjFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABiuoYjZoAAAQDAEcwRQIhAJq07TTzdFnUzOUP3YI5wrcr/FwvEo+lPxLFUUTH1n6HAiA5p5phmp0GSvy09YzCR6NxJXU1B4gD1pWhsc63ex277zANBgkqhkiG9w0BAQsFAAOCAQEAXPbz1iGS/08ypZ5byEOaqh8YA0FKGEaCGJo4NzlASJOEY33HIiPSQBjcKRQ7Hbu8oqJkMtSptbkkmixYQYdWJO3WAC8krgu/vdNd83VkHAJBJrfBe70ObOrZth3O/hL0KC9NpB8xF1pCRhTzyZXdV92c5ZrJoymdRslBhIjfA7N+XRmxAx7kCa7IAzPcOJ0m1yccdhR9te/0LLQIeRQnbxCcyVszxbfqynhqEiG2GktB8KiwY7fDb80Nwvg9W3oKS3Go5CT3WO1ew7w+yWHP8eQzx+Am7CHfz+EQcLxj4pqi3b59UNnXNT8M+u4yKlQ0mVaQJkc19Irf1UUKnNPadw==\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "admin.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "admin.snu.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "admin.snu.gouv.fr" }, { "id": "cert_trust", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "HIGH", - "finding": "expires < 15 days (12)" + "severity": "OK", + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "2023-10-01 06:16" + "finding": "2023-12-15 05:17" }, { "id": "cert_notAfter", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", - "severity": "HIGH", - "finding": "2023-12-30 06:16" + "severity": "OK", + "finding": "2024-03-14 05:17" }, { "id": "cert_extlifeSpan", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "1702811897" + "finding": "1703417797" }, { "id": "HSTS_time", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -354658,7 +357148,7 @@ }, { "id": "heartbleed", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -354667,7 +357157,7 @@ }, { "id": "CCS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -354676,7 +357166,7 @@ }, { "id": "ticketbleed", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -354685,7 +357175,7 @@ }, { "id": "ROBOT", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -354694,7 +357184,7 @@ }, { "id": "secure_renego", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -354702,7 +357192,7 @@ }, { "id": "secure_client_renego", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -354711,7 +357201,7 @@ }, { "id": "CRIME_TLS", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -354720,7 +357210,7 @@ }, { "id": "BREACH", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -354729,7 +357219,7 @@ }, { "id": "POODLE_SSL", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -354738,14 +357228,14 @@ }, { "id": "fallback_SCSV", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -354754,7 +357244,7 @@ }, { "id": "FREAK", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -354763,7 +357253,7 @@ }, { "id": "DROWN", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -354772,16 +357262,16 @@ }, { "id": "DROWN_hint", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=0513429ABC3DEBAD57FD50B31323B8B6E99A758B0EC82C5EEDCF21EBD5922FC4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=64B9F786C46AB5707FCD08CB6E2800A08B10A62D949E08FF744873229E3DB6A7" }, { "id": "LOGJAM", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -354790,7 +357280,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -354799,7 +357289,7 @@ }, { "id": "BEAST", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -354808,7 +357298,7 @@ }, { "id": "LUCKY13", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -354817,7 +357307,7 @@ }, { "id": "winshock", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -354826,7 +357316,7 @@ }, { "id": "RC4", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -354835,325 +357325,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "admin.snu.gouv.fr/185.179.149.149", + "ip": "admin.snu.gouv.fr/185.231.167.165", "port": "443", "severity": "INFO", - "finding": "100" + "finding": "58" } ], "thirdparties": { @@ -355178,10 +357668,10 @@ "cookies": [ { "name": "bln_challengejs", - "value": "O_FiLGf-CcCCpXCzt9J96U7mGVaZe9N9jiLohbYSjopLhcf8egIczqq3TH6OrvOELfZWtsladwhV3nZPpKt61j5fq2G0rfBlERkPYG7mM49N41E8DRZY-KP-gHnwCRu5N97Wg_cBg_KkT1QXTfhRJp0f14aGMchqiJsrT2tQ-Pkm3cOBTpKAqiXnO-4ATjouie2hbXKN-pAwEwCBmT-dQhyA8j0cbZoGxeKvQUW8Bp7cuHmiMnRciMARoXNc0bOv", + "value": "O_FiLGf-CcCCpXCzt9J96U7mGVaZe9N9jiLohbYSjopLhcf8egIczqq3TH6OrvOELfZWtsladwhV3nZPpKt61j5fq2G0rfBlERkPYG7mM49N41E8DRZY-KP-gHnwCRu5N97Wg_cBg_KkT1QXTfhRJp0f14aGMchqiJsrT2tQ-Pkm3cOBTpKAqiXnO-4ATjou74WxF5vd4Ovqs_bfl6QQdRxVNKu1LGVnOSxM72Wh4XKitR9AD70ZCxL_4h21XVnv", "domain": ".snu.gouv.fr", "path": "/", - "expires": 1702812716.195606, + "expires": 1703418650.800665, "size": 271, "httpOnly": false, "secure": false, @@ -355195,12 +357685,12 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 11:16:56 GMT", - "etag": "W/\"63a-18c6dcf0077\"", + "date": "Sun, 24 Dec 2023 11:35:50 GMT", + "etag": "W/\"63a-18c964bb9dc\"", "expect-ct": "max-age=0", - "last-modified": "Fri, 15 Dec 2023 14:08:51 GMT", + "last-modified": "Sat, 23 Dec 2023 10:49:54 GMT", "referrer-policy": "no-referrer", - "sozu-id": "01HHVQV5PAXFYB9GS2H4411AR5", + "sozu-id": "01HJDSR9AYGPADYEJKKA1KVKG9", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-dns-prefetch-control": "off", @@ -355212,7 +357702,7 @@ "endpoints": [ { "hostname": "admin.snu.gouv.fr", - "ip": "185.179.149.149", + "ip": "185.231.167.165", "geoip": { "continent": { "code": "EU", @@ -355268,7 +357758,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.46.234", + "ip": "172.253.115.95", "geoip": { "continent": { "code": "NA", @@ -355322,18 +357812,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.221.147", + "ip": "38.104.169.186", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4460243, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Charlotte", + "en": "Charlotte", + "es": "Charlotte", + "fr": "Charlotte", + "ja": "シャーロット", + "pt-BR": "Charlotte", + "ru": "Шарлотт", + "zh-CN": "夏洛特" } }, "continent": { @@ -355366,41 +357857,40 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 35.2316, + "longitude": -80.8428, + "metro_code": 517, + "time_zone": "America/New_York" }, "postal": { - "code": "95141" + "code": "28202" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 4482348, + "iso_code": "NC", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "North Carolina", + "es": "Carolina del Norte", + "fr": "Caroline du Nord", + "ja": "ノースカロライナ州", + "pt-BR": "Carolina do Norte", + "ru": "Северная Каролина", + "zh-CN": "北卡罗来纳州" } } ] @@ -355529,7 +358019,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:15:52", + "@generated": "Sun, 24 Dec 2023 11:33:09", "site": [ { "@name": "https://admin.snu.gouv.fr", @@ -355626,41 +358116,6 @@ ] }, "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "admin.snu.gouv.fr.", - "matched-at": "admin.snu.gouv.fr", - "timestamp": "2023-12-17T11:20:06.422717008Z", - "matcher-status": true - }, { "template": "dns/dns-saas-service-detection.yaml", "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", @@ -355693,7 +358148,42 @@ "extracted-results": [ "ttrbatwx-snu-admin.baleen.cshield.net." ], - "timestamp": "2023-12-17T11:20:07.87512274Z", + "timestamp": "2023-12-24T11:38:02.1472577Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "admin.snu.gouv.fr.", + "matched-at": "admin.snu.gouv.fr", + "timestamp": "2023-12-24T11:38:03.14631239Z", "matcher-status": true }, { @@ -355732,8 +358222,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:20:25.955209258Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:14.14076826Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355759,8 +358249,8 @@ "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:02.624225422Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:38.023455084Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355792,12 +358282,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.491988527Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.44165153Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355829,12 +358319,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492028692Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.441716241Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355866,12 +358356,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492041706Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.44173139Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355903,12 +358393,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492057144Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.441743833Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355940,12 +358430,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492071761Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.441756496Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -355977,12 +358467,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492088172Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.441773819Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356014,12 +358504,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:21:17.492107478Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:38:47.441787534Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356034,7 +358524,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -356048,8 +358539,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:23:56.43538595Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:40:50.764052106Z", "matcher-status": true }, { @@ -356063,7 +358554,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -356077,8 +358569,8 @@ "extracted-results": [ "admin.snu.gouv.fr" ], - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:23:56.435496074Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:40:50.764158605Z", "matcher-status": true }, { @@ -356093,7 +358585,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -356107,8 +358600,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:23:58.70531102Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:40:52.745197311Z", "matcher-status": true }, { @@ -356123,7 +358616,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -356137,8 +358631,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.179.148.149", - "timestamp": "2023-12-17T11:23:59.015655796Z", + "ip": "185.231.167.165", + "timestamp": "2023-12-24T11:40:52.950069065Z", "matcher-status": true } ], @@ -356146,7 +358640,7 @@ { "requestedUrl": "https://admin.snu.gouv.fr/", "finalUrl": "https://admin.snu.gouv.fr/", - "fetchTime": "2023-12-17T11:16:06.906Z", + "fetchTime": "2023-12-24T11:33:23.069Z", "runWarnings": [], "categories": { "performance": { @@ -356157,7 +358651,7 @@ "snapshot" ], "id": "performance", - "score": 0.8323629379272461 + "score": 0.8318445205688476 }, "accessibility": { "title": "Accessibility", @@ -356209,53 +358703,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12753, + "numericValue": 13166, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 10091, - "firstMeaningfulPaint": 10105, - "largestContentfulPaint": 13228, - "interactive": 12753, - "speedIndex": 12334, - "totalBlockingTime": 1970, - "maxPotentialFID": 1942, - "cumulativeLayoutShift": 0.00020166015625, - "cumulativeLayoutShiftMainFrame": 0.00020166015625, - "totalCumulativeLayoutShift": 0.00020166015625, + "firstContentfulPaint": 9954, + "firstMeaningfulPaint": 10967, + "largestContentfulPaint": 12804, + "interactive": 13166, + "speedIndex": 10705, + "totalBlockingTime": 1973, + "maxPotentialFID": 1941, + "cumulativeLayoutShift": 0.00034171549479166665, + "cumulativeLayoutShiftMainFrame": 0.00034171549479166665, + "totalCumulativeLayoutShift": 0.00034171549479166665, "observedTimeOrigin": 0, - "observedTimeOriginTs": 188435760, + "observedTimeOriginTs": 230919892, "observedNavigationStart": 0, - "observedNavigationStartTs": 188435760, - "observedFirstPaint": 799, - "observedFirstPaintTs": 189234306, - "observedFirstContentfulPaint": 1906, - "observedFirstContentfulPaintTs": 190341444, - "observedFirstContentfulPaintAllFrames": 1906, - "observedFirstContentfulPaintAllFramesTs": 190341444, - "observedFirstMeaningfulPaint": 1906, - "observedFirstMeaningfulPaintTs": 190341444, - "observedLargestContentfulPaint": 3043, - "observedLargestContentfulPaintTs": 191478642, - "observedLargestContentfulPaintAllFrames": 3043, - "observedLargestContentfulPaintAllFramesTs": 191478642, - "observedTraceEnd": 5793, - "observedTraceEndTs": 194228388, - "observedLoad": 1849, - "observedLoadTs": 190284940, - "observedDomContentLoaded": 1848, - "observedDomContentLoadedTs": 190284220, - "observedCumulativeLayoutShift": 0.00020166015625, - "observedCumulativeLayoutShiftMainFrame": 0.00020166015625, - "observedTotalCumulativeLayoutShift": 0.00020166015625, - "observedFirstVisualChange": 806, - "observedFirstVisualChangeTs": 189241760, - "observedLastVisualChange": 3506, - "observedLastVisualChangeTs": 191941760, - "observedSpeedIndex": 3022, - "observedSpeedIndexTs": 191458175 + "observedNavigationStartTs": 230919892, + "observedFirstPaint": 381, + "observedFirstPaintTs": 231300776, + "observedFirstContentfulPaint": 1379, + "observedFirstContentfulPaintTs": 232298957, + "observedFirstContentfulPaintAllFrames": 1379, + "observedFirstContentfulPaintAllFramesTs": 232298957, + "observedFirstMeaningfulPaint": 2060, + "observedFirstMeaningfulPaintTs": 232980359, + "observedLargestContentfulPaint": 2060, + "observedLargestContentfulPaintTs": 232980359, + "observedLargestContentfulPaintAllFrames": 2060, + "observedLargestContentfulPaintAllFramesTs": 232980359, + "observedTraceEnd": 4545, + "observedTraceEndTs": 235464861, + "observedLoad": 1320, + "observedLoadTs": 232240328, + "observedDomContentLoaded": 1317, + "observedDomContentLoadedTs": 232236681, + "observedCumulativeLayoutShift": 0.00034171549479166665, + "observedCumulativeLayoutShiftMainFrame": 0.00034171549479166665, + "observedTotalCumulativeLayoutShift": 0.00034171549479166665, + "observedFirstVisualChange": 1520, + "observedFirstVisualChangeTs": 232439892, + "observedLastVisualChange": 2254, + "observedLastVisualChangeTs": 233173892, + "observedSpeedIndex": 2065, + "observedSpeedIndexTs": 232985180 }, { "lcpInvalidated": false @@ -356277,19 +358771,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 853, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, + "numTasks": 733, + "numTasksOver10ms": 6, + "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.822, - "throughput": 12786391.25958916, - "maxRtt": 151.653, - "maxServerLatency": 20.342000000000002, - "totalByteWeight": 1927477, - "totalTaskTime": 776.8089999999991, - "mainDocumentTransferSize": 2076 + "rtt": 6.649000000000001, + "throughput": 25984479.929376557, + "maxRtt": 82.404, + "maxServerLatency": 19.903999999999996, + "totalByteWeight": 1930195, + "totalTaskTime": 782.0519999999999, + "mainDocumentTransferSize": 2077 } ] } @@ -356379,14 +358873,14 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2023-12-30T06:16:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-03-14T05:17:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 3, - "lighthouse_performance": 0.8323629379272461, + "lighthouse_performance": 0.8318445205688476, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.86, "lighthouse_accessibilityGrade": "A", @@ -356412,29 +358906,29 @@ "http": { "url": "https://www.jeveuxaider.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 11:36:34 GMT", + "end_time": "Sun, 24 Dec 2023 11:42:07 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "836ede670ca5fa7e-SJC", + "CF-RAY": "83a8942adf4b254e-SJC", "Cache-Control": "max-age=300, public, no-transform", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 17 Dec 2023 11:36:31 GMT", + "Date": "Sun, 24 Dec 2023 11:42:04 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", - "expires": "Sun, 17 Dec 2023 11:41:31 GMT", + "expires": "Sun, 24 Dec 2023 11:47:04 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Nuxt", - "x-request-id": "22503d12-ef9e-4b7f-92ac-6dcbc1a74658, 22503d12-ef9e-4b7f-92ac-6dcbc1a74658" + "x-request-id": "80e3b92b-b1a8-4990-b135-3bff6df39068, 80e3b92b-b1a8-4990-b135-3bff6df39068" }, - "scan_id": 45551951, + "scan_id": 45765490, "score": 40, - "start_time": "Sun, 17 Dec 2023 11:36:27 GMT", + "start_time": "Sun, 24 Dec 2023 11:42:00 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -356646,77 +359140,77 @@ "testssl": [ { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -356724,7 +359218,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -356732,7 +359226,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -356740,7 +359234,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -356748,7 +359242,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -356756,7 +359250,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -356764,756 +359258,756 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "08E8505CD23A31E7140592B0B0CA54CA" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "0303C655D707D57E86C3EEB42143CF18" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "7DDF74261D5694569AB5F19527580289146D4F41" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "1702813082" + "finding": "1703418210" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -357521,7 +360015,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -357530,7 +360024,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -357539,7 +360033,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -357548,7 +360042,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -357557,7 +360051,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -357565,7 +360059,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -357574,7 +360068,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -357583,7 +360077,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -357592,7 +360086,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -357601,14 +360095,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -357617,7 +360111,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -357626,7 +360120,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -357635,7 +360129,7 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -357644,7 +360138,7 @@ }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -357653,7 +360147,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -357662,7 +360156,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -357671,7 +360165,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -357680,7 +360174,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -357689,7 +360183,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -357698,7 +360192,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -357707,406 +360201,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358114,7 +360608,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358122,7 +360616,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358130,7 +360624,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -358138,7 +360632,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -358146,7 +360640,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -358154,756 +360648,756 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "08E8505CD23A31E7140592B0B0CA54CA" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0303C655D707D57E86C3EEB42143CF18" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "7DDF74261D5694569AB5F19527580289146D4F41" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "1702813140" + "finding": "1703418268" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -358911,7 +361405,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -358920,7 +361414,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -358929,7 +361423,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -358938,7 +361432,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -358947,7 +361441,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -358955,7 +361449,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -358964,7 +361458,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -358973,7 +361467,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -358982,7 +361476,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -358991,14 +361485,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -359007,7 +361501,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -359016,7 +361510,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -359025,7 +361519,7 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -359034,7 +361528,7 @@ }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -359043,7 +361537,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -359052,7 +361546,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -359061,7 +361555,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -359070,7 +361564,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -359079,7 +361573,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -359088,7 +361582,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -359097,406 +361591,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359504,7 +361998,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359512,7 +362006,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359520,7 +362014,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359528,7 +362022,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -359536,7 +362030,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -359544,756 +362038,756 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "08E8505CD23A31E7140592B0B0CA54CA" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0303C655D707D57E86C3EEB42143CF18" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "7DDF74261D5694569AB5F19527580289146D4F41" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFMjCCBNegAwIBAgIQAwPGVdcH1X6Gw+60IUPPGDAKBggqhkjOPQQDAjBKMQswCQYDVQQGEwJVUzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEgMB4GA1UEAxMXQ2xvdWRmbGFyZSBJbmMgRUNDIENBLTMwHhcNMjMwMjEyMDAwMDAwWhcNMjQwMjEyMjM1OTU5WjB1MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5jaXNjbzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEeMBwGA1UEAxMVc25pLmNsb3VkZmxhcmVzc2wuY29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEIZUsrUu/IivcE7I9hJ2N1QUShUiBNmsmk4e21Mv8RyGXTJ3EjL7KmiPRvlBUU/Wfh/ghcHAr9GI8sijzlgT2t6OCA3IwggNuMB8GA1UdIwQYMBaAFKXON+rrsHUOlGeItEX62SQQh5YfMB0GA1UdDgQWBBTjG3PwkjLAGIqMhAV3hUNS/2ENtjA5BgNVHREEMjAwghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcoIVc25pLmNsb3VkZmxhcmVzc2wuY29tMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwewYDVR0fBHQwcjA3oDWgM4YxaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDA3oDWgM4YxaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwdgYIKwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9DbG91ZGZsYXJlSW5jRUNDQ0EtMy5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGGQ5/2CwAABAMARzBFAiEAkxcG1DzPVZNisOxqgQld8RMgMmBt5JRbtxxTHlIfnSkCIAVGp2Zmnng92XY7lF0Pj6OamnK+dVc+BTX1EvV1cWVrAHYAc9meiRtMlnigIH1HneayxhzQUV5xGSqMa4AQesF3crUAAAGGQ5/2PwAABAMARzBFAiAZ/C5Ovufns2rdRw4pZAVfUavA8cc/78JfTrIpgobubAIhAPe9PPJitI5hiuPP9ZS0aDdJeVgni7bGmj8tOG4Ek96LAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGQ5/2AAAABAMARjBEAiBDUCNCh/SOWNNxiu7UPQvTMZJOU8ZXPyujC4N3jK7XYgIgD1dw/isqD33Q3rSAbq/1m25/Egd3D9m4OKhsmZWhsPwwCgYIKoZIzj0EAwIDSQAwRgIhAO4dRCZdpDdriqh+RqAo2lMExaD9BF0VgXmgbV5GhlKmAiEA5zBWueI18p6SspShiLB1pBlTi+vuULLqVTNoy/LXeRY=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "sni.cloudflaressl.com" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (57)" + "finding": "expires < 60 days (50)" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2023-02-12 00:00" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "2024-02-12 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "1702813200" + "finding": "1703418326" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -360301,7 +362795,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -360310,7 +362804,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -360319,7 +362813,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -360328,7 +362822,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -360337,7 +362831,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -360345,7 +362839,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -360354,7 +362848,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -360363,7 +362857,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -360372,7 +362866,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -360381,14 +362875,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -360397,7 +362891,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -360406,7 +362900,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -360415,7 +362909,7 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -360424,7 +362918,7 @@ }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -360433,7 +362927,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -360442,7 +362936,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -360451,7 +362945,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -360460,7 +362954,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -360469,7 +362963,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -360478,7 +362972,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -360487,350 +362981,354 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "scanTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "179" + "finding": "176" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12166/responsive/solidarite-et-insertion-2___card_600_286.webp" + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12169/responsive/solidarite-et-insertion-5___card_600_286.webp" }, { "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/47332/responsive/Ts9XUu3mDIrd7Bwj9B62OycTHZDIT2___card_600_286.webp" + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/16730/responsive/oapbCLiySgVV2vlAphIdygoIbhlutK___card_600_286.webp" + }, + { + "type": "unknown", + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12166/responsive/solidarite-et-insertion-2___card_600_286.webp" }, { "type": "google tag manager", @@ -360893,16 +363391,16 @@ "headers": { "cache-control": "max-age=300\npublic, no-transform", "cf-cache-status": "DYNAMIC", - "cf-ray": "836edf390dbf811a-ORD", + "cf-ray": "83a894edc834059c-IAD", "content-encoding": "gzip", "content-type": "text/html;charset=utf-8", - "date": "Sun, 17 Dec 2023 11:37:04 GMT", - "expires": "Sun, 17 Dec 2023 11:42:04 GMT", + "date": "Sun, 24 Dec 2023 11:42:35 GMT", + "expires": "Sun, 24 Dec 2023 11:47:35 GMT", "server": "cloudflare", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Nuxt", - "x-request-id": "3f2dcc0d-f0e4-4590-bafd-03a10adc80f0\n3f2dcc0d-f0e4-4590-bafd-03a10adc80f0" + "x-request-id": "9b595305-4a43-4a88-bc79-dc7ea57428ef\n9b595305-4a43-4a88-bc79-dc7ea57428ef" }, "endpoints": [ { @@ -361011,8 +363509,15 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "142.250.191.168", + "ip": "142.250.31.97", "geoip": { + "city": { + "geoname_id": 4364745, + "names": { + "en": "Oxford", + "ru": "Оксфорд" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -361042,10 +363547,14 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "accuracy_radius": 50, + "latitude": 38.6828, + "longitude": -76.1563, + "metro_code": 512, + "time_zone": "America/New_York" + }, + "postal": { + "code": "21654" }, "registered_country": { "geoname_id": 6252001, @@ -361060,24 +363569,29 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 4361885, + "iso_code": "MD", + "names": { + "de": "Maryland", + "en": "Maryland", + "es": "Maryland", + "fr": "Maryland", + "ja": "メリーランド州", + "pt-BR": "Maryland", + "ru": "Мэриленд", + "zh-CN": "马里兰州" + } + } + ] } }, { "hostname": "gqlg3qh7po-dsn.algolia.net", - "ip": "151.80.27.211", + "ip": "149.202.77.144", "geoip": { - "city": { - "geoname_id": 2982681, - "names": { - "de": "Roubaix", - "en": "Roubaix", - "fr": "Roubaix", - "ja": "ルーベ", - "ru": "Рубе", - "zh-CN": "鲁贝" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -361108,9 +363622,9 @@ } }, "location": { - "accuracy_radius": 10, - "latitude": 50.6974, - "longitude": 3.178, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, "registered_country": { @@ -361127,44 +363641,18 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071624, - "iso_code": "HDF", - "names": { - "en": "Hauts-de-France", - "fr": "Hauts-de-France" - } - }, - { - "geoname_id": 2990129, - "iso_code": "59", - "names": { - "de": "Nord", - "en": "North", - "es": "Norte", - "fr": "Nord" - } - } - ] + } } }, { "hostname": "plausible.io", - "ip": "185.93.1.246", + "ip": "37.19.207.34", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 4744870, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "en": "Ashburn", + "ru": "Ашберн" } }, "continent": { @@ -361197,41 +363685,39 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8874, - "longitude": -87.6318, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "60602" + "code": "20149" }, "registered_country": { - "geoname_id": 3077311, - "is_in_european_union": true, - "iso_code": "CZ", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "Tschechien", - "en": "Czechia", - "es": "Chequia", - "fr": "Tchéquie", - "ja": "チェコ共和国", - "pt-BR": "Chéquia", - "ru": "Чехия", - "zh-CN": "捷克" + "de": "Vereinigtes Königreich", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -361239,7 +363725,7 @@ }, { "hostname": "static.axept.io", - "ip": "18.160.225.93", + "ip": "13.32.208.92", "geoip": { "continent": { "code": "NA", @@ -361293,7 +363779,7 @@ }, { "hostname": "client.axept.io", - "ip": "18.64.183.94", + "ip": "18.160.18.43", "geoip": { "continent": { "code": "NA", @@ -361569,7 +364055,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:35:56", + "@generated": "Sun, 24 Dec 2023 11:41:30", "site": [ { "@name": "https://www.jeveuxaider.gouv.fr", @@ -361577,13 +364063,6 @@ "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "PII Disclosure", - "riskcode": "3", - "confidence": "3", - "riskdesc": "High (High)", - "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" - }, { "name": "Absence of Anti-CSRF Tokens", "riskcode": "2", @@ -361824,7 +364303,7 @@ "type": "dns", "host": "www.jeveuxaider.gouv.fr.", "matched-at": "www.jeveuxaider.gouv.fr", - "timestamp": "2023-12-17T11:41:36.962483937Z", + "timestamp": "2023-12-24T11:47:01.297071967Z", "matcher-status": true }, { @@ -361860,7 +364339,7 @@ "extracted-results": [ "www.jeveuxaider.gouv.fr.cdn.cloudflare.net." ], - "timestamp": "2023-12-17T11:41:37.001483779Z", + "timestamp": "2023-12-24T11:47:01.474533802Z", "matcher-status": true }, { @@ -361891,7 +364370,7 @@ "token\":\"cba5fa8241b048cbb52ececb5e988a18\"" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:41:44.096569471Z", + "timestamp": "2023-12-24T11:47:08.458311743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -361931,7 +364410,7 @@ "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:41:44.112674269Z", + "timestamp": "2023-12-24T11:47:08.464934379Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -361958,7 +364437,7 @@ "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:02.175460925Z", + "timestamp": "2023-12-24T11:47:26.529255618Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -361990,12 +364469,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.024926566Z", + "timestamp": "2023-12-24T11:47:31.403704215Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362027,12 +364506,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.024982179Z", + "timestamp": "2023-12-24T11:47:31.40374966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362064,12 +364543,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.024999602Z", + "timestamp": "2023-12-24T11:47:31.403779936Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362101,12 +364580,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.025018567Z", + "timestamp": "2023-12-24T11:47:31.403796527Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362138,12 +364617,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.025094188Z", + "timestamp": "2023-12-24T11:47:31.403811545Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362175,12 +364654,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.02511654Z", + "timestamp": "2023-12-24T11:47:31.403824499Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362212,12 +364691,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.025136487Z", + "timestamp": "2023-12-24T11:47:31.403839046Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362249,12 +364728,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.025151074Z", + "timestamp": "2023-12-24T11:47:31.403853754Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362286,12 +364765,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:07.025169689Z", + "timestamp": "2023-12-24T11:47:31.403866337Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362328,7 +364807,7 @@ "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:16.949937862Z", + "timestamp": "2023-12-24T11:47:41.344510565Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: www.jeveuxaider.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr/'", "matcher-status": true }, @@ -362368,34 +364847,30 @@ "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr/", "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:42:21.034190152Z", + "timestamp": "2023-12-24T11:47:45.419817265Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.jeveuxaider.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr/'", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "TLS Version - Detect", "author": [ - "righettod", - "forgedhallpass" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" - ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" + "ssl", + "tls" ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 4 + } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", @@ -362404,7 +364879,38 @@ "tls10" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.13830929Z", + "timestamp": "2023-12-24T11:51:59.79540882Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "www.jeveuxaider.gouv.fr", + "matched-at": "www.jeveuxaider.gouv.fr:443", + "extracted-results": [ + "tls11" + ], + "ip": "104.22.76.85", + "timestamp": "2023-12-24T11:51:59.820001264Z", "matcher-status": true }, { @@ -362419,7 +364925,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -362436,10 +364943,10 @@ "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls11" + "tls10" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.165603592Z", + "timestamp": "2023-12-24T11:51:59.950189356Z", "matcher-status": true }, { @@ -362475,7 +364982,43 @@ "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.197491674Z", + "timestamp": "2023-12-24T11:51:59.958718344Z", + "matcher-status": true + }, + { + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "info": { + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "author": [ + "righettod", + "forgedhallpass" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], + "severity": "info", + "metadata": { + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + }, + "type": "ssl", + "host": "www.jeveuxaider.gouv.fr", + "matched-at": "www.jeveuxaider.gouv.fr:443", + "extracted-results": [ + "tls11" + ], + "ip": "104.22.76.85", + "timestamp": "2023-12-24T11:51:59.975384877Z", "matcher-status": true }, { @@ -362511,66 +365054,7 @@ "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.225890478Z", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "www.jeveuxaider.gouv.fr", - "matched-at": "www.jeveuxaider.gouv.fr:443", - "extracted-results": [ - "Cloudflare, Inc." - ], - "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.574545779Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "www.jeveuxaider.gouv.fr", - "matched-at": "www.jeveuxaider.gouv.fr:443", - "extracted-results": [ - "sni.cloudflaressl.com", - "www.jeveuxaider.gouv.fr" - ], - "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.574660753Z", + "timestamp": "2023-12-24T11:51:59.981265961Z", "matcher-status": true }, { @@ -362585,7 +365069,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -362597,10 +365082,10 @@ "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls10" + "tls12" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.592722771Z", + "timestamp": "2023-12-24T11:52:00.331199217Z", "matcher-status": true }, { @@ -362615,7 +365100,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -362627,70 +365113,71 @@ "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls11" + "tls13" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.619049087Z", + "timestamp": "2023-12-24T11:52:00.355916576Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls12" + "Cloudflare, Inc." ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.642289839Z", + "timestamp": "2023-12-24T11:52:01.452530886Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls13" + "www.jeveuxaider.gouv.fr", + "sni.cloudflaressl.com" ], "ip": "104.22.76.85", - "timestamp": "2023-12-17T11:46:35.666239718Z", + "timestamp": "2023-12-24T11:52:01.4526616Z", "matcher-status": true } ], @@ -362698,7 +365185,7 @@ { "requestedUrl": "https://www.jeveuxaider.gouv.fr/", "finalUrl": "https://www.jeveuxaider.gouv.fr/", - "fetchTime": "2023-12-17T11:36:10.685Z", + "fetchTime": "2023-12-24T11:41:44.722Z", "runWarnings": [], "categories": { "performance": { @@ -362709,7 +365196,7 @@ "snapshot" ], "id": "performance", - "score": 0.3202674865722656 + "score": 0.3205116271972656 }, "accessibility": { "title": "Accessibility", @@ -362761,53 +365248,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7277, + "numericValue": 6695, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1371, - "firstMeaningfulPaint": 1371, - "largestContentfulPaint": 1371, - "interactive": 7277, - "speedIndex": 4334, + "firstContentfulPaint": 3476, + "firstMeaningfulPaint": 3476, + "largestContentfulPaint": 3626, + "interactive": 6695, + "speedIndex": 4300, "totalBlockingTime": 422, - "maxPotentialFID": 231, - "cumulativeLayoutShift": 0.0035955810546875, - "cumulativeLayoutShiftMainFrame": 0.0035955810546875, - "totalCumulativeLayoutShift": 0.0036081678602430554, + "maxPotentialFID": 214, + "cumulativeLayoutShift": 0.0036263970269097227, + "cumulativeLayoutShiftMainFrame": 0.0036263970269097227, + "totalCumulativeLayoutShift": 0.0036311713324652783, "observedTimeOrigin": 0, - "observedTimeOriginTs": 257590489, + "observedTimeOriginTs": 293895700, "observedNavigationStart": 0, - "observedNavigationStartTs": 257590489, - "observedFirstPaint": 770, - "observedFirstPaintTs": 258360429, - "observedFirstContentfulPaint": 770, - "observedFirstContentfulPaintTs": 258360429, - "observedFirstContentfulPaintAllFrames": 770, - "observedFirstContentfulPaintAllFramesTs": 258360429, - "observedFirstMeaningfulPaint": 770, - "observedFirstMeaningfulPaintTs": 258360429, - "observedLargestContentfulPaint": 770, - "observedLargestContentfulPaintTs": 258360429, - "observedLargestContentfulPaintAllFrames": 770, - "observedLargestContentfulPaintAllFramesTs": 258360429, - "observedTraceEnd": 7126, - "observedTraceEndTs": 264716936, - "observedLoad": 1451, - "observedLoadTs": 259041943, - "observedDomContentLoaded": 1123, - "observedDomContentLoadedTs": 258713468, - "observedCumulativeLayoutShift": 0.0035955810546875, - "observedCumulativeLayoutShiftMainFrame": 0.0035955810546875, - "observedTotalCumulativeLayoutShift": 0.0036081678602430554, - "observedFirstVisualChange": 782, - "observedFirstVisualChangeTs": 258372489, - "observedLastVisualChange": 6965, - "observedLastVisualChangeTs": 264555489, - "observedSpeedIndex": 926, - "observedSpeedIndexTs": 258516826 + "observedNavigationStartTs": 293895700, + "observedFirstPaint": 577, + "observedFirstPaintTs": 294473108, + "observedFirstContentfulPaint": 577, + "observedFirstContentfulPaintTs": 294473108, + "observedFirstContentfulPaintAllFrames": 577, + "observedFirstContentfulPaintAllFramesTs": 294473108, + "observedFirstMeaningfulPaint": 577, + "observedFirstMeaningfulPaintTs": 294473108, + "observedLargestContentfulPaint": 577, + "observedLargestContentfulPaintTs": 294473108, + "observedLargestContentfulPaintAllFrames": 577, + "observedLargestContentfulPaintAllFramesTs": 294473108, + "observedTraceEnd": 5572, + "observedTraceEndTs": 299467451, + "observedLoad": 934, + "observedLoadTs": 294829991, + "observedDomContentLoaded": 606, + "observedDomContentLoadedTs": 294501538, + "observedCumulativeLayoutShift": 0.0036263970269097227, + "observedCumulativeLayoutShiftMainFrame": 0.0036263970269097227, + "observedTotalCumulativeLayoutShift": 0.0036311713324652783, + "observedFirstVisualChange": 559, + "observedFirstVisualChangeTs": 294454700, + "observedLastVisualChange": 5525, + "observedLastVisualChangeTs": 299420700, + "observedSpeedIndex": 643, + "observedSpeedIndexTs": 294538385 }, { "lcpInvalidated": false @@ -362825,23 +365312,23 @@ "type": "debugdata", "items": [ { - "numRequests": 131, + "numRequests": 132, "numScripts": 57, "numStylesheets": 15, "numFonts": 3, - "numTasks": 2469, - "numTasksOver10ms": 10, - "numTasksOver25ms": 6, - "numTasksOver50ms": 4, + "numTasks": 2388, + "numTasksOver10ms": 13, + "numTasksOver25ms": 7, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.5759999999999996, - "throughput": 14234955.647409324, - "maxRtt": 105.63, - "maxServerLatency": 121.81800000000001, - "totalByteWeight": 1990892, - "totalTaskTime": 822.6339999999984, - "mainDocumentTransferSize": 70743 + "rtt": 1.577, + "throughput": 27142438.623450175, + "maxRtt": 85.61, + "maxServerLatency": 117.847, + "totalByteWeight": 1989612, + "totalTaskTime": 840.5050000000036, + "mainDocumentTransferSize": 71409 } ] } @@ -362945,8 +365432,8 @@ "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", - "trackersCount": 15, - "lighthouse_performance": 0.3202674865722656, + "trackersCount": 16, + "lighthouse_performance": 0.3205116271972656, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -362972,7 +365459,7 @@ "http": { "url": "https://www.monstagedetroisieme.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:18:51 GMT", + "end_time": "Sun, 24 Dec 2023 02:12:43 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -362982,25 +365469,25 @@ "Content-Encoding": "gzip", "Content-Length": "6073", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:18:50 GMT", - "ETag": "W/\"5b486fa4c68e188d4c190694c60062d9\"", - "Link": "; rel=preload; as=style; nopush", + "Date": "Sun, 24 Dec 2023 02:12:41 GMT", + "ETag": "W/\"998220bb7c5cf427496467f61d7ee966\"", + "Link": "; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_monstage_session=AmBNivJ8fMF7GCv97nRjmGl3uPgWv9NWLGLFdmWDKhzXl5ZJuYqTwgFXdGZspwg9K3NCx8zSXpSeZmxRGHBC5dzzZwy4%2FX%2BpKgk2BJ%2FO1e9Aav%2FNdFeRAV8IqKG20xJdJZV3OtT%2FyFa5y7ncDmASQb9gayjRtadv5CALv6d3Il6sQZHVsUDPq%2BJLOhWOxlOE5F6A%2BPuMFKTM%2FG2vZHPKKBMXN2s9Sq72cStV4i3DPhDG9HR10GS%2F6NSx6Ra2s4%2FvIoFq7J764wJ2XwZhdiXH5g5l9xnWnYS1pA%3D%3D--xncJYzP%2F3%2BAJsbjp--UoqlgFXHsIB3vFGzDLiTHA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "Sozu-Id": "01HHTS3B5CM5GNNBWJD3APBWHZ", + "Set-Cookie": "_monstage_session=UMwEVwJU8JjLd1rPzCXjIXH%2FyH7feb8Fww8eNLM3wrkRQj4OU0aDHP2kjuBhSBd0p%2BDw%2FtIJzoG5fEudhmy10Lp9NhR63fILSUewrXg011gCuxVvActn52BwmUhQPcD4KM3w0%2BVteGCCRxNKJgRqhDad2c13ij3llhWkfhCKqX07Mrs85NuWlbvqEuyZ74VOgdQiRg2WYijKhiMGqWRmxa9AlZIqf8ZZDcUQrO9o1dhXf2V%2F7pg%2FsML8vDC1soYNYfUW6ISIsKMu8YANKKSGIIUSQX8YtHfSvA%3D%3D--w8ObG5KHcSNaC8YC--DKS9MrmP0UgAbjN5EpeYDQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Sozu-Id": "01HJCSH40E323H6KMS31M9WVSP", "Strict-Transport-Security": "max-age=63072000; includeSubDomains", "Vary": "Accept,Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-Id": "159d4e24-5130-4a06-bb3b-3942b3b5bb1d", - "X-Runtime": "0.016617", + "X-Request-Id": "d193e309-9bdb-4e21-af1a-a712a7bc94a9", + "X-Runtime": "0.016607", "X-XSS-Protection": "0" }, - "scan_id": 45537647, + "scan_id": 45752762, "score": 65, - "start_time": "Sun, 17 Dec 2023 02:18:48 GMT", + "start_time": "Sun, 24 Dec 2023 02:06:43 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -363196,32 +365683,32 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T11:16:23Z", - "next_check_at": "2023-12-17T12:16:22Z", + "last_check_at": "2023-12-24T11:25:33Z", + "next_check_at": "2023-12-24T12:25:31Z", "mute_until": null, "favicon_url": "https://www.monstagedetroisieme.fr/packs/media/images/favicon-d21ba7166343077ed001c60d663a06e1.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T04:18:43Z", + "tested_at": "2023-12-24T05:27:20Z", "expires_at": "2024-02-13T18:37:01Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.958, "timings": { "redirect": 0, - "namelookup": 66, - "connection": 162, - "handshake": 168, - "response": 202, - "total": 598 + "namelookup": 76, + "connection": 100, + "handshake": 107, + "response": 181, + "total": 464 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "E" }, "nmap": { "host": "www.monstagedetroisieme.fr", @@ -363309,8 +365796,7 @@ }, { "service": { - "name": "http", - "product": "JBoss Enterprise Application Platform", + "name": "cpdlc", "id": "5911", "vulnerabilities": [] } @@ -363337,70 +365823,70 @@ "testssl": [ { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363408,7 +365894,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363416,7 +365902,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363424,7 +365910,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -363432,7 +365918,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -363440,7 +365926,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -363448,595 +365934,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1702813187" + "finding": "1703418431" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -364044,7 +366530,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -364053,7 +366539,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -364062,7 +366548,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -364071,7 +366557,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -364080,7 +366566,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -364088,7 +366574,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -364097,7 +366583,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -364106,7 +366592,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -364115,7 +366601,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -364124,14 +366610,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -364140,7 +366626,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -364149,7 +366635,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -364158,7 +366644,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -364167,7 +366653,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -364176,7 +366662,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -364185,7 +366671,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -364194,7 +366680,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -364203,7 +366689,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -364212,7 +366698,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -364221,385 +366707,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364607,7 +367093,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364615,7 +367101,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364623,7 +367109,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364631,7 +367117,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -364639,7 +367125,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -364647,595 +367133,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1702813245" + "finding": "1703418505" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -365243,7 +367729,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -365252,7 +367738,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -365261,7 +367747,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -365270,7 +367756,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -365279,7 +367765,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -365287,7 +367773,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -365296,7 +367782,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -365305,7 +367791,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -365314,7 +367800,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -365323,14 +367809,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -365339,7 +367825,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -365348,7 +367834,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -365357,7 +367843,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -365366,7 +367852,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -365375,7 +367861,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -365384,7 +367870,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -365393,7 +367879,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -365402,7 +367888,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -365411,7 +367897,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -365420,385 +367906,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365806,7 +368292,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365814,7 +368300,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365822,7 +368308,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365830,7 +368316,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -365838,7 +368324,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -365846,595 +368332,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702813302" + "finding": "1703418571" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -366442,7 +368928,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -366451,7 +368937,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -366460,7 +368946,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -366469,7 +368955,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -366478,7 +368964,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -366486,7 +368972,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -366495,7 +368981,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -366504,7 +368990,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -366513,7 +368999,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -366522,14 +369008,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -366538,7 +369024,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -366547,7 +369033,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -366556,7 +369042,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -366565,7 +369051,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -366574,7 +369060,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -366583,7 +369069,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -366592,7 +369078,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -366601,7 +369087,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -366610,7 +369096,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -366619,315 +369105,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" @@ -367286,7 +369772,7 @@ "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -367531,7 +370017,7 @@ "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1702813367" + "finding": "1703418638" }, { "id": "HSTS_time", @@ -368485,7 +370971,7 @@ "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -368730,7 +371216,7 @@ "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1702813425" + "finding": "1703418699" }, { "id": "HSTS_time", @@ -369332,70 +371818,70 @@ }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369403,7 +371889,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369411,7 +371897,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369419,7 +371905,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369427,7 +371913,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -369435,7 +371921,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -369443,595 +371929,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1702813483" + "finding": "1703418761" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -370039,7 +372525,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -370048,7 +372534,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -370057,7 +372543,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -370066,7 +372552,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -370075,7 +372561,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -370083,7 +372569,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -370092,7 +372578,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -370101,7 +372587,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -370110,7 +372596,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -370119,14 +372605,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -370135,7 +372621,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -370144,7 +372630,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -370153,7 +372639,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -370162,7 +372648,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -370171,7 +372657,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -370180,7 +372666,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -370189,7 +372675,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -370198,7 +372684,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -370207,7 +372693,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -370216,385 +372702,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370602,7 +373088,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370610,7 +373096,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370618,7 +373104,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370626,7 +373112,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -370634,7 +373120,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -370642,595 +373128,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1702813548" + "finding": "1703418822" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -371238,7 +373724,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -371247,7 +373733,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -371256,7 +373742,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -371265,7 +373751,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -371274,7 +373760,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -371282,7 +373768,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -371291,7 +373777,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -371300,7 +373786,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -371309,7 +373795,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -371318,14 +373804,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -371334,7 +373820,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -371343,7 +373829,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -371352,7 +373838,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -371361,7 +373847,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -371370,7 +373856,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -371379,7 +373865,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -371388,7 +373874,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -371397,7 +373883,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -371406,7 +373892,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -371415,385 +373901,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371801,7 +374287,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371809,7 +374295,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371817,7 +374303,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371825,7 +374311,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -371833,7 +374319,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -371841,595 +374327,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1702813606" + "finding": "1703418883" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -372437,7 +374923,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -372446,7 +374932,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -372455,7 +374941,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -372464,7 +374950,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -372473,7 +374959,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -372481,7 +374967,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -372490,7 +374976,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -372499,7 +374985,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -372508,7 +374994,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -372517,14 +375003,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -372533,7 +375019,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -372542,7 +375028,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -372551,7 +375037,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -372560,7 +375046,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -372569,7 +375055,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -372578,7 +375064,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -372587,7 +375073,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -372596,7 +375082,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -372605,7 +375091,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -372614,385 +375100,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373000,7 +375486,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373008,7 +375494,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373016,7 +375502,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373024,7 +375510,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -373032,7 +375518,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -373040,595 +375526,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1702813664" + "finding": "1703418944" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -373636,7 +376122,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -373645,7 +376131,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -373654,7 +376140,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -373663,7 +376149,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -373672,7 +376158,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -373680,7 +376166,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -373689,7 +376175,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -373698,7 +376184,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -373707,7 +376193,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -373716,14 +376202,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -373732,7 +376218,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -373741,7 +376227,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -373750,7 +376236,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -373759,7 +376245,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -373768,7 +376254,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -373777,7 +376263,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -373786,7 +376272,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -373795,7 +376281,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -373804,7 +376290,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -373813,325 +376299,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "536" + "finding": "576" } ], "thirdparties": { @@ -374148,11 +376634,11 @@ "cookies": [ { "name": "_monstage_session", - "value": "kZEYeooM8D2wc0031mglLEYUzLUZ52I1QWGjlHU8AzKaprYWz24y2zQsAVajMaSTcwpIqhp2kdrIaay0b2eBP5arm310aft2tAeP9nEai9J8wtXoQWzCLPYq8n3COpDehTT1LDckOmsa5%2BBqFN%2F%2FFyNP5O8ygbd4uEC7O9l%2BEmy790x2Hmv4YbOhuZiZnWdPO1tHrNdv59qqqjdUoCvKdHbVuhHruUetHPV5fxCH5DgKOMGOTbgmc5hS3AgFHVIJis2Y%2BcLwHPHrmnBLUGfZU8EmdCZhKWSNtg%3D%3D--hdPPxkbhEjnxYusP--vEz2eUhTxyHNJxkIIrMBEA%3D%3D", + "value": "5aSrMwGdr%2B%2BO%2FhHOnMSMOsJc47Izlv11aW6vC2%2F6Sc1EtQKu01jPvI%2BPaQtFdt1zpSBcEC2jK%2B1dp1ohOw8k5eUGaHo%2BwOx4LKMVr%2F1KauyfPynGzOWcHkqCE1q49wmDqVeVjflrdfXhfmlbttTg3%2Fy8cJCJqpy6vrFKNNL1z6lpAUQSkbfb8kZnGqGaL6lm1p4Ai694rs3%2Be7ffppN978vcSCZyS2kZ4%2FfuwW9ZadY%2BLqYwuX4eh39DK0HXbgTxedwaDbuOGQFpWjgByDCwGmWiViJayCsGug%3D%3D--7bZDfd2DMN4%2Fk1CG--NA11Dk6jTG%2FX2wBxUuNV7w%3D%3D", "domain": "www.monstagedetroisieme.fr", "path": "/", "expires": -1, - "size": 371, + "size": 389, "httpOnly": true, "secure": true, "session": true, @@ -374166,28 +376652,28 @@ "cache-control": "max-age=0, private, must-revalidate", "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "6080", + "content-length": "6078", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 11:38:48 GMT", - "etag": "W/\"c7c3c6ef3a838ff6e1da7eae15a301d0\"", - "link": "; rel=preload; as=style; nopush", + "date": "Sun, 24 Dec 2023 11:46:07 GMT", + "etag": "W/\"e4b1e467320dbb23b1fa751e0ac81275\"", + "link": "; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_monstage_session=kZEYeooM8D2wc0031mglLEYUzLUZ52I1QWGjlHU8AzKaprYWz24y2zQsAVajMaSTcwpIqhp2kdrIaay0b2eBP5arm310aft2tAeP9nEai9J8wtXoQWzCLPYq8n3COpDehTT1LDckOmsa5%2BBqFN%2F%2FFyNP5O8ygbd4uEC7O9l%2BEmy790x2Hmv4YbOhuZiZnWdPO1tHrNdv59qqqjdUoCvKdHbVuhHruUetHPV5fxCH5DgKOMGOTbgmc5hS3AgFHVIJis2Y%2BcLwHPHrmnBLUGfZU8EmdCZhKWSNtg%3D%3D--hdPPxkbhEjnxYusP--vEz2eUhTxyHNJxkIIrMBEA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "sozu-id": "01HHVS4NG3N4TSRAZTD816QWF7", + "set-cookie": "_monstage_session=5aSrMwGdr%2B%2BO%2FhHOnMSMOsJc47Izlv11aW6vC2%2F6Sc1EtQKu01jPvI%2BPaQtFdt1zpSBcEC2jK%2B1dp1ohOw8k5eUGaHo%2BwOx4LKMVr%2F1KauyfPynGzOWcHkqCE1q49wmDqVeVjflrdfXhfmlbttTg3%2Fy8cJCJqpy6vrFKNNL1z6lpAUQSkbfb8kZnGqGaL6lm1p4Ai694rs3%2Be7ffppN978vcSCZyS2kZ4%2FfuwW9ZadY%2BLqYwuX4eh39DK0HXbgTxedwaDbuOGQFpWjgByDCwGmWiViJayCsGug%3D%3D--7bZDfd2DMN4%2Fk1CG--NA11Dk6jTG%2FX2wBxUuNV7w%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "sozu-id": "01HJDTB3MAR7CK8A4WNZK3KYX3", "strict-transport-security": "max-age=63072000; includeSubDomains", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "078776d7-04cc-470c-aa01-fe2a7e89ea6c", - "x-runtime": "0.014246", + "x-request-id": "d42bf500-7f61-45f3-8742-143c9955676d", + "x-runtime": "0.018566", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "www.monstagedetroisieme.fr", - "ip": "185.42.117.108", + "ip": "185.42.117.109", "geoip": { "continent": { "code": "EU", @@ -374243,7 +376729,7 @@ }, { "hostname": "betagouv-matomo.osc-secnum-fr1.scalingo.io", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -374485,24 +376971,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "google-workspace", "name": "Google Workspace", @@ -374526,6 +376994,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "webpack", "name": "Webpack", @@ -374549,7 +377035,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:38:09", + "@generated": "Sun, 24 Dec 2023 11:44:59", "site": [ { "@name": "https://www.monstagedetroisieme.fr", @@ -374783,7 +377269,7 @@ "extracted-results": [ "domain.par.clever-cloud.com." ], - "timestamp": "2023-12-17T11:51:40.505655874Z", + "timestamp": "2023-12-24T11:59:26.866502633Z", "matcher-status": true }, { @@ -374818,7 +377304,7 @@ "type": "dns", "host": "www.monstagedetroisieme.fr.", "matched-at": "www.monstagedetroisieme.fr", - "timestamp": "2023-12-17T11:51:40.558361125Z", + "timestamp": "2023-12-24T11:59:27.072657812Z", "matcher-status": true }, { @@ -374855,8 +377341,8 @@ "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:51:52.577432338Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T11:59:41.248995335Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -374888,12 +377374,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.561106522Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619630555Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -374925,12 +377411,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.56114873Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619679055Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -374962,12 +377448,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.561162095Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619697149Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -374999,12 +377485,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.561177574Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619710343Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -375036,12 +377522,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.561193233Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619723538Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -375073,12 +377559,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.monstagedetroisieme.fr", "matched-at": "https://www.monstagedetroisieme.fr", - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:52:25.561206788Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:00:21.619736632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", "matcher-status": true }, @@ -375127,8 +377613,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:53:12.253664069Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:01:19.373215056Z", "matcher-status": true }, { @@ -375142,7 +377628,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -375156,8 +377643,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:53:42.038643489Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:01:27.482570023Z", "matcher-status": true }, { @@ -375171,7 +377658,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -375185,8 +377673,8 @@ "extracted-results": [ "www.monstagedetroisieme.fr" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:53:42.038871473Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:01:27.482703481Z", "matcher-status": true }, { @@ -375201,7 +377689,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -375215,8 +377704,8 @@ "extracted-results": [ "tls12" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:55:07.027648966Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:02:03.21509962Z", "matcher-status": true }, { @@ -375231,7 +377720,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -375245,8 +377735,8 @@ "extracted-results": [ "tls13" ], - "ip": "91.208.207.214", - "timestamp": "2023-12-17T11:55:07.201223001Z", + "ip": "46.252.181.104", + "timestamp": "2023-12-24T12:02:04.442224603Z", "matcher-status": true } ], @@ -375254,7 +377744,7 @@ { "requestedUrl": "https://www.monstagedetroisieme.fr/", "finalUrl": "https://www.monstagedetroisieme.fr/", - "fetchTime": "2023-12-17T11:38:23.007Z", + "fetchTime": "2023-12-24T11:45:13.442Z", "runWarnings": [], "categories": { "performance": { @@ -375265,7 +377755,7 @@ "snapshot" ], "id": "performance", - "score": 0.6274085998535156 + "score": 0.6273975372314453 }, "accessibility": { "title": "Accessibility", @@ -375317,7 +377807,7 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 17452, + "numericValue": 17300, "numericUnit": "millisecond", "details": { "type": "debugdata", @@ -375326,44 +377816,44 @@ "firstContentfulPaint": 5767, "firstMeaningfulPaint": 5767, "largestContentfulPaint": 5767, - "interactive": 17452, + "interactive": 17300, "speedIndex": 5767, - "totalBlockingTime": 303, - "maxPotentialFID": 644, + "totalBlockingTime": 301, + "maxPotentialFID": 640, "cumulativeLayoutShift": 0.004132242838541667, "cumulativeLayoutShiftMainFrame": 0.004132242838541667, "totalCumulativeLayoutShift": 0.004132242838541667, "observedTimeOrigin": 0, - "observedTimeOriginTs": 212125556, + "observedTimeOriginTs": 521485696, "observedNavigationStart": 0, - "observedNavigationStartTs": 212125556, - "observedFirstPaint": 836, - "observedFirstPaintTs": 212961441, - "observedFirstContentfulPaint": 836, - "observedFirstContentfulPaintTs": 212961441, - "observedFirstContentfulPaintAllFrames": 836, - "observedFirstContentfulPaintAllFramesTs": 212961441, - "observedFirstMeaningfulPaint": 836, - "observedFirstMeaningfulPaintTs": 212961441, - "observedLargestContentfulPaint": 836, - "observedLargestContentfulPaintTs": 212961441, - "observedLargestContentfulPaintAllFrames": 836, - "observedLargestContentfulPaintAllFramesTs": 212961441, - "observedTraceEnd": 3685, - "observedTraceEndTs": 215810272, - "observedLoad": 1377, - "observedLoadTs": 213502467, - "observedDomContentLoaded": 1277, - "observedDomContentLoadedTs": 213402921, + "observedNavigationStartTs": 521485696, + "observedFirstPaint": 1043, + "observedFirstPaintTs": 522528585, + "observedFirstContentfulPaint": 1043, + "observedFirstContentfulPaintTs": 522528585, + "observedFirstContentfulPaintAllFrames": 1043, + "observedFirstContentfulPaintAllFramesTs": 522528585, + "observedFirstMeaningfulPaint": 1043, + "observedFirstMeaningfulPaintTs": 522528585, + "observedLargestContentfulPaint": 1043, + "observedLargestContentfulPaintTs": 522528585, + "observedLargestContentfulPaintAllFrames": 1043, + "observedLargestContentfulPaintAllFramesTs": 522528585, + "observedTraceEnd": 3986, + "observedTraceEndTs": 525471803, + "observedLoad": 1678, + "observedLoadTs": 523163654, + "observedDomContentLoaded": 1557, + "observedDomContentLoadedTs": 523043094, "observedCumulativeLayoutShift": 0.004132242838541667, "observedCumulativeLayoutShiftMainFrame": 0.004132242838541667, "observedTotalCumulativeLayoutShift": 0.004132242838541667, - "observedFirstVisualChange": 832, - "observedFirstVisualChangeTs": 212957556, - "observedLastVisualChange": 1432, - "observedLastVisualChangeTs": 213557556, - "observedSpeedIndex": 845, - "observedSpeedIndexTs": 212970814 + "observedFirstVisualChange": 1043, + "observedFirstVisualChangeTs": 522528696, + "observedLastVisualChange": 1660, + "observedLastVisualChangeTs": 523145696, + "observedSpeedIndex": 1057, + "observedSpeedIndexTs": 522542264 }, { "lcpInvalidated": false @@ -375385,19 +377875,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 684, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasks": 693, + "numTasksOver10ms": 4, + "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 53.782, - "throughput": 27975438.45342937, - "maxRtt": 80.89000000000001, - "maxServerLatency": 79.96099999999998, - "totalByteWeight": 3002028, - "totalTaskTime": 291.9789999999991, - "mainDocumentTransferSize": 7249 + "rtt": 74.405, + "throughput": 22586855.700886562, + "maxRtt": 100.83, + "maxServerLatency": 33.53299999999999, + "totalByteWeight": 3002086, + "totalTaskTime": 318.67899999999935, + "mainDocumentTransferSize": 7257 } ] } @@ -375487,8 +377977,8 @@ "sonarcloud": null, "summary": { "httpGrade": "B-", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.958, + "apdexGrade": "E", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", @@ -375501,7 +377991,7 @@ "cookiesCount": 1, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.6274085998535156, + "lighthouse_performance": 0.6273975372314453, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -375530,7 +378020,7 @@ "http": { "url": "https://civilsdeladefense.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 11:42:56 GMT", + "end_time": "Sun, 24 Dec 2023 11:51:50 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -375539,11 +378029,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 11:42:55 GMT", - "ETag": "W/\"5c84bf414f4fcb0d1fc87a1ffca290be\"", + "Date": "Sun, 24 Dec 2023 11:51:49 GMT", + "ETag": "W/\"8f0d8e0b06950c48b759f8cc269e9960\"", "Link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_civilsdeladefense_session=eL97B9h5twlzfNlTZYOk54aqECl6IGYwLLO1Kp0S%2Fghu9i81x%2BlQZMVvv9lTiB%2F0GTkW4Tkx654lvTO4zwASbJ7cWRJN4TUmyZDc93EPlEn%2Bq04xZdHGCcLF2RNjWePRwyo%2FilbdvicMaoCOhEgoO2josu5RQEdfMgrV2PtmTpQEPjPliT4biqxDLRdNF6WxJFj69r6F40hJaGNHClGJTJN28bVlNvWC1BxVE%2BfgNv383yJsOGCSMmyllUYQYrSDuM2f%2F%2B1XHsiOG6ritFgN6sp%2Brfl0A%2BWWccxz8%2FSaxiBpJA%3D%3D--lcn9aM6wvJV9QRO%2B--Ip7hTE8LxjpUClBv3%2BwL0w%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_civilsdeladefense_session=6TaSvrHtuM98lni8cTuhvK5qe9Tpb7Mt86HBfzOQFXkRt8HJPqovZGttvRVO1rgLETglaekh84krGxygugu7Se5u2Uh2MigC82soTshTXTVfalzC8eig3wgSBIq%2BEMw8KM7YGLJZ3fObBaTb%2BqfcXY875mFdSgZUPss93HGpDYgy7xrxpIYA9B9Ni55%2BK9KfsSbvWv%2FlT6Z4CPPaNxLB0mRvdlG9LO90A10ME5tGQnxUv0HRXY9Q%2BxiZPZI7kXjbKf7qbnAGtvtYxzuYrYhHRUA2FtdXf9SAQM0U1w8Q4b1suw%3D%3D--aQtCjnlL1nzp3%2BqP--7EWFeKmrqHUruzmtBMLIZg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31556952; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -375551,13 +378041,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "c6dd0723-d1c1-42a5-a459-77cbe59867f9, c6dd0723-d1c1-42a5-a459-77cbe59867f9", - "X-Runtime": "0.041506", + "X-Request-ID": "37e81385-f63c-48fa-9458-cf2faf513dc0, 37e81385-f63c-48fa-9458-cf2faf513dc0", + "X-Runtime": "0.043903", "X-XSS-Protection": "0" }, - "scan_id": 45552142, + "scan_id": 45765617, "score": 55, - "start_time": "Sun, 17 Dec 2023 11:42:51 GMT", + "start_time": "Sun, 24 Dec 2023 11:51:45 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -375761,1107 +378251,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 08:30" - }, - { - "id": "cert_notAfter", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-03-12 08:30" - }, - { - "id": "cert_extlifeSpan", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "301 Moved Permanently ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1702813473" - }, - { - "id": "HSTS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "HPKP", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "security_headers", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "finding": "--" - }, - { - "id": "banner_reverseproxy", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D4847A44E20B5EBFAD9FA619D177FFF286DE2FBCD4EBAFFFB0A474CAE726E711" - }, - { - "id": "LOGJAM", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, { "id": "service", "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", @@ -377209,7 +378598,7 @@ "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -377412,7 +378801,7 @@ "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702813527" + "finding": "1703418802" }, { "id": "HSTS", @@ -378163,7 +379552,7 @@ "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -378310,7 +379699,7 @@ "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -378513,7 +379902,7 @@ "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702813583" + "finding": "1703418852" }, { "id": "HSTS", @@ -379411,7 +380800,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -379614,7 +381003,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702813638" + "finding": "1703418903" }, { "id": "HSTS", @@ -380165,12 +381554,1113 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, + { + "id": "service", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2023-12-13 08:30" + }, + { + "id": "cert_notAfter", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-03-12 08:30" + }, + { + "id": "cert_extlifeSpan", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "301 Moved Permanently ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1703418954" + }, + { + "id": "HSTS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "security_headers", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "finding": "--" + }, + { + "id": "banner_reverseproxy", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D4847A44E20B5EBFAD9FA619D177FFF286DE2FBCD4EBAFFFB0A474CAE726E711" + }, + { + "id": "LOGJAM", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, { "id": "scanTime", - "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", + "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "223" + "finding": "206" } ], "thirdparties": { @@ -380187,11 +382677,11 @@ "cookies": [ { "name": "_civilsdeladefense_session", - "value": "oPw%2BkRXfhyGr81pqGVEoClO6zI1vTBwDOp%2FD8yBmYXncK%2FLqo40uzPKKu7Lmi4PELChjqOZ82ui889tJlXPHTsHD8FbJkNoQhEvMPWJ9W1e4fJe9C5SQ5aFGJbnNCKQ%2FB7LheKxYV0gPo7kY8VtqOmQr5d9buvTmIqRu8sqbwgYiHiROSe64tMJrz5DOU8Q2C1DFTzCPOLEnkITmyW%2BUrCMx4zGDUuIO5QNxVa4W%2FFWxSVm291L1m8Tq9k%2BTvXwN75PegU%2F5GvPS4%2FaawhsgRxEx9gL%2FcD0Zlm2UxUkjZq0gHw%3D%3D--iCBLghI3WF%2BeKl4k--jOaGRnl%2FvZ2AH6x2torWJg%3D%3D", + "value": "mHJV7hDkNiRIOr7zcgPpHbyG60mo2AJ5eXYeokc5b1egODkvHBSjQ3nOxlsLO5o2P5iq%2FLVCkuh4NK27rIQWt7%2BKpGPB%2BpRuPOxL3WSeeS1X%2F%2FFG8BUT%2FQgb0OCnyZ7u44Q8N%2BF3palM8g6u%2BYGp2f9JJm95Z8C%2FvoHINiqOTnaOrBD0mvajwlyay9d1cz%2FVYqBCQNJMQ7m9zM4qAdd4Z3hfnzjLDBdN9VIJG2VR3Fr3PAccgbZ9bB3YI6b9xpGEm5tfrqODU5Fri0i7bZGWze04ipnvWMdpr24q3VTXVT6dtQ%3D%3D--rRxekvNClVy2SGO3--ZEbx494xO9lY%2F4j6R8Fq7g%3D%3D", "domain": "contractuels.civils.defense.gouv.fr", "path": "/", "expires": -1, - "size": 406, + "size": 404, "httpOnly": true, "secure": true, "session": true, @@ -380205,24 +382695,24 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 11:43:27 GMT", - "etag": "W/\"9ee2c2ff10a0dc40867ce51ffd632480\"", + "date": "Sun, 24 Dec 2023 11:52:22 GMT", + "etag": "W/\"85b04d914f81fb45313195d33d0b7d57\"", "link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=oPw%2BkRXfhyGr81pqGVEoClO6zI1vTBwDOp%2FD8yBmYXncK%2FLqo40uzPKKu7Lmi4PELChjqOZ82ui889tJlXPHTsHD8FbJkNoQhEvMPWJ9W1e4fJe9C5SQ5aFGJbnNCKQ%2FB7LheKxYV0gPo7kY8VtqOmQr5d9buvTmIqRu8sqbwgYiHiROSe64tMJrz5DOU8Q2C1DFTzCPOLEnkITmyW%2BUrCMx4zGDUuIO5QNxVa4W%2FFWxSVm291L1m8Tq9k%2BTvXwN75PegU%2F5GvPS4%2FaawhsgRxEx9gL%2FcD0Zlm2UxUkjZq0gHw%3D%3D--iCBLghI3WF%2BeKl4k--jOaGRnl%2FvZ2AH6x2torWJg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_civilsdeladefense_session=mHJV7hDkNiRIOr7zcgPpHbyG60mo2AJ5eXYeokc5b1egODkvHBSjQ3nOxlsLO5o2P5iq%2FLVCkuh4NK27rIQWt7%2BKpGPB%2BpRuPOxL3WSeeS1X%2F%2FFG8BUT%2FQgb0OCnyZ7u44Q8N%2BF3palM8g6u%2BYGp2f9JJm95Z8C%2FvoHINiqOTnaOrBD0mvajwlyay9d1cz%2FVYqBCQNJMQ7m9zM4qAdd4Z3hfnzjLDBdN9VIJG2VR3Fr3PAccgbZ9bB3YI6b9xpGEm5tfrqODU5Fri0i7bZGWze04ipnvWMdpr24q3VTXVT6dtQ%3D%3D--rRxekvNClVy2SGO3--ZEbx494xO9lY%2F4j6R8Fq7g%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31556952; preload", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "f6e8bece-9d0a-4909-9b18-bb31ed57161d\nf6e8bece-9d0a-4909-9b18-bb31ed57161d", - "x-runtime": "0.041021", + "x-request-id": "f75b18a7-fc4e-4f48-919f-e9fecffb9e3b\nf75b18a7-fc4e-4f48-919f-e9fecffb9e3b", + "x-runtime": "0.152973", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "civilsdeladefense.fabnum.fr", - "ip": "80.247.12.255", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -380278,7 +382768,7 @@ }, { "hostname": "oos.cloudgouv-eu-west-1.outscale.com", - "ip": "148.253.96.5", + "ip": "185.21.194.76", "geoip": { "continent": { "code": "EU", @@ -380346,7 +382836,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 11:42:26", + "@generated": "Sun, 24 Dec 2023 11:51:21", "site": [ { "@name": "https://civilsdeladefense.fabnum.fr", @@ -380482,7 +382972,7 @@ "type": "dns", "host": "civilsdeladefense.fabnum.fr.", "matched-at": "civilsdeladefense.fabnum.fr", - "timestamp": "2023-12-17T11:48:45.414881207Z", + "timestamp": "2023-12-24T11:57:14.509408586Z", "matcher-status": true }, { @@ -380517,7 +383007,7 @@ "extracted-results": [ "erecrutement-cvd-production.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T11:48:45.470014991Z", + "timestamp": "2023-12-24T11:57:15.224215064Z", "matcher-status": true }, { @@ -380531,7 +383021,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -380545,8 +383036,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T11:55:43.503699315Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T12:03:57.758652954Z", "matcher-status": true }, { @@ -380560,7 +383051,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -380574,8 +383066,8 @@ "extracted-results": [ "civilsdeladefense.fabnum.fr" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T11:55:43.503806175Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T12:03:57.758795581Z", "matcher-status": true }, { @@ -380590,7 +383082,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -380604,8 +383097,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T11:55:45.19418707Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T12:03:58.961814412Z", "matcher-status": true }, { @@ -380620,7 +383113,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -380634,8 +383128,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2023-12-17T11:55:45.451557958Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T12:03:59.135307614Z", "matcher-status": true } ], @@ -380643,7 +383137,7 @@ { "requestedUrl": "https://civilsdeladefense.fabnum.fr/", "finalUrl": "https://contractuels.civils.defense.gouv.fr/", - "fetchTime": "2023-12-17T11:42:40.616Z", + "fetchTime": "2023-12-24T11:51:35.480Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://civilsdeladefense.fabnum.fr/) was redirected to https://contractuels.civils.defense.gouv.fr/. Try testing the second URL directly." ], @@ -380708,53 +383202,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3166, + "numericValue": 3158, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2357, - "firstMeaningfulPaint": 3012, - "largestContentfulPaint": 3313, - "interactive": 3166, - "speedIndex": 3540, - "totalBlockingTime": 6, - "maxPotentialFID": 61, + "firstContentfulPaint": 2352, + "firstMeaningfulPaint": 3004, + "largestContentfulPaint": 3304, + "interactive": 3158, + "speedIndex": 3282, + "totalBlockingTime": 5, + "maxPotentialFID": 59, "cumulativeLayoutShift": 0.01987808905707465, "cumulativeLayoutShiftMainFrame": 0.01987808905707465, "totalCumulativeLayoutShift": 0.01987808905707465, "observedTimeOrigin": 0, - "observedTimeOriginTs": 346784903, + "observedTimeOriginTs": 184850624, "observedNavigationStart": 0, - "observedNavigationStartTs": 346784903, - "observedFirstPaint": 1041, - "observedFirstPaintTs": 347825911, - "observedFirstContentfulPaint": 1041, - "observedFirstContentfulPaintTs": 347825911, - "observedFirstContentfulPaintAllFrames": 1041, - "observedFirstContentfulPaintAllFramesTs": 347825911, - "observedFirstMeaningfulPaint": 1177, - "observedFirstMeaningfulPaintTs": 347962053, - "observedLargestContentfulPaint": 1177, - "observedLargestContentfulPaintTs": 347962053, - "observedLargestContentfulPaintAllFrames": 1177, - "observedLargestContentfulPaintAllFramesTs": 347962053, - "observedTraceEnd": 3900, - "observedTraceEndTs": 350685326, - "observedLoad": 1594, - "observedLoadTs": 348379185, - "observedDomContentLoaded": 1049, - "observedDomContentLoadedTs": 347833987, + "observedNavigationStartTs": 184850624, + "observedFirstPaint": 874, + "observedFirstPaintTs": 185724908, + "observedFirstContentfulPaint": 874, + "observedFirstContentfulPaintTs": 185724908, + "observedFirstContentfulPaintAllFrames": 874, + "observedFirstContentfulPaintAllFramesTs": 185724908, + "observedFirstMeaningfulPaint": 985, + "observedFirstMeaningfulPaintTs": 185835860, + "observedLargestContentfulPaint": 985, + "observedLargestContentfulPaintTs": 185835860, + "observedLargestContentfulPaintAllFrames": 985, + "observedLargestContentfulPaintAllFramesTs": 185835860, + "observedTraceEnd": 3619, + "observedTraceEndTs": 188469618, + "observedLoad": 1310, + "observedLoadTs": 186161074, + "observedDomContentLoaded": 882, + "observedDomContentLoadedTs": 185732371, "observedCumulativeLayoutShift": 0.01987808905707465, "observedCumulativeLayoutShiftMainFrame": 0.01987808905707465, "observedTotalCumulativeLayoutShift": 0.01987808905707465, - "observedFirstVisualChange": 1051, - "observedFirstVisualChangeTs": 347835903, - "observedLastVisualChange": 1667, - "observedLastVisualChangeTs": 348451903, - "observedSpeedIndex": 1206, - "observedSpeedIndexTs": 347990413 + "observedFirstVisualChange": 875, + "observedFirstVisualChangeTs": 185725624, + "observedLastVisualChange": 1375, + "observedLastVisualChangeTs": 186225624, + "observedSpeedIndex": 1024, + "observedSpeedIndexTs": 185875065 }, { "lcpInvalidated": false @@ -380776,19 +383270,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 469, + "numTasks": 462, "numTasksOver10ms": 3, - "numTasksOver25ms": 0, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.705, - "throughput": 10050491.464725092, - "maxRtt": 101, - "maxServerLatency": 8.290999999999997, - "totalByteWeight": 769777, - "totalTaskTime": 126.78100000000012, - "mainDocumentTransferSize": 4971 + "rtt": 80.744, + "throughput": 12488557.1041574, + "maxRtt": 81.06899999999999, + "maxServerLatency": 6.819999999999979, + "totalByteWeight": 769814, + "totalTaskTime": 128.3380000000002, + "mainDocumentTransferSize": 5036 } ] } @@ -381061,7 +383555,7 @@ "http": { "url": "https://sepia.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 12:19:44 GMT", + "end_time": "Sun, 24 Dec 2023 12:28:15 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -381069,12 +383563,12 @@ "Connection": "keep-alive", "Content-Length": "190", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 12:19:43 GMT", + "Date": "Sun, 24 Dec 2023 12:28:15 GMT", "Server": "nginx" }, - "scan_id": 45552981, + "scan_id": 45766073, "score": 0, - "start_time": "Sun, 17 Dec 2023 12:19:41 GMT", + "start_time": "Sun, 24 Dec 2023 12:26:52 GMT", "state": "FINISHED", "status_code": 503, "tests_failed": 6, @@ -381250,55 +383744,49 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "9.2p1 Debian 2+deb12u1", + "version": "9.2p1 Debian 2+deb12u2", "vulnerabilities": [ { + "type": "seebug", "id": "SSV:92579", "is_exploit": "true", - "cvss": "7.5", - "type": "seebug" + "cvss": "7.5" }, { + "type": "prion", "id": "PRION:CVE-2023-38408", "is_exploit": "false", - "cvss": "7.5", - "type": "prion" + "cvss": "7.5" }, { + "type": "prion", "id": "PRION:CVE-2023-28531", "is_exploit": "false", - "cvss": "7.5", - "type": "prion" + "cvss": "7.5" }, { + "type": "githubexploit", "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", "is_exploit": "true", - "cvss": "7.5", - "type": "githubexploit" - }, - { - "id": "CVE-2023-28531", - "is_exploit": "false", - "cvss": "7.5", - "type": "cve" + "cvss": "7.5" }, { + "type": "githubexploit", "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", "is_exploit": "true", - "cvss": "7.5", - "type": "githubexploit" + "cvss": "7.5" }, { + "type": "zdt", "id": "1337DAY-ID-26576", "is_exploit": "true", - "cvss": "7.5", - "type": "zdt" + "cvss": "7.5" }, { + "type": "packetstorm", "id": "PACKETSTORM:140261", "is_exploit": "true", - "cvss": "0.0", - "type": "packetstorm" + "cvss": "0.0" } ] } @@ -381700,7 +384188,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "OK", - "finding": "349 >= 60 days" + "finding": "342 >= 60 days" }, { "id": "cert_notBefore", @@ -381826,7 +384314,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "INFO", - "finding": "1702815657" + "finding": "1703420971" }, { "id": "HSTS", @@ -382396,7 +384884,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "INFO", - "finding": "54" + "finding": "53" } ], "thirdparties": { @@ -382405,7 +384893,7 @@ "headers": { "content-length": "592", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 12:20:17 GMT", + "date": "Sun, 24 Dec 2023 12:28:50 GMT", "server": "nginx" }, "endpoints": [ @@ -382502,7 +384990,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 12:17:50", + "@generated": "Sun, 24 Dec 2023 12:25:00", "site": [ { "@name": "https://sepia.fabnum.fr", @@ -382603,7 +385091,7 @@ "type": "dns", "host": "sepia.fabnum.fr.", "matched-at": "sepia.fabnum.fr", - "timestamp": "2023-12-17T12:21:57.324587477Z", + "timestamp": "2023-12-24T12:30:32.027148128Z", "matcher-status": true }, { @@ -382629,7 +385117,7 @@ "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:32.488122243Z", + "timestamp": "2023-12-24T12:31:06.409070265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382661,12 +385149,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785383972Z", + "timestamp": "2023-12-24T12:31:15.683277678Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382698,12 +385186,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785424838Z", + "timestamp": "2023-12-24T12:31:15.68332157Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382735,12 +385223,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785441589Z", + "timestamp": "2023-12-24T12:31:15.683339433Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382772,12 +385260,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785459433Z", + "timestamp": "2023-12-24T12:31:15.683357617Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382809,12 +385297,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785473849Z", + "timestamp": "2023-12-24T12:31:15.683374248Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382846,12 +385334,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785486543Z", + "timestamp": "2023-12-24T12:31:15.683388214Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382883,12 +385371,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785499778Z", + "timestamp": "2023-12-24T12:31:15.683401349Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382920,12 +385408,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785516559Z", + "timestamp": "2023-12-24T12:31:15.683415435Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382957,12 +385445,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785531086Z", + "timestamp": "2023-12-24T12:31:15.683428489Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -382999,7 +385487,7 @@ "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785543329Z", + "timestamp": "2023-12-24T12:31:15.683441233Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383031,12 +385519,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:22:41.785556113Z", + "timestamp": "2023-12-24T12:31:15.68345586Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383076,7 +385564,7 @@ "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:04.383721031Z", + "timestamp": "2023-12-24T12:31:38.501519763Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: sepia.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383123,10 +385611,10 @@ "host": "sepia.fabnum.fr:22", "matched-at": "sepia.fabnum.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u1" + "SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u2" ], "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:24.849474271Z", + "timestamp": "2023-12-24T12:31:58.872008248Z", "matcher-status": true }, { @@ -383160,7 +385648,7 @@ "CN: letsencrypt-nginx-proxy-companion" ], "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:26.389094537Z", + "timestamp": "2023-12-24T12:32:00.327537701Z", "matcher-status": true }, { @@ -383175,7 +385663,9 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls", + "self-signed" ], "description": "self-signed certificates are public key certificates that are not issued by a certificate authority. These self-signed\ncertificates are easy to make and do not cost money. However, they do not provide any trust value.\n", "reference": [ @@ -383191,7 +385681,7 @@ "host": "sepia.fabnum.fr", "matched-at": "sepia.fabnum.fr:443", "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:26.389149078Z", + "timestamp": "2023-12-24T12:32:00.327606579Z", "matcher-status": true }, { @@ -383206,7 +385696,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -383221,7 +385712,7 @@ "tls12" ], "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:28.077863287Z", + "timestamp": "2023-12-24T12:32:01.925901186Z", "matcher-status": true }, { @@ -383236,7 +385727,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -383251,7 +385743,7 @@ "tls13" ], "ip": "141.94.28.168", - "timestamp": "2023-12-17T12:23:28.267726733Z", + "timestamp": "2023-12-24T12:32:02.115177954Z", "matcher-status": true } ], @@ -383489,7 +385981,7 @@ "http": { "url": "https://talents.ssi.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 12:38:43 GMT", + "end_time": "Sun, 24 Dec 2023 12:45:02 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -383498,11 +385990,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 12:38:42 GMT", - "ETag": "W/\"f8c614700bfd5d72589c916408ee225f\"", + "Date": "Sun, 24 Dec 2023 12:45:01 GMT", + "ETag": "W/\"3e4f6cf8cd05484e805b30619406410b\"", "Link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_civilsdeladefense_session=U32pUGJqH6aThNDqsQNN%2FKfrO9hwSLqErKVUwsr8lDcIHhda17PhK1P%2F81yGFNCFKtWLptNP5v%2BTt2WiEL%2FpSITbGiBznaZrnM%2Barn4R5DGLYjDreOOgVTcCbkNcIcpuL1bYcIBEW9WD4%2F5qP0F5jqiK%2BPsb%2Fs4SuFUuPhrCOXa3mPoi%2Bsq4TEDcqEdRQ%2F%2BXzLa39MHzqtHUVzyOfg8%2FpFAq0XON9%2Fb6bbfHv8U9C594ZEmSEsAff%2FLd7xb%2BbSCfOOiJf91QXWFw2TlUAf4qfXbOhQhToNBP09vbSpfIU8SMUw%3D%3D--%2FFf%2FYBI5fzPPKehm--pH36hEDZhOwHv1VryN3WEg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_civilsdeladefense_session=DUlmdNGW%2Bp0IkotN58NaVAa5QyKcmBLAtFfIXRY5ebVT3DxvOntWAijUhx4LtzaeIIVVBww65td9DrDB4jwCkU57TllVsDy2P435%2FObOQSP6rLBOynL9hSB6TpK9667suPN6Fgz7bHjV236ByHNwejtD6ossft0OXWAmr2wybkFgwIsT7zKnuHt5%2FzRujzyBGalkYmR2vGW1D%2FnycHo4k09fiKXsNMwLHxq0XZj1npFdxrRn%2FF4Uuk9k1SHgRB1r35RqO%2FCtlnmYzbXCeB4wqdPgLbFNVyz71%2BUB3oExghJwXg%3D%3D--9X2%2BnpXVd9xuQhS7--J474SvbRL%2FuuY%2BUgUgf6Gw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=31556952; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -383510,13 +386002,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "73792b73-e3ef-4abb-8634-395bd17fe4f1, 73792b73-e3ef-4abb-8634-395bd17fe4f1", - "X-Runtime": "0.034543", + "X-Request-ID": "62c0aa0e-c856-4b2c-8c44-8e39b9831029, 62c0aa0e-c856-4b2c-8c44-8e39b9831029", + "X-Runtime": "0.034888", "X-XSS-Protection": "0" }, - "scan_id": 45553390, + "scan_id": 45766249, "score": 45, - "start_time": "Sun, 17 Dec 2023 12:38:39 GMT", + "start_time": "Sun, 24 Dec 2023 12:44:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -383721,77 +386213,77 @@ "testssl": [ { "id": "service", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383799,7 +386291,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383807,7 +386299,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383815,7 +386307,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -383823,7 +386315,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -383831,7 +386323,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -383839,504 +386331,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "198 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702816812" + "finding": "1703421997" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -384344,7 +386836,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -384353,7 +386845,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -384362,7 +386854,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -384371,7 +386863,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -384380,7 +386872,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -384388,7 +386880,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -384397,7 +386889,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -384406,7 +386898,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -384415,7 +386907,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -384424,14 +386916,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -384440,7 +386932,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -384449,7 +386941,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384458,7 +386950,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384467,7 +386959,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384476,7 +386968,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384485,7 +386977,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -384494,7 +386986,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -384503,7 +386995,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -384512,7 +387004,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -384521,392 +387013,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384914,7 +387406,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384922,7 +387414,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384930,7 +387422,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384938,7 +387430,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384946,7 +387438,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384954,504 +387446,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "198 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702816866" + "finding": "1703422056" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -385459,7 +387951,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -385468,7 +387960,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -385477,7 +387969,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -385486,7 +387978,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -385495,7 +387987,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -385503,7 +387995,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -385512,7 +388004,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -385521,7 +388013,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -385530,7 +388022,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -385539,14 +388031,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -385555,7 +388047,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -385564,7 +388056,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -385573,7 +388065,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -385582,7 +388074,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -385591,7 +388083,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -385600,7 +388092,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -385609,7 +388101,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -385618,7 +388110,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -385627,7 +388119,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -385636,392 +388128,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386029,7 +388521,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386037,7 +388529,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386045,7 +388537,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -386053,7 +388545,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -386061,7 +388553,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -386069,504 +388561,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "198 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702816920" + "finding": "1703422114" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -386574,7 +389066,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -386583,7 +389075,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -386592,7 +389084,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -386601,7 +389093,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -386610,7 +389102,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -386618,7 +389110,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -386627,7 +389119,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -386636,7 +389128,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -386645,7 +389137,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -386654,14 +389146,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -386670,7 +389162,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -386679,7 +389171,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -386688,7 +389180,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -386697,7 +389189,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -386706,7 +389198,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -386715,7 +389207,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -386724,7 +389216,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -386733,7 +389225,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -386742,7 +389234,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -386751,392 +389243,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/80.247.12.255", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -387144,7 +389636,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -387152,7 +389644,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -387160,7 +389652,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -387168,7 +389660,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -387176,7 +389668,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -387184,504 +389676,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "198 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702816976" + "finding": "1703422174" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -387689,7 +390181,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -387698,7 +390190,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -387707,7 +390199,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -387716,7 +390208,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -387725,7 +390217,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -387733,7 +390225,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -387742,7 +390234,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -387751,7 +390243,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -387760,7 +390252,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -387769,14 +390261,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -387785,7 +390277,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -387794,7 +390286,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -387803,7 +390295,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -387812,7 +390304,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -387821,7 +390313,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -387830,7 +390322,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -387839,7 +390331,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -387848,7 +390340,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -387857,7 +390349,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -387866,325 +390358,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "talents.ssi.gouv.fr/185.21.194.105", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "237" } ], "thirdparties": { @@ -388205,11 +390697,11 @@ "cookies": [ { "name": "_civilsdeladefense_session", - "value": "vVaHgQbziofov%2BcFhbRJkoNSerHPzyAIPcnH4vBHWS7DRQ7Ovqt2wWMDZJv0q8rZSSp%2BDUBEJUP764VnoQpGoNWo6AQSItChgmNbeLoyuwUiPsWhpK4uvEDbubyi%2F7Fm6g3nvrmVRoRvAGqJhQfTb%2FKvVC%2FOXXePu1ouuKw%2F9WfhIWRurob3XdS4cx%2BVzI7ybvD590nEB9PGGFun7s%2B5PCQjpOWStYB%2F9DRA%2FdYJst2%2BY2j%2BPqJd1DxhvpJ3IEoFsgAOXFOpQtfR5Sg85cAB7muWjq1mEXS5HhSGgVA8KkFT8Q%3D%3D--mZCyRd5QrdQvacQb--r9nwhHijGiFagjLtYGe14w%3D%3D", + "value": "BKsg2G83uxTuNsl8vOYh7%2FUQqwgC0zPq9D5WTS9sIiMbU5z8OQYXM6Q85ElZ887Th1L%2B47YZ2YJIHRershT8RUL4wedFEOM53z3fBEETm6yFlfoqQssbnyW3P1PkBy2g0xUMNUbrI74axeSK488cOK1qaUwVMlAOBHzzDr00Z1zsvDG2TAJYlcJeRrChFrThelADTQAMP%2FOX0zWPu14fa8XySOZwYcdYG6wYuVEZj%2FxW6h889mpw43qDylfkkh0zhCRjPGSHSkxpNv3zKj6xa3lh%2Fjr0Yy8%2FiExXksU%2F3jlnGA%3D%3D--2Gigpd90BhuVciXi--2YyaVKxCP%2BgBlMc3Xc4YQQ%3D%3D", "domain": "talents.ssi.gouv.fr", "path": "/", "expires": -1, - "size": 406, + "size": 398, "httpOnly": true, "secure": true, "session": true, @@ -388223,24 +390715,24 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 12:39:14 GMT", - "etag": "W/\"723dbaa5c02a0dffdbfb82c1ef5ce5f7\"", + "date": "Sun, 24 Dec 2023 12:45:35 GMT", + "etag": "W/\"55ee2b4ed76eb22db78e9430979ec89a\"", "link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=vVaHgQbziofov%2BcFhbRJkoNSerHPzyAIPcnH4vBHWS7DRQ7Ovqt2wWMDZJv0q8rZSSp%2BDUBEJUP764VnoQpGoNWo6AQSItChgmNbeLoyuwUiPsWhpK4uvEDbubyi%2F7Fm6g3nvrmVRoRvAGqJhQfTb%2FKvVC%2FOXXePu1ouuKw%2F9WfhIWRurob3XdS4cx%2BVzI7ybvD590nEB9PGGFun7s%2B5PCQjpOWStYB%2F9DRA%2FdYJst2%2BY2j%2BPqJd1DxhvpJ3IEoFsgAOXFOpQtfR5Sg85cAB7muWjq1mEXS5HhSGgVA8KkFT8Q%3D%3D--mZCyRd5QrdQvacQb--r9nwhHijGiFagjLtYGe14w%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_civilsdeladefense_session=BKsg2G83uxTuNsl8vOYh7%2FUQqwgC0zPq9D5WTS9sIiMbU5z8OQYXM6Q85ElZ887Th1L%2B47YZ2YJIHRershT8RUL4wedFEOM53z3fBEETm6yFlfoqQssbnyW3P1PkBy2g0xUMNUbrI74axeSK488cOK1qaUwVMlAOBHzzDr00Z1zsvDG2TAJYlcJeRrChFrThelADTQAMP%2FOX0zWPu14fa8XySOZwYcdYG6wYuVEZj%2FxW6h889mpw43qDylfkkh0zhCRjPGSHSkxpNv3zKj6xa3lh%2Fjr0Yy8%2FiExXksU%2F3jlnGA%3D%3D--2Gigpd90BhuVciXi--2YyaVKxCP%2BgBlMc3Xc4YQQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=31556952; preload", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "bf4fac7b-5180-4b67-a023-0940206ed132\nbf4fac7b-5180-4b67-a023-0940206ed132", - "x-runtime": "0.037999", + "x-request-id": "e5639cc4-d053-4efa-8826-ef01de542f39\ne5639cc4-d053-4efa-8826-ef01de542f39", + "x-runtime": "0.039684", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "talents.ssi.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -388296,7 +390788,7 @@ }, { "hostname": "oos.cloudgouv-eu-west-1.outscale.com", - "ip": "185.21.194.76", + "ip": "148.253.96.5", "geoip": { "continent": { "code": "EU", @@ -388471,7 +390963,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 12:38:13", + "@generated": "Sun, 24 Dec 2023 12:44:33", "site": [ { "@name": "https://talents.ssi.gouv.fr", @@ -388625,73 +391117,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "talents.ssi.gouv.fr.", "matched-at": "talents.ssi.gouv.fr", - "timestamp": "2023-12-17T12:44:21.459695644Z", + "extracted-results": [ + "erecrutement-anssi-production.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T12:51:06.28454459Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "talents.ssi.gouv.fr.", "matched-at": "talents.ssi.gouv.fr", - "extracted-results": [ - "erecrutement-anssi-production.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T12:44:22.441903743Z", + "timestamp": "2023-12-24T12:51:06.28479139Z", "matcher-status": true }, { @@ -388729,7 +391221,7 @@ "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:44:33.464726881Z", + "timestamp": "2023-12-24T12:51:20.57048308Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388761,12 +391253,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.480198937Z", + "timestamp": "2023-12-24T12:51:59.822003108Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388798,12 +391290,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.48024359Z", + "timestamp": "2023-12-24T12:51:59.822042411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388835,12 +391327,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.480263407Z", + "timestamp": "2023-12-24T12:51:59.822059613Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388872,12 +391364,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.480276823Z", + "timestamp": "2023-12-24T12:51:59.822075944Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388909,12 +391401,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.480291099Z", + "timestamp": "2023-12-24T12:51:59.822089329Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -388946,25 +391438,25 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:06.480350901Z", + "timestamp": "2023-12-24T12:51:59.822101922Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, { - "template": "http/miscellaneous/robots-txt-endpoint.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", - "template-id": "robots-txt-endpoint", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "template": "http/miscellaneous/robots-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt", + "template-id": "robots-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", "info": { - "name": "robots.txt endpoint prober", + "name": "robots.txt file", "author": [ "caspergn", - "pdteam" + "thezakman" ], "tags": [ "misc", @@ -388972,27 +391464,27 @@ ], "severity": "info", "metadata": { - "max-request": 2 + "max-request": 1 } }, "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/robots.txt", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:16.324128063Z", + "timestamp": "2023-12-24T12:52:12.040490005Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/robots.txt'", "matcher-status": true }, { - "template": "http/miscellaneous/robots-txt.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt", - "template-id": "robots-txt", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", + "template": "http/miscellaneous/robots-txt-endpoint.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", + "template-id": "robots-txt-endpoint", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", "info": { - "name": "robots.txt file", + "name": "robots.txt endpoint prober", "author": [ "caspergn", - "thezakman" + "pdteam" ], "tags": [ "misc", @@ -389000,14 +391492,14 @@ ], "severity": "info", "metadata": { - "max-request": 1 + "max-request": 2 } }, "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/robots.txt", "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:45:16.342924848Z", + "timestamp": "2023-12-24T12:52:12.041791496Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/robots.txt'", "matcher-status": true }, @@ -389022,7 +391514,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -389037,7 +391530,7 @@ "DHIMYOTIS" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:51:12.027285947Z", + "timestamp": "2023-12-24T12:58:09.576386027Z", "matcher-status": true }, { @@ -389051,7 +391544,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -389063,11 +391557,11 @@ "host": "talents.ssi.gouv.fr", "matched-at": "talents.ssi.gouv.fr:443", "extracted-results": [ - "talents.ssi.gouv.fr", - "www.talents.ssi.gouv.fr" + "www.talents.ssi.gouv.fr", + "talents.ssi.gouv.fr" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:51:12.027415369Z", + "timestamp": "2023-12-24T12:58:09.576509857Z", "matcher-status": true }, { @@ -389082,7 +391576,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -389097,7 +391592,7 @@ "tls12" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:51:12.306038538Z", + "timestamp": "2023-12-24T12:58:14.021882769Z", "matcher-status": true }, { @@ -389112,7 +391607,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -389127,7 +391623,7 @@ "tls13" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T12:51:13.17699919Z", + "timestamp": "2023-12-24T12:58:15.088235209Z", "matcher-status": true } ], @@ -389135,7 +391631,7 @@ { "requestedUrl": "https://talents.ssi.gouv.fr/", "finalUrl": "https://talents.ssi.gouv.fr/", - "fetchTime": "2023-12-17T12:38:28.719Z", + "fetchTime": "2023-12-24T12:44:47.499Z", "runWarnings": [], "categories": { "performance": { @@ -389198,53 +391694,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2890, + "numericValue": 2862, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1781, - "firstMeaningfulPaint": 2273, - "largestContentfulPaint": 2273, - "interactive": 2890, - "speedIndex": 3696, - "totalBlockingTime": 12, - "maxPotentialFID": 60, - "cumulativeLayoutShift": 0.055443183051215275, - "cumulativeLayoutShiftMainFrame": 0.055443183051215275, - "totalCumulativeLayoutShift": 0.055443183051215275, + "firstContentfulPaint": 1756, + "firstMeaningfulPaint": 2256, + "largestContentfulPaint": 2256, + "interactive": 2862, + "speedIndex": 3491, + "totalBlockingTime": 7, + "maxPotentialFID": 59, + "cumulativeLayoutShift": 0.05527418348524305, + "cumulativeLayoutShiftMainFrame": 0.05527418348524305, + "totalCumulativeLayoutShift": 0.05527418348524305, "observedTimeOrigin": 0, - "observedTimeOriginTs": 253813994, + "observedTimeOriginTs": 237211127, "observedNavigationStart": 0, - "observedNavigationStartTs": 253813994, - "observedFirstPaint": 990, - "observedFirstPaintTs": 254804345, - "observedFirstContentfulPaint": 990, - "observedFirstContentfulPaintTs": 254804345, - "observedFirstContentfulPaintAllFrames": 990, - "observedFirstContentfulPaintAllFramesTs": 254804345, - "observedFirstMeaningfulPaint": 1086, - "observedFirstMeaningfulPaintTs": 254900260, - "observedLargestContentfulPaint": 1086, - "observedLargestContentfulPaintTs": 254900260, - "observedLargestContentfulPaintAllFrames": 1086, - "observedLargestContentfulPaintAllFramesTs": 254900260, - "observedTraceEnd": 3758, - "observedTraceEndTs": 257572461, - "observedLoad": 1450, - "observedLoadTs": 255263743, - "observedDomContentLoaded": 979, - "observedDomContentLoadedTs": 254792539, - "observedCumulativeLayoutShift": 0.055443183051215275, - "observedCumulativeLayoutShiftMainFrame": 0.055443183051215275, - "observedTotalCumulativeLayoutShift": 0.055443183051215275, - "observedFirstVisualChange": 975, - "observedFirstVisualChangeTs": 254788994, - "observedLastVisualChange": 1425, - "observedLastVisualChangeTs": 255238994, - "observedSpeedIndex": 1231, - "observedSpeedIndexTs": 255045298 + "observedNavigationStartTs": 237211127, + "observedFirstPaint": 832, + "observedFirstPaintTs": 238043246, + "observedFirstContentfulPaint": 832, + "observedFirstContentfulPaintTs": 238043246, + "observedFirstContentfulPaintAllFrames": 832, + "observedFirstContentfulPaintAllFramesTs": 238043246, + "observedFirstMeaningfulPaint": 956, + "observedFirstMeaningfulPaintTs": 238167515, + "observedLargestContentfulPaint": 956, + "observedLargestContentfulPaintTs": 238167515, + "observedLargestContentfulPaintAllFrames": 956, + "observedLargestContentfulPaintAllFramesTs": 238167515, + "observedTraceEnd": 3717, + "observedTraceEndTs": 240927906, + "observedLoad": 1409, + "observedLoadTs": 238620121, + "observedDomContentLoaded": 830, + "observedDomContentLoadedTs": 238040828, + "observedCumulativeLayoutShift": 0.05527418348524305, + "observedCumulativeLayoutShiftMainFrame": 0.05527418348524305, + "observedTotalCumulativeLayoutShift": 0.05527418348524305, + "observedFirstVisualChange": 829, + "observedFirstVisualChangeTs": 238040127, + "observedLastVisualChange": 1295, + "observedLastVisualChangeTs": 238506127, + "observedSpeedIndex": 1102, + "observedSpeedIndexTs": 238313467 }, { "lcpInvalidated": false @@ -389266,19 +391762,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 460, + "numTasks": 481, "numTasksOver10ms": 4, - "numTasksOver25ms": 2, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.028, - "throughput": 12140601.771029746, - "maxRtt": 83.418, - "maxServerLatency": 8.74300000000001, - "totalByteWeight": 966164, - "totalTaskTime": 150.08099999999973, - "mainDocumentTransferSize": 5336 + "rtt": 100.46300000000001, + "throughput": 10324134.761893583, + "maxRtt": 100.66699999999999, + "maxServerLatency": 7.7679999999999865, + "totalByteWeight": 966054, + "totalTaskTime": 152.6749999999999, + "mainDocumentTransferSize": 5226 } ] } @@ -389632,7 +392128,7 @@ "http": { "url": "https://chatbot.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 13:47:43 GMT", + "end_time": "Sun, 24 Dec 2023 13:09:57 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -389642,7 +392138,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 13:47:42 GMT", + "Date": "Sun, 24 Dec 2023 13:09:55 GMT", "ETag": "W/\"64354379-abc\"", "Expires": "Thu, 01 Jan 1970 00:00:01 GMT", "Last-Modified": "Tue, 11 Apr 2023 11:24:41 GMT", @@ -389654,9 +392150,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45554862, + "scan_id": 45766586, "score": 80, - "start_time": "Sun, 17 Dec 2023 13:47:35 GMT", + "start_time": "Sun, 24 Dec 2023 13:09:47 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -389675,23 +392171,23 @@ "dev.chatbot.fabnum.fr" ], "img-src": [ - "*", - "data:" + "data:", + "*" ], "script-src": [ - "'self'", "'unsafe-inline'", + "'self'", "dev.chatbot.fabnum.fr" ], "script-src-elem": [ - "stats.data.gouv.fr", - "'self'", "'unsafe-inline'", - "dev.chatbot.fabnum.fr" + "'self'", + "dev.chatbot.fabnum.fr", + "stats.data.gouv.fr" ], "style-src": [ - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ] }, "http": true, @@ -389869,56 +392365,7 @@ "product": "OpenSSH", "id": "22", "version": "7.9p1 Debian 10+deb10u3", - "vulnerabilities": [ - { - "cvss": "5.8", - "type": "exploitpack", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "type": "exploitpack", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "type": "exploitdb", - "id": "EDB-ID:46516", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "type": "exploitdb", - "id": "EDB-ID:46193", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "type": "cve", - "id": "CVE-2019-6111", - "is_exploit": "false" - }, - { - "cvss": "5.8", - "type": "zdt", - "id": "1337DAY-ID-32328", - "is_exploit": "true" - }, - { - "cvss": "5.8", - "type": "zdt", - "id": "1337DAY-ID-32009", - "is_exploit": "true" - }, - { - "cvss": "0.0", - "type": "packetstorm", - "id": "PACKETSTORM:151227", - "is_exploit": "true" - } - ] + "vulnerabilities": [] } }, { @@ -389937,7 +392384,7 @@ } } ], - "grade": "D" + "grade": "B" }, "dependabot": null, "codescan": null, @@ -390289,7 +392736,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -390492,7 +392939,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "1702820957" + "finding": "1703423488" }, { "id": "HSTS_time", @@ -391083,7 +393530,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "153" + "finding": "75" } ], "thirdparties": { @@ -391094,7 +393541,7 @@ "value": "1", "domain": "chatbot.fabnum.fr", "path": "/", - "expires": 1702822692, + "expires": 1703425224, "size": 17, "httpOnly": false, "secure": false, @@ -391106,10 +393553,10 @@ }, { "name": "_pk_id.130.2535", - "value": "5eea81e48fe96e55.1702820892.", + "value": "fd27ac0f843e6234.1703423424.", "domain": "chatbot.fabnum.fr", "path": "/", - "expires": 1736776092, + "expires": 1737378624, "size": 43, "httpOnly": false, "secure": false, @@ -391125,7 +393572,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 13:48:11 GMT", + "date": "Sun, 24 Dec 2023 13:10:23 GMT", "etag": "W/\"64354379-abc\"", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", "last-modified": "Tue, 11 Apr 2023 11:24:41 GMT", @@ -391406,7 +393853,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 13:47:10", + "@generated": "Sun, 24 Dec 2023 13:09:23", "site": [ { "@name": "https://chatbot.fabnum.fr", @@ -391577,7 +394024,7 @@ "type": "dns", "host": "chatbot.fabnum.fr.", "matched-at": "chatbot.fabnum.fr", - "timestamp": "2023-12-17T13:52:00.523893417Z", + "timestamp": "2023-12-24T13:13:20.547062897Z", "matcher-status": true }, { @@ -391617,7 +394064,7 @@ "1; mode=block" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:11.763090454Z", + "timestamp": "2023-12-24T13:13:31.739660118Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391644,7 +394091,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:34.342539142Z", + "timestamp": "2023-12-24T13:13:54.766181362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391676,12 +394123,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697714402Z", + "timestamp": "2023-12-24T13:14:03.674582641Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391713,12 +394160,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697762582Z", + "timestamp": "2023-12-24T13:14:03.674619128Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391750,12 +394197,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697775335Z", + "timestamp": "2023-12-24T13:14:03.674630971Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391787,12 +394234,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697783921Z", + "timestamp": "2023-12-24T13:14:03.674640198Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391824,12 +394271,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697792297Z", + "timestamp": "2023-12-24T13:14:03.674649044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391861,12 +394308,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697800592Z", + "timestamp": "2023-12-24T13:14:03.674659043Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -391898,45 +394345,15 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:43.697817373Z", + "timestamp": "2023-12-24T13:14:03.674677127Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, - { - "template": "http/exposures/configs/editor-exposure.yaml", - "template-url": "https://templates.nuclei.sh/public/editor-exposure", - "template-id": "editor-exposure", - "template-path": "/home/runner/nuclei-templates/http/exposures/configs/editor-exposure.yaml", - "info": { - "name": "Editor Configuration File - Detect", - "author": [ - "dhiyaneshdk" - ], - "tags": [ - "config", - "exposure" - ], - "description": "Editor configuration file was detected.", - "severity": "low", - "metadata": { - "max-request": 1, - "shodan-query": "html:\"editorconfig\"", - "verified": true - } - }, - "type": "http", - "host": "https://chatbot.fabnum.fr/", - "matched-at": "https://chatbot.fabnum.fr/.editorconfig", - "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:45.599090923Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/.editorconfig'", - "matcher-status": true - }, { "template": "http/misconfiguration/missing-sri.yaml", "template-url": "https://templates.nuclei.sh/public/missing-sri", @@ -391970,7 +394387,7 @@ "https://dev.chatbot.fabnum.fr/backoffice/assets/scripts/embbed-chatbot.min.js?1425072122" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:52:59.60353817Z", + "timestamp": "2023-12-24T13:14:19.051105665Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392010,7 +394427,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:53:07.210400732Z", + "timestamp": "2023-12-24T13:14:26.439782912Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392050,7 +394467,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:53:07.210443962Z", + "timestamp": "2023-12-24T13:14:26.439820061Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392065,7 +394482,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -392080,7 +394498,7 @@ "Let's Encrypt" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:54:48.092606387Z", + "timestamp": "2023-12-24T13:16:06.309331459Z", "matcher-status": true }, { @@ -392094,7 +394512,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -392109,7 +394528,7 @@ "chatbot.fabnum.fr" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:54:48.092726249Z", + "timestamp": "2023-12-24T13:16:06.309463203Z", "matcher-status": true }, { @@ -392124,7 +394543,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -392139,7 +394559,7 @@ "tls12" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:54:49.386186055Z", + "timestamp": "2023-12-24T13:16:07.71698626Z", "matcher-status": true }, { @@ -392154,7 +394574,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -392169,7 +394590,7 @@ "tls13" ], "ip": "51.38.43.26", - "timestamp": "2023-12-17T13:54:49.597396687Z", + "timestamp": "2023-12-24T13:16:07.912383174Z", "matcher-status": true } ], @@ -392177,7 +394598,7 @@ { "requestedUrl": "https://chatbot.fabnum.fr/", "finalUrl": "https://chatbot.fabnum.fr/", - "fetchTime": "2023-12-17T13:47:24.679Z", + "fetchTime": "2023-12-24T13:09:37.269Z", "runWarnings": [], "categories": { "performance": { @@ -392240,53 +394661,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3516, + "numericValue": 3704, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1510, - "firstMeaningfulPaint": 3077, - "largestContentfulPaint": 4169, - "interactive": 3516, - "speedIndex": 3191, - "totalBlockingTime": 291, - "maxPotentialFID": 253, + "firstContentfulPaint": 1521, + "firstMeaningfulPaint": 3111, + "largestContentfulPaint": 4366, + "interactive": 3704, + "speedIndex": 3410, + "totalBlockingTime": 413, + "maxPotentialFID": 251, "cumulativeLayoutShift": 0.19101053873697918, "cumulativeLayoutShiftMainFrame": 0.19101053873697918, "totalCumulativeLayoutShift": 0.19101053873697918, "observedTimeOrigin": 0, - "observedTimeOriginTs": 308507313, + "observedTimeOriginTs": 237246746, "observedNavigationStart": 0, - "observedNavigationStartTs": 308507313, - "observedFirstPaint": 537, - "observedFirstPaintTs": 309043941, - "observedFirstContentfulPaint": 537, - "observedFirstContentfulPaintTs": 309043941, - "observedFirstContentfulPaintAllFrames": 537, - "observedFirstContentfulPaintAllFramesTs": 309043941, - "observedFirstMeaningfulPaint": 978, - "observedFirstMeaningfulPaintTs": 309485269, - "observedLargestContentfulPaint": 1085, - "observedLargestContentfulPaintTs": 309592540, - "observedLargestContentfulPaintAllFrames": 1085, - "observedLargestContentfulPaintAllFramesTs": 309592540, - "observedTraceEnd": 3480, - "observedTraceEndTs": 311987520, - "observedLoad": 1163, - "observedLoadTs": 309670484, - "observedDomContentLoaded": 787, - "observedDomContentLoadedTs": 309294439, + "observedNavigationStartTs": 237246746, + "observedFirstPaint": 547, + "observedFirstPaintTs": 237793424, + "observedFirstContentfulPaint": 547, + "observedFirstContentfulPaintTs": 237793424, + "observedFirstContentfulPaintAllFrames": 547, + "observedFirstContentfulPaintAllFramesTs": 237793424, + "observedFirstMeaningfulPaint": 1036, + "observedFirstMeaningfulPaintTs": 238282982, + "observedLargestContentfulPaint": 1147, + "observedLargestContentfulPaintTs": 238393748, + "observedLargestContentfulPaintAllFrames": 1147, + "observedLargestContentfulPaintAllFramesTs": 238393748, + "observedTraceEnd": 3544, + "observedTraceEndTs": 240790368, + "observedLoad": 1225, + "observedLoadTs": 238471654, + "observedDomContentLoaded": 808, + "observedDomContentLoadedTs": 238055197, "observedCumulativeLayoutShift": 0.19101053873697918, "observedCumulativeLayoutShiftMainFrame": 0.19101053873697918, "observedTotalCumulativeLayoutShift": 0.19101053873697918, - "observedFirstVisualChange": 763, - "observedFirstVisualChangeTs": 309270313, - "observedLastVisualChange": 3480, - "observedLastVisualChangeTs": 311987313, - "observedSpeedIndex": 1020, - "observedSpeedIndexTs": 309527618 + "observedFirstVisualChange": 777, + "observedFirstVisualChangeTs": 238023746, + "observedLastVisualChange": 3526, + "observedLastVisualChangeTs": 240772746, + "observedSpeedIndex": 1081, + "observedSpeedIndexTs": 238327966 }, { "lcpInvalidated": false @@ -392308,18 +394729,18 @@ "numScripts": 6, "numStylesheets": 1, "numFonts": 3, - "numTasks": 785, + "numTasks": 788, "numTasksOver10ms": 5, - "numTasksOver25ms": 2, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.34100000000001, - "throughput": 19193826.95749841, - "maxRtt": 86.078, - "maxServerLatency": 9.203000000000003, - "totalByteWeight": 1036018, - "totalTaskTime": 325.98099999999823, + "rtt": 82.181, + "throughput": 21599866.601362973, + "maxRtt": 84.325, + "maxServerLatency": 11.433999999999997, + "totalByteWeight": 1036286, + "totalTaskTime": 355.3499999999989, "mainDocumentTransferSize": 1828 } ] @@ -392418,7 +394839,7 @@ "sonarcloud": null, "summary": { "httpGrade": "B+", - "nmapGrade": "D", + "nmapGrade": "B", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, @@ -392724,7 +395145,7 @@ "http": { "url": "https://mes-adresses.data.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 14:49:43 GMT", + "end_time": "Sun, 24 Dec 2023 13:40:37 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -392732,17 +395153,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 14:49:42 GMT", + "Date": "Sun, 24 Dec 2023 13:40:35 GMT", "Server": "nginx/1.23.4", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "etag": "\"16gmanrdjnp10bs\"", + "etag": "\"p2scz5cygc10bs\"", "x-powered-by": "Next.js" }, - "scan_id": 45556502, + "scan_id": 45766956, "score": 40, - "start_time": "Sun, 17 Dec 2023 14:49:39 GMT", + "start_time": "Sun, 24 Dec 2023 13:40:33 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -392919,12 +395340,12 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.4p1 Debian 5+deb11u2", + "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { "cvss": "5.0", - "type": "prion", "id": "PRION:CVE-2016-20012", + "type": "prion", "is_exploit": "false" } ] @@ -393315,7 +395736,7 @@ "ip": "mes-adresses.data.gouv.fr/162.19.30.139", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -393525,7 +395946,7 @@ "ip": "mes-adresses.data.gouv.fr/162.19.30.139", "port": "443", "severity": "INFO", - "finding": "1702824657" + "finding": "1703425309" }, { "id": "HSTS_time", @@ -394097,8 +396518,8 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 14:50:16 GMT", - "etag": "\"16gmanrdjnp10bs\"", + "date": "Sun, 24 Dec 2023 13:41:09 GMT", + "etag": "\"p2scz5cygc10bs\"", "server": "nginx/1.23.4", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", @@ -394387,7 +396808,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 14:49:14", + "@generated": "Sun, 24 Dec 2023 13:40:09", "site": [ { "@name": "https://mes-adresses.data.gouv.fr", @@ -394534,6 +396955,13 @@ "confidence": "2", "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, + { + "name": "Storable but Non-Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" } ] } @@ -394572,7 +397000,7 @@ "extracted-results": [ "bal-1.infra.adresse.data.gouv.fr." ], - "timestamp": "2023-12-17T14:52:05.259095236Z", + "timestamp": "2023-12-24T13:42:57.545468847Z", "matcher-status": true }, { @@ -394607,7 +397035,7 @@ "type": "dns", "host": "mes-adresses.data.gouv.fr.", "matched-at": "mes-adresses.data.gouv.fr", - "timestamp": "2023-12-17T14:52:06.251494844Z", + "timestamp": "2023-12-24T13:42:57.659442578Z", "matcher-status": true }, { @@ -394636,7 +397064,7 @@ "GET, HEAD" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:12.721919675Z", + "timestamp": "2023-12-24T13:43:04.930772978Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394668,7 +397096,7 @@ "nginx/1.23.4" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:18.149252689Z", + "timestamp": "2023-12-24T13:43:09.644154669Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394695,7 +397123,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:42.164731744Z", + "timestamp": "2023-12-24T13:43:34.449602897Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394722,7 +397150,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:42.164797156Z", + "timestamp": "2023-12-24T13:43:34.449644976Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394759,7 +397187,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612532758Z", + "timestamp": "2023-12-24T13:43:41.711610716Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394791,12 +397219,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612575468Z", + "timestamp": "2023-12-24T13:43:41.711649308Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394828,12 +397256,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612586568Z", + "timestamp": "2023-12-24T13:43:41.7116607Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394870,7 +397298,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612601646Z", + "timestamp": "2023-12-24T13:43:41.711678833Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394902,12 +397330,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612619049Z", + "timestamp": "2023-12-24T13:43:41.711694482Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394939,12 +397367,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612633236Z", + "timestamp": "2023-12-24T13:43:41.71170958Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -394976,12 +397404,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612647532Z", + "timestamp": "2023-12-24T13:43:41.711723967Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395013,12 +397441,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612660667Z", + "timestamp": "2023-12-24T13:43:41.711737512Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395050,12 +397478,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612672669Z", + "timestamp": "2023-12-24T13:43:41.71175209Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395087,12 +397515,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:52:49.612686235Z", + "timestamp": "2023-12-24T13:43:41.711767158Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395132,7 +397560,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:53:12.260457929Z", + "timestamp": "2023-12-24T13:44:04.431778502Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mes-adresses.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395179,10 +397607,10 @@ "host": "mes-adresses.data.gouv.fr:22", "matched-at": "mes-adresses.data.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2" + "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:54:01.41972682Z", + "timestamp": "2023-12-24T13:44:53.535700338Z", "matcher-status": true }, { @@ -395196,7 +397624,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -395211,7 +397640,7 @@ "Let's Encrypt" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:54:46.948500258Z", + "timestamp": "2023-12-24T13:45:34.139264091Z", "matcher-status": true }, { @@ -395225,7 +397654,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -395244,7 +397674,7 @@ "plateforme-bal.adresse.data.gouv.fr" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:54:46.94861911Z", + "timestamp": "2023-12-24T13:45:34.13939281Z", "matcher-status": true }, { @@ -395259,7 +397689,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -395274,7 +397705,7 @@ "tls12" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:54:51.701748728Z", + "timestamp": "2023-12-24T13:45:35.59624901Z", "matcher-status": true }, { @@ -395289,7 +397720,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -395304,7 +397736,7 @@ "tls13" ], "ip": "162.19.30.139", - "timestamp": "2023-12-17T14:54:51.890923952Z", + "timestamp": "2023-12-24T13:45:35.789414837Z", "matcher-status": true } ], @@ -395312,7 +397744,7 @@ { "requestedUrl": "https://mes-adresses.data.gouv.fr/", "finalUrl": "https://mes-adresses.data.gouv.fr/", - "fetchTime": "2023-12-17T14:49:28.862Z", + "fetchTime": "2023-12-24T13:40:23.176Z", "runWarnings": [], "categories": { "performance": { @@ -395375,53 +397807,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3257, + "numericValue": 3318, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 906, - "firstMeaningfulPaint": 906, - "largestContentfulPaint": 1056, - "interactive": 3257, - "speedIndex": 954, - "totalBlockingTime": 384, - "maxPotentialFID": 326, + "firstContentfulPaint": 904, + "firstMeaningfulPaint": 904, + "largestContentfulPaint": 1054, + "interactive": 3318, + "speedIndex": 944, + "totalBlockingTime": 430, + "maxPotentialFID": 314, "cumulativeLayoutShift": 0.011575868394639756, "cumulativeLayoutShiftMainFrame": 0.011575868394639756, "totalCumulativeLayoutShift": 0.011575868394639756, "observedTimeOrigin": 0, - "observedTimeOriginTs": 260249810, + "observedTimeOriginTs": 207104027, "observedNavigationStart": 0, - "observedNavigationStartTs": 260249810, - "observedFirstPaint": 412, - "observedFirstPaintTs": 260661344, - "observedFirstContentfulPaint": 412, - "observedFirstContentfulPaintTs": 260661344, - "observedFirstContentfulPaintAllFrames": 412, - "observedFirstContentfulPaintAllFramesTs": 260661344, - "observedFirstMeaningfulPaint": 412, - "observedFirstMeaningfulPaintTs": 260661344, - "observedLargestContentfulPaint": 412, - "observedLargestContentfulPaintTs": 260661344, - "observedLargestContentfulPaintAllFrames": 412, - "observedLargestContentfulPaintAllFramesTs": 260661344, - "observedTraceEnd": 3212, - "observedTraceEndTs": 263462291, - "observedLoad": 670, - "observedLoadTs": 260919766, - "observedDomContentLoaded": 668, - "observedDomContentLoadedTs": 260917498, + "observedNavigationStartTs": 207104027, + "observedFirstPaint": 390, + "observedFirstPaintTs": 207494440, + "observedFirstContentfulPaint": 390, + "observedFirstContentfulPaintTs": 207494440, + "observedFirstContentfulPaintAllFrames": 390, + "observedFirstContentfulPaintAllFramesTs": 207494440, + "observedFirstMeaningfulPaint": 390, + "observedFirstMeaningfulPaintTs": 207494440, + "observedLargestContentfulPaint": 390, + "observedLargestContentfulPaintTs": 207494440, + "observedLargestContentfulPaintAllFrames": 390, + "observedLargestContentfulPaintAllFramesTs": 207494440, + "observedTraceEnd": 3202, + "observedTraceEndTs": 210306038, + "observedLoad": 659, + "observedLoadTs": 207762992, + "observedDomContentLoaded": 657, + "observedDomContentLoadedTs": 207760948, "observedCumulativeLayoutShift": 0.011575868394639756, "observedCumulativeLayoutShiftMainFrame": 0.011575868394639756, "observedTotalCumulativeLayoutShift": 0.011575868394639756, - "observedFirstVisualChange": 389, - "observedFirstVisualChangeTs": 260638810, - "observedLastVisualChange": 1006, - "observedLastVisualChangeTs": 261255810, - "observedSpeedIndex": 436, - "observedSpeedIndexTs": 260685406 + "observedFirstVisualChange": 387, + "observedFirstVisualChangeTs": 207491027, + "observedLastVisualChange": 1004, + "observedLastVisualChangeTs": 208108027, + "observedSpeedIndex": 434, + "observedSpeedIndexTs": 207537532 }, { "lcpInvalidated": false @@ -395443,19 +397875,19 @@ "numScripts": 17, "numStylesheets": 1, "numFonts": 0, - "numTasks": 513, - "numTasksOver10ms": 7, - "numTasksOver25ms": 5, + "numTasks": 577, + "numTasksOver10ms": 6, + "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 84.89500000000001, - "throughput": 14001852.30849549, - "maxRtt": 84.943, - "maxServerLatency": 5.661999999999992, - "totalByteWeight": 901427, - "totalTaskTime": 343.30499999999927, - "mainDocumentTransferSize": 9756 + "rtt": 83.65, + "throughput": 13975552.186381193, + "maxRtt": 85.19500000000001, + "maxServerLatency": 3.745999999999995, + "totalByteWeight": 902204, + "totalTaskTime": 326.10699999999935, + "mainDocumentTransferSize": 9755 } ] } @@ -395596,7 +398028,7 @@ "http": { "url": "https://adresse.data.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 15:14:26 GMT", + "end_time": "Sun, 24 Dec 2023 14:05:58 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -395605,17 +398037,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 15:14:23 GMT", - "ETag": "\"17e08q34kh19j1\"", + "Date": "Sun, 24 Dec 2023 14:05:56 GMT", + "ETag": "\"a7jycectbk19hy\"", "Server": "nginx/1.24.0", "Strict-Transport-Security": "max-age=15768000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js" }, - "scan_id": 45556981, + "scan_id": 45767388, "score": 40, - "start_time": "Sun, 17 Dec 2023 15:12:42 GMT", + "start_time": "Sun, 24 Dec 2023 14:05:53 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -395785,7 +398217,7 @@ "nmap": { "host": "adresse.data.gouv.fr", "protocol": "tcp", - "closed_ports": "996", + "closed_ports": "997", "open_ports": [ { "service": { @@ -395795,130 +398227,130 @@ "version": "7.6p1 Ubuntu 4ubuntu0.7", "vulnerabilities": [ { - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", + "cvss": "5.8", "type": "exploitpack", - "is_exploit": "true", - "cvss": "5.8" + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", + "is_exploit": "true" }, { - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", + "cvss": "5.8", "type": "exploitpack", - "is_exploit": "true", - "cvss": "5.8" + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", + "is_exploit": "true" }, { - "id": "EDB-ID:46516", + "cvss": "5.8", "type": "exploitdb", - "is_exploit": "true", - "cvss": "5.8" + "id": "EDB-ID:46516", + "is_exploit": "true" }, { - "id": "EDB-ID:46193", + "cvss": "5.8", "type": "exploitdb", - "is_exploit": "true", - "cvss": "5.8" + "id": "EDB-ID:46193", + "is_exploit": "true" }, { - "id": "CVE-2019-6111", + "cvss": "5.8", "type": "cve", - "is_exploit": "false", - "cvss": "5.8" + "id": "CVE-2019-6111", + "is_exploit": "false" }, { - "id": "1337DAY-ID-32328", + "cvss": "5.8", "type": "zdt", - "is_exploit": "true", - "cvss": "5.8" + "id": "1337DAY-ID-32328", + "is_exploit": "true" }, { - "id": "1337DAY-ID-32009", + "cvss": "5.8", "type": "zdt", - "is_exploit": "true", - "cvss": "5.8" + "id": "1337DAY-ID-32009", + "is_exploit": "true" }, { - "id": "SSH_ENUM", + "cvss": "5.0", "type": "canvas", - "is_exploit": "true", - "cvss": "5.0" + "id": "SSH_ENUM", + "is_exploit": "true" }, { - "id": "PRION:CVE-2018-15919", + "cvss": "5.0", "type": "prion", - "is_exploit": "false", - "cvss": "5.0" + "id": "PRION:CVE-2018-15919", + "is_exploit": "false" }, { - "id": "PRION:CVE-2018-15473", + "cvss": "5.0", "type": "prion", - "is_exploit": "false", - "cvss": "5.0" + "id": "PRION:CVE-2018-15473", + "is_exploit": "false" }, { - "id": "PACKETSTORM:150621", + "cvss": "5.0", "type": "packetstorm", - "is_exploit": "true", - "cvss": "5.0" + "id": "PACKETSTORM:150621", + "is_exploit": "true" }, { - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", + "cvss": "5.0", "type": "exploitpack", - "is_exploit": "true", - "cvss": "5.0" + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", + "is_exploit": "true" }, { - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", + "cvss": "5.0", "type": "exploitpack", - "is_exploit": "true", - "cvss": "5.0" + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", + "is_exploit": "true" }, { - "id": "EDB-ID:45939", + "cvss": "5.0", "type": "exploitdb", - "is_exploit": "true", - "cvss": "5.0" + "id": "EDB-ID:45939", + "is_exploit": "true" }, { - "id": "EDB-ID:45233", + "cvss": "5.0", "type": "exploitdb", - "is_exploit": "true", - "cvss": "5.0" + "id": "EDB-ID:45233", + "is_exploit": "true" }, { - "id": "CVE-2018-15919", + "cvss": "5.0", "type": "cve", - "is_exploit": "false", - "cvss": "5.0" + "id": "CVE-2018-15919", + "is_exploit": "false" }, { - "id": "CVE-2018-15473", + "cvss": "5.0", "type": "cve", - "is_exploit": "false", - "cvss": "5.0" + "id": "CVE-2018-15473", + "is_exploit": "false" }, { - "id": "1337DAY-ID-31730", + "cvss": "5.0", "type": "zdt", - "is_exploit": "true", - "cvss": "5.0" + "id": "1337DAY-ID-31730", + "is_exploit": "true" }, { - "id": "PACKETSTORM:151227", + "cvss": "0.0", "type": "packetstorm", - "is_exploit": "true", - "cvss": "0.0" + "id": "PACKETSTORM:151227", + "is_exploit": "true" }, { - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", + "cvss": "0.0", "type": "metasploit", - "is_exploit": "true", - "cvss": "0.0" + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", + "is_exploit": "true" }, { - "id": "1337DAY-ID-30937", + "cvss": "0.0", "type": "zdt", - "is_exploit": "true", - "cvss": "0.0" + "id": "1337DAY-ID-30937", + "is_exploit": "true" } ] } @@ -395940,14 +398372,6 @@ "version": "1.24.0", "vulnerabilities": [] } - }, - { - "service": { - "name": "http", - "product": "Node.js Express framework", - "id": "3000", - "vulnerabilities": [] - } } ], "grade": "F" @@ -396239,7 +398663,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "030D67EDF3A8CC3841282D48E8FA35DBB59F" + "finding": "04F3F2559A2ACC7A9065553CF361484CBAB6" }, { "id": "cert_serialNumberLen", @@ -396253,21 +398677,21 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "AB17BD5825E5B4D1A07AD54D36FD89E6A2A4C3D2" + "finding": "960003CEE89BD6FD9A12EF297DF4BB55EAAABAD4" }, { "id": "cert_fingerprintSHA256", "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "A990867A8FE05AE9AB7FEB9FBE9FBAAEF1D56E03DB02D42DF92A758FFE772413" + "finding": "4F0527A9715E366C337B7E81276EBD2AEFA473A839349F1EA231A9EB328EF2C8" }, { "id": "cert", "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -396316,21 +398740,21 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "34 >= 30 days" + "finding": "87 >= 30 days" }, { "id": "cert_notBefore", "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "2023-10-22 17:36" + "finding": "2023-12-22 01:37" }, { "id": "cert_notAfter", "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "2024-01-20 17:36" + "finding": "2024-03-21 01:37" }, { "id": "cert_extlifeSpan", @@ -396526,7 +398950,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "1702826154" + "finding": "1703426871" }, { "id": "HSTS_time", @@ -397089,7 +399513,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "66" } ], "thirdparties": { @@ -397149,7 +399573,7 @@ "value": "1", "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1702827900, + "expires": 1703428597, "size": 16, "httpOnly": false, "secure": false, @@ -397161,10 +399585,10 @@ }, { "name": "_pk_id.13.592e", - "value": "cab7d76866ca047d.1702826101.", + "value": "51867c2d7083ae0e.1703426798.", "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1736781301, + "expires": 1737381998, "size": 42, "httpOnly": false, "secure": false, @@ -397179,8 +399603,8 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 15:14:59 GMT", - "etag": "\"17e08q34kh19j1\"", + "date": "Sun, 24 Dec 2023 14:06:36 GMT", + "etag": "\"a7jycectbk19hy\"", "server": "nginx/1.24.0", "strict-transport-security": "max-age=15768000", "vary": "Accept-Encoding", @@ -397265,7 +399689,7 @@ }, { "hostname": "sibforms.com", - "ip": "104.16.141.119", + "ip": "104.16.140.119", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -397285,8 +399709,42 @@ }, { "hostname": "assets.brevo.com", - "ip": "104.18.38.216", + "ip": "172.64.149.40", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -397305,21 +399763,8 @@ }, { "hostname": "596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io", - "ip": "63.33.254.192", + "ip": "34.253.3.7", "geoip": { - "city": { - "geoname_id": 2964574, - "names": { - "de": "Dublin", - "en": "Dublin", - "es": "Dublín", - "fr": "Dublin", - "ja": "ダブリン", - "pt-BR": "Dublin", - "ru": "Дублин", - "zh-CN": "都柏林" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -397335,28 +399780,24 @@ } }, "country": { - "geoname_id": 2963597, - "is_in_european_union": true, - "iso_code": "IE", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "Irland", - "en": "Ireland", - "es": "Irlanda", - "fr": "Irlande", - "ja": "アイルランド", - "pt-BR": "Irlanda", - "ru": "Ирландия", - "zh-CN": "爱尔兰" + "de": "Vereinigtes Königreich", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "location": { - "accuracy_radius": 1000, - "latitude": 53.3379, - "longitude": -6.2591, - "time_zone": "Europe/Dublin" - }, - "postal": { - "code": "D02" + "accuracy_radius": 200, + "latitude": 51.4964, + "longitude": -0.1224, + "time_zone": "Europe/London" }, "registered_country": { "geoname_id": 6252001, @@ -397371,19 +399812,7 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 7521314, - "iso_code": "L", - "names": { - "en": "Leinster", - "fr": "Leinster", - "ja": "レンスター", - "ru": "Ленстер" - } - } - ] + } } } ] @@ -397583,7 +400012,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 15:14:16", + "@generated": "Sun, 24 Dec 2023 14:07:43", "site": [ { "@name": "https://adresse.data.gouv.fr", @@ -397765,22 +400194,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -397796,26 +400225,29 @@ "type": "dns", "host": "adresse.data.gouv.fr.", "matched-at": "adresse.data.gouv.fr", - "timestamp": "2023-12-17T15:17:02.64526271Z", + "extracted-results": [ + "\"sendinblue-code:dd31dfeba26dea3dbb822aba4ec57417\"" + ], + "timestamp": "2023-12-24T14:09:28.428333724Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -397831,10 +400263,7 @@ "type": "dns", "host": "adresse.data.gouv.fr.", "matched-at": "adresse.data.gouv.fr", - "extracted-results": [ - "\"sendinblue-code:dd31dfeba26dea3dbb822aba4ec57417\"" - ], - "timestamp": "2023-12-17T15:17:03.889079412Z", + "timestamp": "2023-12-24T14:09:28.762589606Z", "matcher-status": true }, { @@ -397863,7 +400292,7 @@ "GET,HEAD" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:09.728283435Z", + "timestamp": "2023-12-24T14:09:34.497244099Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -397895,7 +400324,7 @@ "nginx/1.24.0" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:14.698026388Z", + "timestamp": "2023-12-24T14:09:39.479455032Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -397922,7 +400351,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:40.276973097Z", + "timestamp": "2023-12-24T14:10:05.517742075Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -397949,7 +400378,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:40.277014654Z", + "timestamp": "2023-12-24T14:10:05.517784073Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -397981,12 +400410,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.90504731Z", + "timestamp": "2023-12-24T14:10:12.925267391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398018,12 +400447,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905085582Z", + "timestamp": "2023-12-24T14:10:12.925310011Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398055,12 +400484,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905098957Z", + "timestamp": "2023-12-24T14:10:12.925327023Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398092,12 +400521,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905115908Z", + "timestamp": "2023-12-24T14:10:12.925343964Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398129,12 +400558,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905130736Z", + "timestamp": "2023-12-24T14:10:12.925356908Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398166,12 +400595,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.90514392Z", + "timestamp": "2023-12-24T14:10:12.925369071Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398203,12 +400632,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905156584Z", + "timestamp": "2023-12-24T14:10:12.925381464Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398240,12 +400669,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905169047Z", + "timestamp": "2023-12-24T14:10:12.925393557Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398277,12 +400706,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905182492Z", + "timestamp": "2023-12-24T14:10:12.925405149Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398314,12 +400743,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:17:47.905197189Z", + "timestamp": "2023-12-24T14:10:12.925417121Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398359,7 +400788,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:18:10.989099258Z", + "timestamp": "2023-12-24T14:10:36.128032479Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adresse.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398399,7 +400828,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:18:10.989135635Z", + "timestamp": "2023-12-24T14:10:36.128074307Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adresse.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398449,7 +400878,7 @@ "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.7" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:19:00.745098426Z", + "timestamp": "2023-12-24T14:11:25.806391733Z", "matcher-status": true }, { @@ -398463,7 +400892,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -398478,7 +400908,7 @@ "Let's Encrypt" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:19:41.739630741Z", + "timestamp": "2023-12-24T14:12:06.765908079Z", "matcher-status": true }, { @@ -398492,7 +400922,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -398504,13 +400935,13 @@ "host": "adresse.data.gouv.fr", "matched-at": "adresse.data.gouv.fr:443", "extracted-results": [ - "adresse.data.gouv.fr", "blog.geo.data.gouv.fr", "plateforme.adresse.data.gouv.fr", - "www.adresse.data.gouv.fr" + "www.adresse.data.gouv.fr", + "adresse.data.gouv.fr" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:19:41.73975953Z", + "timestamp": "2023-12-24T14:12:06.766013776Z", "matcher-status": true }, { @@ -398525,7 +400956,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -398540,7 +400972,7 @@ "tls12" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:19:44.6926718Z", + "timestamp": "2023-12-24T14:12:09.607007737Z", "matcher-status": true }, { @@ -398555,7 +400987,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -398570,7 +401003,7 @@ "tls13" ], "ip": "146.59.188.210", - "timestamp": "2023-12-17T15:19:44.885292024Z", + "timestamp": "2023-12-24T14:12:09.803092919Z", "matcher-status": true } ], @@ -398578,7 +401011,7 @@ { "requestedUrl": "https://adresse.data.gouv.fr/", "finalUrl": "https://adresse.data.gouv.fr/", - "fetchTime": "2023-12-17T15:12:30.046Z", + "fetchTime": "2023-12-24T14:05:41.123Z", "runWarnings": [], "categories": { "performance": { @@ -398600,7 +401033,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.98 }, "best-practices": { "title": "Best Practices", @@ -398641,53 +401074,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8234, + "numericValue": 7753, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2528, - "firstMeaningfulPaint": 2528, - "largestContentfulPaint": 4215, - "interactive": 8234, - "speedIndex": 4249, - "totalBlockingTime": 539, - "maxPotentialFID": 282, + "firstContentfulPaint": 2519, + "firstMeaningfulPaint": 2519, + "largestContentfulPaint": 4019, + "interactive": 7753, + "speedIndex": 4277, + "totalBlockingTime": 491, + "maxPotentialFID": 304, "cumulativeLayoutShift": 0.010291130913628472, "cumulativeLayoutShiftMainFrame": 0.010291130913628472, "totalCumulativeLayoutShift": 0.010291130913628472, "observedTimeOrigin": 0, - "observedTimeOriginTs": 818057173, + "observedTimeOriginTs": 824657026, "observedNavigationStart": 0, - "observedNavigationStartTs": 818057173, - "observedFirstPaint": 890, - "observedFirstPaintTs": 818947198, - "observedFirstContentfulPaint": 890, - "observedFirstContentfulPaintTs": 818947198, - "observedFirstContentfulPaintAllFrames": 890, - "observedFirstContentfulPaintAllFramesTs": 818947198, - "observedFirstMeaningfulPaint": 890, - "observedFirstMeaningfulPaintTs": 818947198, - "observedLargestContentfulPaint": 890, - "observedLargestContentfulPaintTs": 818947198, - "observedLargestContentfulPaintAllFrames": 890, - "observedLargestContentfulPaintAllFramesTs": 818947198, - "observedTraceEnd": 3842, - "observedTraceEndTs": 821898864, - "observedLoad": 1528, - "observedLoadTs": 819585660, - "observedDomContentLoaded": 1006, - "observedDomContentLoadedTs": 819062823, + "observedNavigationStartTs": 824657026, + "observedFirstPaint": 853, + "observedFirstPaintTs": 825509923, + "observedFirstContentfulPaint": 853, + "observedFirstContentfulPaintTs": 825509923, + "observedFirstContentfulPaintAllFrames": 853, + "observedFirstContentfulPaintAllFramesTs": 825509923, + "observedFirstMeaningfulPaint": 853, + "observedFirstMeaningfulPaintTs": 825509923, + "observedLargestContentfulPaint": 853, + "observedLargestContentfulPaintTs": 825509923, + "observedLargestContentfulPaintAllFrames": 853, + "observedLargestContentfulPaintAllFramesTs": 825509923, + "observedTraceEnd": 3863, + "observedTraceEndTs": 828519722, + "observedLoad": 1551, + "observedLoadTs": 826208112, + "observedDomContentLoaded": 936, + "observedDomContentLoadedTs": 825592592, "observedCumulativeLayoutShift": 0.010291130913628472, "observedCumulativeLayoutShiftMainFrame": 0.010291130913628472, "observedTotalCumulativeLayoutShift": 0.010291130913628472, - "observedFirstVisualChange": 893, - "observedFirstVisualChangeTs": 818950173, - "observedLastVisualChange": 2210, - "observedLastVisualChangeTs": 820267173, - "observedSpeedIndex": 1033, - "observedSpeedIndexTs": 819089735 + "observedFirstVisualChange": 859, + "observedFirstVisualChangeTs": 825516026, + "observedLastVisualChange": 2143, + "observedLastVisualChangeTs": 826800026, + "observedSpeedIndex": 991, + "observedSpeedIndexTs": 825648473 }, { "lcpInvalidated": false @@ -398709,19 +401142,19 @@ "numScripts": 38, "numStylesheets": 3, "numFonts": 9, - "numTasks": 1193, - "numTasksOver10ms": 18, - "numTasksOver25ms": 6, - "numTasksOver50ms": 5, + "numTasks": 1224, + "numTasksOver10ms": 21, + "numTasksOver25ms": 4, + "numTasksOver50ms": 4, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 5.652000000000001, - "throughput": 15632803.399981786, - "maxRtt": 87.903, - "maxServerLatency": 15.648999999999997, - "totalByteWeight": 931080, - "totalTaskTime": 949.5959999999947, - "mainDocumentTransferSize": 11256 + "rtt": 5.5440000000000005, + "throughput": 21168249.20591287, + "maxRtt": 83.827, + "maxServerLatency": 15.239999999999998, + "totalByteWeight": 931313, + "totalTaskTime": 1028.6119999999944, + "mainDocumentTransferSize": 11215 } ] } @@ -398828,10 +401261,10 @@ "summary": { "httpGrade": "D+", "nmapGrade": "F", - "nmapOpenPortsCount": 4, + "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-20T17:36:00.000Z", + "testsslExpireDate": "2024-03-21T01:37:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, @@ -398839,7 +401272,7 @@ "trackersCount": 12, "lighthouse_performance": 0.5, "lighthouse_performanceGrade": "D", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", @@ -398862,7 +401295,7 @@ "http": { "url": "https://my.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 15:14:23 GMT", + "end_time": "Sun, 24 Dec 2023 14:10:51 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -398870,12 +401303,12 @@ "Connection": "keep-alive", "Content-Length": "146", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 15:14:22 GMT", + "Date": "Sun, 24 Dec 2023 14:10:50 GMT", "Server": "nginx" }, - "scan_id": 45556980, + "scan_id": 45767484, "score": 20, - "start_time": "Sun, 17 Dec 2023 15:12:38 GMT", + "start_time": "Sun, 24 Dec 2023 14:10:47 GMT", "state": "FINISHED", "status_code": 403, "tests_failed": 5, @@ -399052,43 +401485,43 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", + "version": "8.2p1 Ubuntu 4ubuntu0.10", "vulnerabilities": [ { - "is_exploit": "false", + "id": "CVE-2020-15778", "cvss": "6.8", - "type": "cve", - "id": "CVE-2020-15778" + "is_exploit": "false", + "type": "cve" }, { - "is_exploit": "true", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "cvss": "6.8", - "type": "githubexploit", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" + "is_exploit": "true", + "type": "githubexploit" }, { - "is_exploit": "true", + "id": "10213DBE-F683-58BB-B6D3-353173626207", "cvss": "6.8", - "type": "githubexploit", - "id": "10213DBE-F683-58BB-B6D3-353173626207" + "is_exploit": "true", + "type": "githubexploit" }, { - "is_exploit": "false", + "id": "PRION:CVE-2020-12062", "cvss": "5.0", - "type": "prion", - "id": "PRION:CVE-2020-12062" + "is_exploit": "false", + "type": "prion" }, { - "is_exploit": "false", + "id": "PRION:CVE-2016-20012", "cvss": "5.0", - "type": "prion", - "id": "PRION:CVE-2016-20012" + "is_exploit": "false", + "type": "prion" }, { - "is_exploit": "false", + "id": "CVE-2020-12062", "cvss": "5.0", - "type": "cve", - "id": "CVE-2020-12062" + "is_exploit": "false", + "type": "cve" } ] } @@ -399497,7 +401930,7 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "OK", - "finding": "69 >= 30 days" + "finding": "62 >= 30 days" }, { "id": "cert_notBefore", @@ -399700,14 +402133,14 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "INFO", - "finding": "1702826146" + "finding": "1703427162" }, { "id": "HSTS", @@ -400263,7 +402696,7 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "INFO", - "finding": "64" + "finding": "102" } ], "thirdparties": { @@ -400272,7 +402705,7 @@ "headers": { "content-length": "548", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 15:14:56 GMT", + "date": "Sun, 24 Dec 2023 14:11:22 GMT", "server": "nginx" }, "endpoints": [ @@ -400369,7 +402802,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 15:12:08", + "@generated": "Sun, 24 Dec 2023 14:10:17", "site": [ { "@name": "https://my.fabnum.fr", @@ -400484,7 +402917,7 @@ "type": "dns", "host": "my.fabnum.fr.", "matched-at": "my.fabnum.fr", - "timestamp": "2023-12-17T15:16:54.920128188Z", + "timestamp": "2023-12-24T14:14:05.59341452Z", "matcher-status": true }, { @@ -400510,7 +402943,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:36.200456386Z", + "timestamp": "2023-12-24T14:15:04.167024474Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400542,12 +402975,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442775556Z", + "timestamp": "2023-12-24T14:15:19.688587706Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400579,12 +403012,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442837652Z", + "timestamp": "2023-12-24T14:15:19.688642408Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400616,12 +403049,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442853893Z", + "timestamp": "2023-12-24T14:15:19.68865958Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400653,12 +403086,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442868229Z", + "timestamp": "2023-12-24T14:15:19.688815612Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400690,12 +403123,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442882035Z", + "timestamp": "2023-12-24T14:15:19.689008691Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400727,12 +403160,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.44289547Z", + "timestamp": "2023-12-24T14:15:19.689031524Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400764,12 +403197,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442908584Z", + "timestamp": "2023-12-24T14:15:19.68906169Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400801,12 +403234,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "content-security-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442930796Z", + "timestamp": "2023-12-24T14:15:19.689081327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400838,12 +403271,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442951765Z", + "timestamp": "2023-12-24T14:15:19.689100423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400875,12 +403308,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.44297067Z", + "timestamp": "2023-12-24T14:15:19.689117114Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400912,12 +403345,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:47.442989745Z", + "timestamp": "2023-12-24T14:15:19.68913109Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400956,7 +403389,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/.well-known/openid-configuration", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:50.982658739Z", + "timestamp": "2023-12-24T14:15:25.001888693Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -400984,7 +403417,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/robots.txt", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:17:59.047129294Z", + "timestamp": "2023-12-24T14:15:36.511757859Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/robots.txt'", "matcher-status": true }, @@ -401012,7 +403445,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/.well-known/openid-configuration", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:18:13.283557274Z", + "timestamp": "2023-12-24T14:15:56.758099589Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -401052,7 +403485,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:18:14.528602416Z", + "timestamp": "2023-12-24T14:15:58.690728883Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: my.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401092,7 +403525,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:18:14.528650776Z", + "timestamp": "2023-12-24T14:15:58.690770861Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: my.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401139,10 +403572,10 @@ "host": "my.fabnum.fr:22", "matched-at": "my.fabnum.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" ], "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:19:07.625883666Z", + "timestamp": "2023-12-24T14:17:01.102303567Z", "matcher-status": true }, { @@ -401156,7 +403589,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -401171,7 +403605,7 @@ "Let's Encrypt" ], "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:19:57.49053455Z", + "timestamp": "2023-12-24T14:17:51.246859364Z", "matcher-status": true }, { @@ -401185,7 +403619,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -401200,7 +403635,7 @@ "my.fabnum.fr" ], "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:19:57.49067422Z", + "timestamp": "2023-12-24T14:17:51.246964411Z", "matcher-status": true }, { @@ -401215,7 +403650,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -401230,7 +403666,7 @@ "tls12" ], "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:19:59.185681594Z", + "timestamp": "2023-12-24T14:17:53.551788961Z", "matcher-status": true }, { @@ -401245,7 +403681,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -401260,7 +403697,7 @@ "tls13" ], "ip": "51.255.78.174", - "timestamp": "2023-12-17T15:19:59.427074311Z", + "timestamp": "2023-12-24T14:17:53.870641313Z", "matcher-status": true } ], @@ -401471,7 +403908,7 @@ "http": { "url": "https://inclusion.beta.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:10:56 GMT", + "end_time": "Sun, 24 Dec 2023 14:26:28 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -401480,17 +403917,17 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 16:10:55 GMT", + "Date": "Sun, 24 Dec 2023 14:26:27 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "48ec7177-66d7-4003-a0fe-c724625228da" + "X-Request-ID": "a8a20218-5652-4246-ab01-9c03eb504bca" }, - "scan_id": 45558250, + "scan_id": 45767724, "score": 65, - "start_time": "Sun, 17 Dec 2023 16:10:51 GMT", + "start_time": "Sun, 24 Dec 2023 14:23:27 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -401675,15 +404112,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T16:15:12Z", - "next_check_at": "2023-12-17T17:14:42Z", + "last_check_at": "2023-12-24T14:24:55Z", + "next_check_at": "2023-12-24T15:24:38Z", "mute_until": "forever", "favicon_url": "https://inclusion.beta.gouv.fr/static/images/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T13:15:54Z", + "tested_at": "2023-12-24T14:24:58Z", "expires_at": "2024-03-16T07:46:09Z", "valid": true, "error": null @@ -402063,7 +404500,7 @@ "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "89 >= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", @@ -402266,7 +404703,7 @@ "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702829541" + "finding": "1703428067" }, { "id": "HSTS_time", @@ -402840,77 +405277,77 @@ }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402918,7 +405355,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402926,7 +405363,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402934,7 +405371,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -402942,7 +405379,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -402950,7 +405387,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -402958,511 +405395,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:46" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-16 07:46" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702829595" + "finding": "1703428122" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -403470,7 +405907,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -403479,7 +405916,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -403488,7 +405925,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -403497,7 +405934,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -403506,7 +405943,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -403514,7 +405951,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -403523,7 +405960,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -403532,7 +405969,7 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -403541,7 +405978,7 @@ }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -403550,14 +405987,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -403566,7 +406003,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -403575,7 +406012,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -403584,7 +406021,7 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -403593,7 +406030,7 @@ }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -403602,7 +406039,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -403611,7 +406048,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -403620,7 +406057,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -403629,7 +406066,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -403638,7 +406075,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -403647,315 +406084,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" @@ -404307,7 +406744,7 @@ "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "89 >= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", @@ -404503,14 +406940,14 @@ "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702829650" + "finding": "1703428176" }, { "id": "HSTS_time", @@ -405084,77 +407521,77 @@ }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405162,7 +407599,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405170,7 +407607,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405178,7 +407615,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405186,7 +407623,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -405194,7 +407631,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -405202,511 +407639,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:46" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-16 07:46" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702829705" + "finding": "1703428231" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -405714,7 +408151,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -405723,7 +408160,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -405732,7 +408169,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -405741,7 +408178,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -405750,7 +408187,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -405758,7 +408195,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -405767,7 +408204,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -405776,7 +408213,7 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -405785,7 +408222,7 @@ }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -405794,14 +408231,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -405810,7 +408247,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -405819,7 +408256,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405828,7 +408265,7 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405837,7 +408274,7 @@ }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405846,7 +408283,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405855,7 +408292,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -405864,7 +408301,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -405873,7 +408310,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -405882,7 +408319,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -405891,322 +408328,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "inclusion.beta.gouv.fr/80.247.12.255", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "222" @@ -406216,87 +408653,87 @@ "trackers": [ { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/cdb.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=9nO9s%2FerNtGycjwU1uD6OxtqSZs%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/cdb.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=ToNEDiBxgMd1IrGyvBP5adZdU7Y%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Communaute.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=wDyJKEiteCXGJzuG7w9Uu%2BBVHK8%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Communaute.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=WXGK6GE17I2Mx5cDUiZDqlpfd%2F4%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DataInclusion-Monogramme-Couleur.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=iQb6eqtwcPAPiM6Li7zgIVZBrVw%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DataInclusion-Monogramme-Couleur.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=g6Jt8aAHOfLNs311LC4zCQbhokY%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DORA.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=zIpt3p0xLBPXaDJWgDELI%2FOhwNw%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DORA.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=XY0ZxeNazwuGNz2JVK5jumWO880%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Emplois.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=tN0Xa8jOPbpZV0p7K73lgdXOOSQ%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Emplois.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=Gb0f1sm9KlOXVRTfTjte3mwu%2BP0%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IF.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=4PebrIbtggLf5GeFFBev4nz1pfQ%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IF.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=h%2Fa5t%2F8Ga32Qk4wj%2BCJfTamj9ko%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IC.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=e01WeBpMfSQY9R3uA4nD9MFBs1A%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IC.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=5xYjNuB3a%2FHQ6hMIY%2Bc863GvZKI%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Marche.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=RWRpR3K9KF9d%2Bzf6GJ4QX3QNr2E%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Marche.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=lQR928u5YUq4Wi9KD%2BgBKRY%2BbXA%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Monrecap_Monogramme.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=KvQltR1V0oTg7u8ZcZk7qu86r8M%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Monrecap_Monogramme.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=z28f3CqoqqFUkmydM1tD6bAPpXQ%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Pilotage.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=ascclsW2GgHh3dQo2nVyhL6Ei74%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Pilotage.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=a3QZLXDSVzkkq5HyEnsGtYumfvA%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/rdv-insertion.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=Vytjjy6SmRnOc7Gr%2F6hlE7E1W2Q%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/rdv-insertion.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=5ICGbFYos4MVy0PkbntrRsBG0lo%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_1.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=WmdY8H%2FKHeplNmSjXxOm4IiIoD8%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_1.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=%2FBOwrcxc7b5lHpcF5tLknh9oAY8%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_2.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=5cLdmw75wgZRK0SNQik%2F7oK07XY%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_2.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=tPo9bUsw%2Bl5YCdwesHCbYi90qlc%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_3.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=RENbpCqsBJKjJiiITjREMCT9moQ%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_3.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=Fbu5BiHPpZ4yWOb8TH3JkBrMVkQ%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Accompagnement3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=u8Th5mP7w4dvL2oz2ie4Pub55l0%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Accompagnement3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=GbMujV%2FaA4omQEQ%2BCbyXqaOKxUA%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Connaissances3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=isczVOkZRZCWgzUYI94KfTN8nT8%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Connaissances3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=CN7JrcRWGUAxqfZN0yTmm5ylwA4%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Experiences3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=%2FnK3tWr1eqD2oW1q4Yz6zAaWb3M%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Experiences3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=%2BrwPyg1FkBZwAQQjWTiVJo8bm28%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Fabienne_BOUCHET.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=7JpnYU8bbqJ%2BetiQe0VEDjLLDmU%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Fabienne_BOUCHET.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=uMRWAzErvfujAkv%2BMlM%2BO6DPdd8%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/1604521246630.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=IR76pR4NPNpy1B2RjffB5GHWuiM%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/1604521246630.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=fKGfK%2Bz1k7nyuVwPl9V2sXkxevg%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/fond_faciliter_2.optim.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=p4Z9q3M6y7Pj%2FMN40CBrxVWqJdg%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/fond_faciliter_2.optim.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=qNzcJh%2BA1kkq5TUmtc0MtKhmzOQ%3D&Expires=1703431606" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Ressources3.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=sabbkOC%2BaVyIexC6hdtuiLKTpE0%3D&Expires=1702833087" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Ressources3.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=F85OGgYR1C%2F7OWVj5P9PodgQX3w%3D&Expires=1703431606" } ], "cookies": [ @@ -406305,7 +408742,7 @@ "value": "1", "domain": "inclusion.beta.gouv.fr", "path": "/", - "expires": 1702831288, + "expires": 1703429807, "size": 17, "httpOnly": false, "secure": false, @@ -406317,10 +408754,10 @@ }, { "name": "_pk_id.212.85a9", - "value": "304ee41da1272fbb.1702829489.", + "value": "056ecb5d33935f4a.1703428008.", "domain": "inclusion.beta.gouv.fr", "path": "/", - "expires": 1736784689, + "expires": 1737383208, "size": 43, "httpOnly": false, "secure": false, @@ -406335,17 +408772,17 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 16:11:27 GMT", + "date": "Sun, 24 Dec 2023 14:26:46 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "ca4b55a9-4694-4c9c-a81e-5ed182c125ca" + "x-request-id": "d8ce679f-2440-47d4-a9b5-ce62c2fc4f80" }, "endpoints": [ { "hostname": "inclusion.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -406570,6 +409007,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "zendesk", "name": "Zendesk", @@ -406615,31 +409070,13 @@ } ], "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:10:26", + "@generated": "Sun, 24 Dec 2023 14:23:02", "site": [ { "@name": "https://inclusion.beta.gouv.fr", @@ -406747,7 +409184,7 @@ { "requestedUrl": "https://inclusion.beta.gouv.fr/", "finalUrl": "https://inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T16:10:40.095Z", + "fetchTime": "2023-12-24T14:23:16.326Z", "runWarnings": [], "categories": { "performance": { @@ -406758,7 +409195,7 @@ "snapshot" ], "id": "performance", - "score": 0.56153564453125 + "score": 0.5615032196044922 }, "accessibility": { "title": "Accessibility", @@ -406810,53 +409247,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1503, + "numericValue": 1504, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1503, - "firstMeaningfulPaint": 1503, - "largestContentfulPaint": 7053, - "interactive": 1503, - "speedIndex": 1593, + "firstContentfulPaint": 1504, + "firstMeaningfulPaint": 1504, + "largestContentfulPaint": 6904, + "interactive": 1504, + "speedIndex": 1563, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0035367838541666666, "cumulativeLayoutShiftMainFrame": 0.0035367838541666666, "totalCumulativeLayoutShift": 0.0035367838541666666, "observedTimeOrigin": 0, - "observedTimeOriginTs": 354911746, + "observedTimeOriginTs": 353985806, "observedNavigationStart": 0, - "observedNavigationStartTs": 354911746, - "observedFirstPaint": 347, - "observedFirstPaintTs": 355259059, - "observedFirstContentfulPaint": 347, - "observedFirstContentfulPaintTs": 355259059, - "observedFirstContentfulPaintAllFrames": 347, - "observedFirstContentfulPaintAllFramesTs": 355259059, - "observedFirstMeaningfulPaint": 347, - "observedFirstMeaningfulPaintTs": 355259059, - "observedLargestContentfulPaint": 879, - "observedLargestContentfulPaintTs": 355790292, - "observedLargestContentfulPaintAllFrames": 879, - "observedLargestContentfulPaintAllFramesTs": 355790292, - "observedTraceEnd": 3301, - "observedTraceEndTs": 358212332, - "observedLoad": 992, - "observedLoadTs": 355903784, + "observedNavigationStartTs": 353985806, + "observedFirstPaint": 334, + "observedFirstPaintTs": 354319469, + "observedFirstContentfulPaint": 334, + "observedFirstContentfulPaintTs": 354319469, + "observedFirstContentfulPaintAllFrames": 334, + "observedFirstContentfulPaintAllFramesTs": 354319469, + "observedFirstMeaningfulPaint": 334, + "observedFirstMeaningfulPaintTs": 354319469, + "observedLargestContentfulPaint": 846, + "observedLargestContentfulPaintTs": 354831375, + "observedLargestContentfulPaintAllFrames": 846, + "observedLargestContentfulPaintAllFramesTs": 354831375, + "observedTraceEnd": 3411, + "observedTraceEndTs": 357397213, + "observedLoad": 1104, + "observedLoadTs": 355089424, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 354912322, + "observedDomContentLoadedTs": 353986566, "observedCumulativeLayoutShift": 0.0035367838541666666, "observedCumulativeLayoutShiftMainFrame": 0.0035367838541666666, "observedTotalCumulativeLayoutShift": 0.0035367838541666666, - "observedFirstVisualChange": 340, - "observedFirstVisualChangeTs": 355251746, - "observedLastVisualChange": 890, - "observedLastVisualChangeTs": 355801746, - "observedSpeedIndex": 618, - "observedSpeedIndexTs": 355529945 + "observedFirstVisualChange": 333, + "observedFirstVisualChangeTs": 354318806, + "observedLastVisualChange": 850, + "observedLastVisualChangeTs": 354835806, + "observedSpeedIndex": 597, + "observedSpeedIndexTs": 354582649 }, { "lcpInvalidated": false @@ -406878,19 +409315,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 4, - "numTasks": 16, + "numTasks": 25, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.915, - "throughput": 18226107.49844118, - "maxRtt": 83.305, - "maxServerLatency": 5.9280000000000115, - "totalByteWeight": 1774528, - "totalTaskTime": 3.42, - "mainDocumentTransferSize": 8842 + "rtt": 82.86399999999999, + "throughput": 16051264.252161426, + "maxRtt": 83.09, + "maxServerLatency": 30.12900000000002, + "totalByteWeight": 1774698, + "totalTaskTime": 4.844999999999998, + "mainDocumentTransferSize": 8920 } ] } @@ -406930,11 +409367,14 @@ }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 3, + "missingWords": [ + "durée de conservation" + ], + "missingTrackers": [], + "declarationUrl": "https://inclusion.beta.gouv.fr/politique-de-confidentialite/" } ], "betagouv": { @@ -406998,7 +409438,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 21, - "lighthouse_performance": 0.56153564453125, + "lighthouse_performance": 0.5615032196044922, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -407013,7 +409453,7 @@ "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F" + "declaration-rgpd-pc": "D" } }, { @@ -407035,7 +409475,7 @@ "http": { "url": "https://dora.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:20:46 GMT", + "end_time": "Sun, 24 Dec 2023 14:32:09 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -407043,13 +409483,13 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 16:20:44 GMT", + "Date": "Sun, 24 Dec 2023 14:32:08 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "eda1dddd-5081-45e9-b93a-eb26ed079f4e", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-gh0jJMCHcZugaaG9esNbwA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"1lqhfzi\"", - "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.4db10875.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.2b025a51.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.e2cc96af.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.a3f48cd6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2d42ee57.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0daf1986.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.1346ef07.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.f0cf4b3b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8f25cd11.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.2e948ee5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f9a14760.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.bc268cb9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.4a34b584.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.76712de2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.bbe962d1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.c3922eb1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.10a34029.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.daef65e1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.66948453.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.fc209f34.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.95e20122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.6a5e95c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.35afb491.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.fef83d13.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.0b76356d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.475d60f4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.a3fb3b19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.18c11a7c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.088ccfbe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.fa96f98f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.478a6e2c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", + "X-Request-ID": "e7af4794-403b-4c46-9584-5b10f7f3ceb3", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-HwzKR6s0xIas6CS0UbFZmw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"2vq34e\"", + "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.6dad8b14.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.c6c507b3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.4f938122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.7f063a91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.66fe70f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0c3f3a58.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.89a88910.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.a51ce70c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8734b399.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.103983c6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.fb3715ad.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.d67cc691.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.cbf315ce.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.cd683c54.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.3ac6da80.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.751ee3d9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.53b27523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.abab1a25.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b6c7f5bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.9227e643.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.38ebe33b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.d3c6d4e6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.4d1b6635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.7b2b3194.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.2d98d296.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.842897cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.c4b0cb65.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.376dca72.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.f1180a1c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.cf2c17bd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.60ec9d95.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", @@ -407057,9 +409497,9 @@ "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, - "scan_id": 45558485, + "scan_id": 45767874, "score": 100, - "start_time": "Sun, 17 Dec 2023 16:20:36 GMT", + "start_time": "Sun, 24 Dec 2023 14:32:02 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -407075,23 +409515,23 @@ "'self'" ], "child-src": [ + "https://metabase.dora.inclusion.beta.gouv.fr", "https://aide.dora.inclusion.beta.gouv.fr/", - "https://plausible.io", "https://tally.so", - "https://metabase.dora.inclusion.beta.gouv.fr" + "https://plausible.io" ], "connect-src": [ - "https://sentry.gip-inclusion.cloud-ed.fr", + "https://plausible.io/api/event", + "https://*.sentry.gip-inclusion.org", "'self'", + "https://sentry.gip-inclusion.cloud-ed.fr", "https://api.dora.incubateur.net", - "https://*.sentry.gip-inclusion.org", - "https://openmaptiles.github.io/osm-bright-gl-style/", - "https://api-adresse.data.gouv.fr/", "https://*.sentry.gip-inclusion.cloud-ed.fr", - "https://sentry.gip-inclusion.org", - "https://openmaptiles.geo.data.gouv.fr/", "https://matomo.inclusion.beta.gouv.fr", - "https://plausible.io/api/event" + "https://openmaptiles.github.io/osm-bright-gl-style/", + "https://sentry.gip-inclusion.org", + "https://api-adresse.data.gouv.fr/", + "https://openmaptiles.geo.data.gouv.fr/" ], "default-src": [ "'none'" @@ -407105,11 +409545,11 @@ ], "script-src": [ "'strict-dynamic'", - "'nonce-gh0jjmchczugaag9esnbwa=='" + "'nonce-hwzkr6s0xias6cs0ubfzmw=='" ], "style-src": [ - "'self'", "https://tally.so/widgets/embed.js", + "'self'", "'unsafe-inline'" ], "worker-src": [ @@ -407316,77 +409756,77 @@ "testssl": [ { "id": "service", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407394,7 +409834,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407402,7 +409842,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407410,7 +409850,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407418,7 +409858,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -407426,7 +409866,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -407434,525 +409874,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-31 08:59" }, { "id": "cert_notAfter", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-29 08:59" }, { "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", - "severity": "WARN", - "finding": "Unexpected 500 Internal Server Error @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702830168" + "finding": "1703428418" }, { "id": "HSTS_time", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-ezHGST5XmBSsOWpGlZLiVw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-V246DP/AGUc3jMT/Wdc5Gw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -407960,7 +410400,7 @@ }, { "id": "heartbleed", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -407969,7 +410409,7 @@ }, { "id": "CCS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -407978,7 +410418,7 @@ }, { "id": "ticketbleed", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -407987,7 +410427,7 @@ }, { "id": "ROBOT", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -407996,7 +410436,7 @@ }, { "id": "secure_renego", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -408004,7 +410444,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -408013,7 +410453,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -408022,7 +410462,7 @@ }, { "id": "BREACH", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -408031,7 +410471,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -408040,14 +410480,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -408056,7 +410496,7 @@ }, { "id": "FREAK", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -408065,7 +410505,7 @@ }, { "id": "DROWN", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -408074,7 +410514,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -408083,7 +410523,7 @@ }, { "id": "LOGJAM", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -408092,7 +410532,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -408101,7 +410541,7 @@ }, { "id": "BEAST", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -408110,7 +410550,7 @@ }, { "id": "LUCKY13", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -408119,7 +410559,7 @@ }, { "id": "winshock", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -408128,7 +410568,7 @@ }, { "id": "RC4", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -408137,392 +410577,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408530,7 +410970,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408538,7 +410978,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408546,7 +410986,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408554,7 +410994,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -408562,7 +411002,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -408570,525 +411010,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-31 08:59" }, { "id": "cert_notAfter", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-29 08:59" }, { "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702830227" + "finding": "1703428473" }, { "id": "HSTS_time", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-Mbz39nEpIZX0hEeiTdZR+A=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-cP5BZEKOzOM8T5uScjsbaA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -409096,7 +411536,7 @@ }, { "id": "heartbleed", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -409105,7 +411545,7 @@ }, { "id": "CCS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -409114,7 +411554,7 @@ }, { "id": "ticketbleed", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -409123,7 +411563,7 @@ }, { "id": "ROBOT", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -409132,7 +411572,7 @@ }, { "id": "secure_renego", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -409140,7 +411580,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -409149,7 +411589,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -409158,7 +411598,7 @@ }, { "id": "BREACH", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -409167,7 +411607,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -409176,14 +411616,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -409192,7 +411632,7 @@ }, { "id": "FREAK", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -409201,7 +411641,7 @@ }, { "id": "DROWN", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -409210,7 +411650,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -409219,7 +411659,7 @@ }, { "id": "LOGJAM", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -409228,7 +411668,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -409237,7 +411677,7 @@ }, { "id": "BEAST", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -409246,7 +411686,7 @@ }, { "id": "LUCKY13", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -409255,7 +411695,7 @@ }, { "id": "winshock", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -409264,7 +411704,7 @@ }, { "id": "RC4", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -409273,392 +411713,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -409666,7 +412106,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -409674,7 +412114,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -409682,7 +412122,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -409690,7 +412130,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -409698,7 +412138,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -409706,525 +412146,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-31 08:59" }, { "id": "cert_notAfter", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-29 08:59" }, { "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702830286" + "finding": "1703428527" }, { "id": "HSTS_time", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-THBInwLE3+EcA0Fj318F3g=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-hP/uC4ndeH2TBccT44/LzA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -410232,7 +412672,7 @@ }, { "id": "heartbleed", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -410241,7 +412681,7 @@ }, { "id": "CCS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -410250,7 +412690,7 @@ }, { "id": "ticketbleed", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -410259,7 +412699,7 @@ }, { "id": "ROBOT", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -410268,7 +412708,7 @@ }, { "id": "secure_renego", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -410276,7 +412716,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -410285,7 +412725,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -410294,7 +412734,7 @@ }, { "id": "BREACH", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -410303,7 +412743,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -410312,14 +412752,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -410328,7 +412768,7 @@ }, { "id": "FREAK", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -410337,7 +412777,7 @@ }, { "id": "DROWN", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -410346,7 +412786,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -410355,7 +412795,7 @@ }, { "id": "LOGJAM", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -410364,7 +412804,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -410373,7 +412813,7 @@ }, { "id": "BEAST", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -410382,7 +412822,7 @@ }, { "id": "LUCKY13", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -410391,7 +412831,7 @@ }, { "id": "winshock", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -410400,7 +412840,7 @@ }, { "id": "RC4", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -410409,315 +412849,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.incubateur.net/148.253.96.193", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -411069,7 +413509,7 @@ "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -411272,7 +413712,7 @@ "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702830346" + "finding": "1703428582" }, { "id": "HSTS_time", @@ -411342,7 +413782,7 @@ "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-VVzaE6HHkdCEv/UQfcW08w=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-hZRpNLZ1WQTVmMWIKFxzJA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", @@ -411863,7 +414303,7 @@ "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "271" + "finding": "221" } ], "thirdparties": { @@ -411872,6 +414312,18 @@ "type": "unknown", "url": "https://plausible.io/js/plausible.js" }, + { + "type": "unknown", + "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.64.0" + }, + { + "type": "unknown", + "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.64.0" + }, + { + "type": "unknown", + "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.64.0" + }, { "type": "unknown", "url": "https://sentry.gip-inclusion.org/api/5/envelope/?sentry_key=416dc0d1a8ba4c8196ada74a1decabec&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.64.0" @@ -411883,7 +414335,7 @@ "value": "1", "domain": "dora.incubateur.net", "path": "/", - "expires": 1702831874, + "expires": 1703430160, "size": 17, "httpOnly": false, "secure": false, @@ -411895,10 +414347,10 @@ }, { "name": "_pk_id.210.783f", - "value": "88e1f47af195ff3c.1702830075.", + "value": "1c0b82af1c472e02.1703428361.", "domain": "dora.incubateur.net", "path": "/", - "expires": 1736785275, + "expires": 1737383561, "size": 43, "httpOnly": false, "secure": false, @@ -411911,16 +414363,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-lB5XadbuRy6cS1BP5vVCxg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-NEWj5LeE2hSJO0vI2/OHHg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 16:21:14 GMT", - "etag": "W/\"hskz6w\"", - "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.4db10875.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.2b025a51.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.e2cc96af.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.a3f48cd6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.2d42ee57.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0daf1986.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.1346ef07.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.f0cf4b3b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8f25cd11.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.2e948ee5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f9a14760.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.bc268cb9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.4a34b584.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.76712de2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.bbe962d1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.c3922eb1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.10a34029.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.daef65e1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.66948453.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.fc209f34.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.95e20122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.6a5e95c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.35afb491.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.fef83d13.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.0b76356d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.475d60f4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.a3fb3b19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.18c11a7c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.088ccfbe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.fa96f98f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.478a6e2c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 24 Dec 2023 14:32:39 GMT", + "etag": "W/\"1wzdk3v\"", + "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.6dad8b14.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.c6c507b3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.4f938122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.7f063a91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.66fe70f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0c3f3a58.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.89a88910.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.a51ce70c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8734b399.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.103983c6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.fb3715ad.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.d67cc691.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.cbf315ce.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.cd683c54.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.3ac6da80.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.751ee3d9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.53b27523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.abab1a25.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b6c7f5bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.9227e643.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.38ebe33b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.d3c6d4e6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.4d1b6635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.7b2b3194.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.2d98d296.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.842897cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.c4b0cb65.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.376dca72.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.f1180a1c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.cf2c17bd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.60ec9d95.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "7c279801-056c-474c-9b66-82166b5fc47a", + "x-request-id": "84bfc86f-3fd7-4efa-b8c4-cbd7e24d9b0f", "x-robots-tag": "noindex", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" @@ -411984,19 +414436,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.236.98", + "ip": "38.104.169.186", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 4460243, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Charlotte", + "en": "Charlotte", + "es": "Charlotte", + "fr": "Charlotte", + "ja": "シャーロット", + "pt-BR": "Charlotte", + "ru": "Шарлотт", + "zh-CN": "夏洛特" } }, "continent": { @@ -412029,40 +414481,40 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8874, - "longitude": -87.6318, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 35.2316, + "longitude": -80.8428, + "metro_code": 517, + "time_zone": "America/New_York" }, "postal": { - "code": "60602" + "code": "28202" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 4482348, + "iso_code": "NC", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "en": "North Carolina", + "es": "Carolina del Norte", + "fr": "Caroline du Nord", + "ja": "ノースカロライナ州", + "pt-BR": "Carolina do Norte", + "ru": "Северная Каролина", + "zh-CN": "北卡罗来纳州" } } ] @@ -412368,7 +414820,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:20:01", + "@generated": "Sun, 24 Dec 2023 14:31:36", "site": [ { "@name": "https://dora.incubateur.net", @@ -412397,6 +414849,13 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, + { + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, { "name": "Sub Resource Integrity Attribute Missing", "riskcode": "2", @@ -412515,20 +414974,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -412543,11 +415005,7 @@ "type": "dns", "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2023-12-17T16:27:17.385116977Z", + "timestamp": "2023-12-24T14:37:46.403578922Z", "matcher-status": true }, { @@ -412584,29 +415042,30 @@ "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T16:27:17.44037605Z", + "timestamp": "2023-12-24T14:37:46.604515282Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -412616,34 +415075,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "dora.incubateur.net.", - "matched-at": "dora.incubateur.net", - "timestamp": "2023-12-17T16:27:17.449698385Z", + "matched-at": "_dmarc.dora.incubateur.net", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T14:37:46.611363056Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -412652,17 +415111,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "dora.incubateur.net.", - "matched-at": "_dmarc.dora.incubateur.net", + "matched-at": "dora.incubateur.net", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T16:27:17.464526983Z", + "timestamp": "2023-12-24T14:37:47.463112131Z", "matcher-status": true }, { @@ -412698,10 +415157,10 @@ "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"google-site-verification=pzLwiBmOclJJjykziVUJGBTmjDxe9cX4AXPyXnevrig\"" + "\"google-site-verification=pzLwiBmOclJJjykziVUJGBTmjDxe9cX4AXPyXnevrig\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T16:27:18.140791334Z", + "timestamp": "2023-12-24T14:37:47.551068629Z", "matcher-status": true }, { @@ -412729,8 +415188,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:27:25.556409525Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:37:53.35435551Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412770,8 +415229,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:27:31.517425638Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:37:58.632960338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412797,8 +415256,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:00.477414624Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:23.653356809Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412834,8 +415293,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.439004229Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697299804Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412871,8 +415330,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.439052299Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697352071Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412908,8 +415367,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.43906883Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697471124Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412945,8 +415404,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.439082565Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697494778Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -412982,8 +415441,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.439120166Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697508805Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413019,8 +415478,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:09.439148428Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:30.697520557Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413047,8 +415506,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net/robots.txt", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:20.698743536Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:40.119997565Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net/robots.txt'", "matcher-status": true }, @@ -413084,8 +415543,8 @@ "extracted-results": [ "https://plausible.io/js/plausible.js" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:28:28.095365858Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:38:47.003407908Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dora.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net/'", "matcher-status": true }, @@ -413100,7 +415559,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -413114,8 +415574,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:34:33.215114201Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:44:34.739461833Z", "matcher-status": true }, { @@ -413129,7 +415589,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -413143,8 +415604,8 @@ "extracted-results": [ "dora.incubateur.net" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:34:33.215249904Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:44:34.739575516Z", "matcher-status": true }, { @@ -413159,7 +415620,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -413173,8 +415635,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:34:34.835942869Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:44:36.076852893Z", "matcher-status": true }, { @@ -413189,7 +415651,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -413203,8 +415666,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:34:35.050791087Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:44:36.265375093Z", "matcher-status": true } ], @@ -413212,7 +415675,7 @@ { "requestedUrl": "https://dora.incubateur.net/", "finalUrl": "https://dora.incubateur.net/", - "fetchTime": "2023-12-17T16:20:16.306Z", + "fetchTime": "2023-12-24T14:31:50.256Z", "runWarnings": [], "categories": { "performance": { @@ -413244,7 +415707,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -413275,53 +415738,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3960, + "numericValue": 3575, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2378, - "firstMeaningfulPaint": 2378, - "largestContentfulPaint": 2378, - "interactive": 3960, - "speedIndex": 11603, - "totalBlockingTime": 176, - "maxPotentialFID": 141, - "cumulativeLayoutShift": 0.017020824856228304, - "cumulativeLayoutShiftMainFrame": 0.017020824856228304, - "totalCumulativeLayoutShift": 0.017020824856228304, + "firstContentfulPaint": 2183, + "firstMeaningfulPaint": 2183, + "largestContentfulPaint": 2183, + "interactive": 3575, + "speedIndex": 2947, + "totalBlockingTime": 127, + "maxPotentialFID": 126, + "cumulativeLayoutShift": 0.016375986099243164, + "cumulativeLayoutShiftMainFrame": 0.016375986099243164, + "totalCumulativeLayoutShift": 0.016375986099243164, "observedTimeOrigin": 0, - "observedTimeOriginTs": 251487003, + "observedTimeOriginTs": 292358606, "observedNavigationStart": 0, - "observedNavigationStartTs": 251487003, - "observedFirstPaint": 7087, - "observedFirstPaintTs": 258573906, - "observedFirstContentfulPaint": 7087, - "observedFirstContentfulPaintTs": 258573906, - "observedFirstContentfulPaintAllFrames": 7087, - "observedFirstContentfulPaintAllFramesTs": 258573906, - "observedFirstMeaningfulPaint": 7087, - "observedFirstMeaningfulPaintTs": 258573906, - "observedLargestContentfulPaint": 7087, - "observedLargestContentfulPaintTs": 258573906, - "observedLargestContentfulPaintAllFrames": 7087, - "observedLargestContentfulPaintAllFramesTs": 258573906, - "observedTraceEnd": 13009, - "observedTraceEndTs": 264496257, - "observedLoad": 7830, - "observedLoadTs": 259316793, - "observedDomContentLoaded": 7052, - "observedDomContentLoadedTs": 258539302, - "observedCumulativeLayoutShift": 0.017020824856228304, - "observedCumulativeLayoutShiftMainFrame": 0.017020824856228304, - "observedTotalCumulativeLayoutShift": 0.017020824856228304, - "observedFirstVisualChange": 7052, - "observedFirstVisualChangeTs": 258539003, - "observedLastVisualChange": 9752, - "observedLastVisualChangeTs": 261239003, - "observedSpeedIndex": 7106, - "observedSpeedIndexTs": 258592989 + "observedNavigationStartTs": 292358606, + "observedFirstPaint": 904, + "observedFirstPaintTs": 293262682, + "observedFirstContentfulPaint": 904, + "observedFirstContentfulPaintTs": 293262682, + "observedFirstContentfulPaintAllFrames": 904, + "observedFirstContentfulPaintAllFramesTs": 293262682, + "observedFirstMeaningfulPaint": 904, + "observedFirstMeaningfulPaintTs": 293262682, + "observedLargestContentfulPaint": 904, + "observedLargestContentfulPaintTs": 293262682, + "observedLargestContentfulPaintAllFrames": 904, + "observedLargestContentfulPaintAllFramesTs": 293262682, + "observedTraceEnd": 5283, + "observedTraceEndTs": 297641994, + "observedLoad": 1555, + "observedLoadTs": 293913241, + "observedDomContentLoaded": 901, + "observedDomContentLoadedTs": 293259608, + "observedCumulativeLayoutShift": 0.016375986099243164, + "observedCumulativeLayoutShiftMainFrame": 0.016375986099243164, + "observedTotalCumulativeLayoutShift": 0.016375986099243164, + "observedFirstVisualChange": 912, + "observedFirstVisualChangeTs": 293270606, + "observedLastVisualChange": 2729, + "observedLastVisualChangeTs": 295087606, + "observedSpeedIndex": 959, + "observedSpeedIndexTs": 293317767 }, { "lcpInvalidated": false @@ -413343,19 +415806,19 @@ "numScripts": 63, "numStylesheets": 7, "numFonts": 2, - "numTasks": 1161, - "numTasksOver10ms": 9, - "numTasksOver25ms": 3, + "numTasks": 1209, + "numTasksOver10ms": 7, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.9429999999999978, - "throughput": 14426320.952815933, - "maxRtt": 100.693, - "maxServerLatency": 496.843, - "totalByteWeight": 455632, - "totalTaskTime": 362.9959999999982, - "mainDocumentTransferSize": 19009 + "rtt": 5.445, + "throughput": 8783189.126538614, + "maxRtt": 84.94100000000003, + "maxServerLatency": 154.20100000000002, + "totalByteWeight": 521896, + "totalTaskTime": 279.21099999999734, + "mainDocumentTransferSize": 19015 } ] } @@ -413452,13 +415915,13 @@ "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "B", - "trackersCount": 2, + "trackersGrade": "C", + "trackersCount": 5, "lighthouse_performance": 0.5, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.91, "lighthouse_seoGrade": "A", @@ -413487,7 +415950,7 @@ "http": { "url": "https://dora.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:32:05 GMT", + "end_time": "Sun, 24 Dec 2023 14:52:16 GMT", "grade": "A-", "hidden": false, "likelihood_indicator": "LOW", @@ -413495,12 +415958,12 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 16:32:03 GMT", + "Date": "Sun, 24 Dec 2023 14:52:15 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "62be6979-da99-4a1d-84bd-38884f673568", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-CFcR5paWaF1gFiIH5IpZwA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"1xjv83w\"", + "X-Request-ID": "c788e6f4-bb48-4880-a3d3-ac58b3113a07", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-/r+HhmmrUxDbMZGIpHOAqQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"1wq08i9\"", "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.88c131fb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.5344b2b9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.3342b7b4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.cb994c94.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4c8c3712.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.087244ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.faa4abac.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.00f962c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.3889828b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.d4c8f938.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f670d881.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.3b91b954.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.3df7e13d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.bbec2d47.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.f71cfdc7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.3f128581.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.4e9ae1e8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.62eea12c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.46aa5871.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.8d603b71.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.ad6cea00.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.45f9a33a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.e334c245.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.90adffbc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.ec397739.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.43717e50.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.efae3a52.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.4d0f820a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.7c098f4a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.a8964274.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.cc59272a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "x-content-type-options": "nosniff", @@ -413508,9 +415971,9 @@ "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, - "scan_id": 45558739, + "scan_id": 45768186, "score": 85, - "start_time": "Sun, 17 Dec 2023 16:29:42 GMT", + "start_time": "Sun, 24 Dec 2023 14:52:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -413527,22 +415990,22 @@ ], "child-src": [ "https://aide.dora.inclusion.beta.gouv.fr/", - "https://plausible.io", + "https://metabase.dora.inclusion.beta.gouv.fr", "https://tally.so", - "https://metabase.dora.inclusion.beta.gouv.fr" + "https://plausible.io" ], "connect-src": [ - "https://api.dora.inclusion.beta.gouv.fr", - "https://sentry.gip-inclusion.cloud-ed.fr", - "'self'", + "https://plausible.io/api/event", + "https://sentry.gip-inclusion.org", + "https://matomo.inclusion.beta.gouv.fr", + "https://api-adresse.data.gouv.fr/", + "https://openmaptiles.geo.data.gouv.fr/", "https://*.sentry.gip-inclusion.org", "https://openmaptiles.github.io/osm-bright-gl-style/", - "https://api-adresse.data.gouv.fr/", "https://*.sentry.gip-inclusion.cloud-ed.fr", - "https://sentry.gip-inclusion.org", - "https://openmaptiles.geo.data.gouv.fr/", - "https://matomo.inclusion.beta.gouv.fr", - "https://plausible.io/api/event" + "https://sentry.gip-inclusion.cloud-ed.fr", + "'self'", + "https://api.dora.inclusion.beta.gouv.fr" ], "default-src": [ "'none'" @@ -413551,21 +416014,21 @@ "'self'" ], "img-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "script-src": [ "'strict-dynamic'", - "'nonce-cfcr5pawaf1gfiih5ipzwa=='" + "'nonce-/r+hhmmruxdbmzgiphoaqq=='" ], "style-src": [ - "'self'", + "'unsafe-inline'", "https://tally.so/widgets/embed.js", - "'unsafe-inline'" + "'self'" ], "worker-src": [ - "'self'", - "blob:" + "blob:", + "'self'" ] }, "http": true, @@ -413768,77 +416231,77 @@ "testssl": [ { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -413846,7 +416309,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -413854,7 +416317,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -413862,7 +416325,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -413870,7 +416333,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -413878,7 +416341,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -413886,483 +416349,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:28" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-29 15:28" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702830821" + "finding": "1703429623" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -414370,7 +416833,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -414379,7 +416842,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -414388,7 +416851,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -414397,7 +416860,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -414406,7 +416869,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -414414,7 +416877,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -414423,7 +416886,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -414432,7 +416895,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -414441,7 +416904,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -414450,14 +416913,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -414466,7 +416929,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -414475,7 +416938,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -414484,7 +416947,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -414493,7 +416956,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -414502,7 +416965,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -414511,7 +416974,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -414520,7 +416983,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -414529,7 +416992,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -414538,7 +417001,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -414547,399 +417010,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414947,7 +417410,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414955,7 +417418,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414963,7 +417426,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414971,7 +417434,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -414979,7 +417442,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -414987,483 +417450,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:28" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-29 15:28" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702830873" + "finding": "1703429674" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -415471,7 +417934,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -415480,7 +417943,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -415489,7 +417952,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -415498,7 +417961,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -415507,7 +417970,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -415515,7 +417978,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -415524,7 +417987,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -415533,7 +417996,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -415542,7 +418005,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -415551,14 +418014,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -415567,7 +418030,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -415576,7 +418039,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -415585,7 +418048,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -415594,7 +418057,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -415603,7 +418066,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -415612,7 +418075,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -415621,7 +418084,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -415630,7 +418093,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -415639,7 +418102,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -415648,399 +418111,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416048,7 +418511,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416056,7 +418519,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416064,7 +418527,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416072,7 +418535,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416080,7 +418543,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416088,483 +418551,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:28" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-29 15:28" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702830925" + "finding": "1703429724" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -416572,7 +419035,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -416581,7 +419044,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -416590,7 +419053,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -416599,7 +419062,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -416608,7 +419071,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -416616,7 +419079,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -416625,7 +419088,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -416634,7 +419097,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -416643,7 +419106,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -416652,14 +419115,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -416668,7 +419131,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -416677,7 +419140,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -416686,7 +419149,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -416695,7 +419158,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -416704,7 +419167,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -416713,7 +419176,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -416722,7 +419185,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -416731,7 +419194,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -416740,7 +419203,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -416749,399 +419212,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417149,7 +419612,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417157,7 +419620,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417165,7 +419628,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417173,7 +419636,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417181,7 +419644,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417189,483 +419652,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:28" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-29 15:28" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702830976" + "finding": "1703429777" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -417673,7 +420136,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -417682,7 +420145,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -417691,7 +420154,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -417700,7 +420163,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -417709,7 +420172,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -417717,7 +420180,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -417726,7 +420189,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -417735,7 +420198,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -417744,7 +420207,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -417753,14 +420216,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -417769,7 +420232,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -417778,7 +420241,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -417787,7 +420250,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -417796,7 +420259,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417805,7 +420268,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417814,7 +420277,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -417823,7 +420286,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -417832,7 +420295,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -417841,7 +420304,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -417850,332 +420313,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "210" + "finding": "208" } ], "thirdparties": { @@ -418195,7 +420658,7 @@ "value": "1", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1702832562, + "expires": 1703431363, "size": 17, "httpOnly": false, "secure": false, @@ -418207,10 +420670,10 @@ }, { "name": "_pk_id.211.396b", - "value": "fcef4ca1cff4e6e2.1702830762.", + "value": "d1febe73d978c41c.1703429564.", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736785962, + "expires": 1737384764, "size": 43, "httpOnly": false, "secure": false, @@ -418223,23 +420686,23 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-hq+ScYNl66uQf9rxvb2zGw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-u1Za18Y6HJ20yvb/z3RNZQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 16:32:41 GMT", - "etag": "W/\"bo4xyy\"", + "date": "Sun, 24 Dec 2023 14:52:41 GMT", + "etag": "W/\"18srbw1\"", "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.88c131fb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.5344b2b9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.3342b7b4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.cb994c94.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4c8c3712.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.087244ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.faa4abac.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.00f962c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.3889828b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.d4c8f938.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f670d881.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.3b91b954.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.3df7e13d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.bbec2d47.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.f71cfdc7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.3f128581.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.4e9ae1e8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.62eea12c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.46aa5871.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.8d603b71.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.ad6cea00.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.45f9a33a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.e334c245.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.90adffbc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.ec397739.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.43717e50.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.efae3a52.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.4d0f820a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.7c098f4a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.a8964274.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.cc59272a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "3d33b869-3cbe-4941-a608-724a28b32946", + "x-request-id": "bb66e0cc-6cfb-4937-8348-7eff5d262540", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "dora.fabrique.social.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -418295,13 +420758,19 @@ }, { "hostname": "plausible.io", - "ip": "37.19.207.34", + "ip": "38.104.169.186", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 4460243, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Charlotte", + "en": "Charlotte", + "es": "Charlotte", + "fr": "Charlotte", + "ja": "シャーロット", + "pt-BR": "Charlotte", + "ru": "Шарлотт", + "zh-CN": "夏洛特" } }, "continent": { @@ -418334,39 +420803,40 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, + "latitude": 35.2316, + "longitude": -80.8428, + "metro_code": 517, "time_zone": "America/New_York" }, "postal": { - "code": "20149" + "code": "28202" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4482348, + "iso_code": "NC", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "North Carolina", + "es": "Carolina del Norte", + "fr": "Caroline du Nord", + "ja": "ノースカロライナ州", + "pt-BR": "Carolina do Norte", + "ru": "Северная Каролина", + "zh-CN": "北卡罗来纳州" } } ] @@ -418476,7 +420946,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:29:16", + "@generated": "Sun, 24 Dec 2023 14:51:39", "site": [ { "@name": "https://dora.fabrique.social.gouv.fr", @@ -418588,22 +421058,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -418619,24 +421089,32 @@ "type": "dns", "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", - "timestamp": "2023-12-17T16:37:36.958285356Z", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com include:spf.tipimail.com ?all\"", + "\"google-site-verification=6a9NClTDGepWluUlXLJQyH00SwE5GyMsjmHBs5Mc9iU\"" + ], + "timestamp": "2023-12-24T14:57:37.400518878Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -418645,37 +421123,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "dora.fabrique.social.gouv.fr.", - "matched-at": "dora.fabrique.social.gouv.fr", + "matched-at": "_dmarc.dora.fabrique.social.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=DMARC1; p=none; pct=100; rua=mailto:re+x2tqgwij8so@dmarc.postmarkapp.com; sp=none; aspf=r;\"" ], - "timestamp": "2023-12-17T16:37:37.039054487Z", + "timestamp": "2023-12-24T14:57:37.402921179Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -418685,38 +421162,30 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "dora.fabrique.social.gouv.fr.", - "matched-at": "_dmarc.dora.fabrique.social.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; pct=100; rua=mailto:re+x2tqgwij8so@dmarc.postmarkapp.com; sp=none; aspf=r;\"" - ], - "timestamp": "2023-12-17T16:37:37.15744095Z", + "matched-at": "dora.fabrique.social.gouv.fr", + "timestamp": "2023-12-24T14:57:37.475266247Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -418732,29 +421201,30 @@ "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T16:37:38.152346555Z", + "timestamp": "2023-12-24T14:57:37.597201284Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -418771,10 +421241,10 @@ "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", "extracted-results": [ - "\"google-site-verification=6a9NClTDGepWluUlXLJQyH00SwE5GyMsjmHBs5Mc9iU\"", - "\"v=spf1 include:_spf.alwaysdata.com include:spf.tipimail.com ?all\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T16:37:38.159169593Z", + "timestamp": "2023-12-24T14:57:38.536717728Z", "matcher-status": true }, { @@ -418809,8 +421279,8 @@ "extracted-results": [ "https://plausible.io/js/plausible.js" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:38:33.501858071Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T14:58:34.602838847Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dora.fabrique.social.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.fabrique.social.gouv.fr/'", "matcher-status": true }, @@ -418825,7 +421295,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -418839,8 +421310,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:44:18.684451747Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T15:04:21.124600214Z", "matcher-status": true }, { @@ -418854,7 +421325,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -418868,8 +421340,8 @@ "extracted-results": [ "dora.fabrique.social.gouv.fr" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:44:18.684599032Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T15:04:21.12471105Z", "matcher-status": true }, { @@ -418884,7 +421356,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -418898,8 +421371,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:44:20.254963791Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T15:04:21.665995393Z", "matcher-status": true }, { @@ -418914,7 +421387,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -418928,8 +421402,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T16:44:20.429336059Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T15:04:21.858080994Z", "matcher-status": true } ], @@ -418937,7 +421411,7 @@ { "requestedUrl": "https://dora.fabrique.social.gouv.fr/", "finalUrl": "https://dora.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T16:29:30.190Z", + "fetchTime": "2023-12-24T14:51:53.454Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://dora.fabrique.social.gouv.fr/) was redirected to https://dora.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -419002,53 +421476,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4447, + "numericValue": 4096, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3207, - "firstMeaningfulPaint": 3207, - "largestContentfulPaint": 3207, - "interactive": 4447, - "speedIndex": 5338, - "totalBlockingTime": 129, - "maxPotentialFID": 100, + "firstContentfulPaint": 4062, + "firstMeaningfulPaint": 4062, + "largestContentfulPaint": 4075, + "interactive": 4096, + "speedIndex": 4062, + "totalBlockingTime": 9, + "maxPotentialFID": 68, "cumulativeLayoutShift": 0.017394731309678824, "cumulativeLayoutShiftMainFrame": 0.017394731309678824, "totalCumulativeLayoutShift": 0.017394731309678824, "observedTimeOrigin": 0, - "observedTimeOriginTs": 254736137, + "observedTimeOriginTs": 364990439, "observedNavigationStart": 0, - "observedNavigationStartTs": 254736137, - "observedFirstPaint": 2191, - "observedFirstPaintTs": 256926723, - "observedFirstContentfulPaint": 2191, - "observedFirstContentfulPaintTs": 256926723, - "observedFirstContentfulPaintAllFrames": 2191, - "observedFirstContentfulPaintAllFramesTs": 256926723, - "observedFirstMeaningfulPaint": 2191, - "observedFirstMeaningfulPaintTs": 256926723, - "observedLargestContentfulPaint": 2191, - "observedLargestContentfulPaintTs": 256926724, - "observedLargestContentfulPaintAllFrames": 2191, - "observedLargestContentfulPaintAllFramesTs": 256926724, - "observedTraceEnd": 5228, - "observedTraceEndTs": 259963766, - "observedLoad": 2476, - "observedLoadTs": 257212238, - "observedDomContentLoaded": 2191, - "observedDomContentLoadedTs": 256926974, + "observedNavigationStartTs": 364990439, + "observedFirstPaint": 1078, + "observedFirstPaintTs": 366068812, + "observedFirstContentfulPaint": 1078, + "observedFirstContentfulPaintTs": 366068812, + "observedFirstContentfulPaintAllFrames": 1078, + "observedFirstContentfulPaintAllFramesTs": 366068812, + "observedFirstMeaningfulPaint": 1078, + "observedFirstMeaningfulPaintTs": 366068812, + "observedLargestContentfulPaint": 1078, + "observedLargestContentfulPaintTs": 366068812, + "observedLargestContentfulPaintAllFrames": 1078, + "observedLargestContentfulPaintAllFramesTs": 366068812, + "observedTraceEnd": 4197, + "observedTraceEndTs": 369187105, + "observedLoad": 1820, + "observedLoadTs": 366810047, + "observedDomContentLoaded": 1066, + "observedDomContentLoadedTs": 366056131, "observedCumulativeLayoutShift": 0.017394731309678824, "observedCumulativeLayoutShiftMainFrame": 0.017394731309678824, "observedTotalCumulativeLayoutShift": 0.017394731309678824, - "observedFirstVisualChange": 2186, - "observedFirstVisualChangeTs": 256922137, - "observedLastVisualChange": 2786, - "observedLastVisualChangeTs": 257522137, - "observedSpeedIndex": 2213, - "observedSpeedIndexTs": 256948722 + "observedFirstVisualChange": 1078, + "observedFirstVisualChangeTs": 366068439, + "observedLastVisualChange": 1728, + "observedLastVisualChangeTs": 366718439, + "observedSpeedIndex": 1097, + "observedSpeedIndexTs": 366087356 }, { "lcpInvalidated": false @@ -419070,19 +421544,19 @@ "numScripts": 63, "numStylesheets": 7, "numFonts": 2, - "numTasks": 1251, - "numTasksOver10ms": 8, + "numTasks": 1244, + "numTasksOver10ms": 7, "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.26, - "throughput": 10932573.701335963, - "maxRtt": 83.262, - "maxServerLatency": 143.82100000000003, - "totalByteWeight": 508629, - "totalTaskTime": 322.6559999999986, - "mainDocumentTransferSize": 20956 + "rtt": 13.918000000000006, + "throughput": 6054975.853010462, + "maxRtt": 85.07900000000001, + "maxServerLatency": 89.989, + "totalByteWeight": 490810, + "totalTaskTime": 276.83599999999865, + "mainDocumentTransferSize": 24417 } ] } @@ -419225,7 +421699,7 @@ "http": { "url": "https://api.dora.incubateur.net/ping/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:36:28 GMT", + "end_time": "Sun, 24 Dec 2023 14:55:48 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -419235,17 +421709,17 @@ "Content-Security-Policy": "default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 16:36:27 GMT", + "Date": "Sun, 24 Dec 2023 14:55:47 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "3fb71108-d183-49a5-aa6c-3989adc8ff6a" + "X-Request-ID": "9bf02d95-ad9c-4f38-949b-cb72a801eef1" }, - "scan_id": 45558923, + "scan_id": 45768243, "score": 110, - "start_time": "Sun, 17 Dec 2023 16:36:25 GMT", + "start_time": "Sun, 24 Dec 2023 14:55:45 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 0, @@ -419455,77 +421929,77 @@ "testssl": [ { "id": "service", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -419533,7 +422007,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -419541,7 +422015,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -419549,7 +422023,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -419557,7 +422031,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -419565,7 +422039,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -419573,518 +422047,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-02 10:36" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-31 10:36" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702831073" + "finding": "1703429866" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -420092,7 +422566,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -420101,7 +422575,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -420110,7 +422584,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -420119,7 +422593,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -420128,7 +422602,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -420136,7 +422610,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -420145,7 +422619,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -420154,7 +422628,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -420163,7 +422637,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -420172,14 +422646,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -420188,7 +422662,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -420197,7 +422671,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -420206,7 +422680,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -420215,7 +422689,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -420224,7 +422698,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -420233,7 +422707,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -420242,7 +422716,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -420251,7 +422725,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -420260,7 +422734,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -420269,392 +422743,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420662,7 +423136,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420670,7 +423144,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420678,7 +423152,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -420686,7 +423160,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -420694,7 +423168,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -420702,518 +423176,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-02 10:36" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-31 10:36" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702831126" + "finding": "1703429960" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -421221,7 +423695,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -421230,7 +423704,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -421239,7 +423713,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -421248,7 +423722,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -421257,7 +423731,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -421265,7 +423739,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -421274,7 +423748,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -421283,7 +423757,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -421292,7 +423766,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -421301,14 +423775,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -421317,7 +423791,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -421326,7 +423800,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421335,7 +423809,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421344,7 +423818,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421353,7 +423827,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421362,7 +423836,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -421371,7 +423845,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -421380,7 +423854,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -421389,7 +423863,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -421398,392 +423872,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421791,7 +424265,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421799,7 +424273,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421807,7 +424281,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421815,7 +424289,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421823,7 +424297,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421831,518 +424305,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-02 10:36" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-31 10:36" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702831179" + "finding": "1703430052" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -422350,7 +424824,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -422359,7 +424833,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -422368,7 +424842,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -422377,7 +424851,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -422386,7 +424860,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -422394,7 +424868,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -422403,7 +424877,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -422412,7 +424886,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -422421,7 +424895,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -422430,14 +424904,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -422446,7 +424920,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -422455,7 +424929,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -422464,7 +424938,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -422473,7 +424947,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -422482,7 +424956,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -422491,7 +424965,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -422500,7 +424974,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -422509,7 +424983,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -422518,7 +424992,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -422527,392 +425001,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/185.21.194.105", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422920,7 +425394,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422928,7 +425402,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422936,7 +425410,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -422944,7 +425418,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -422952,7 +425426,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -422960,518 +425434,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-02 10:36" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-31 10:36" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702831230" + "finding": "1703430145" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -423479,7 +425953,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -423488,7 +425962,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -423497,7 +425971,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -423506,7 +425980,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -423515,7 +425989,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -423523,7 +425997,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -423532,7 +426006,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -423541,7 +426015,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -423550,7 +426024,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -423559,14 +426033,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -423575,7 +426049,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -423584,7 +426058,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -423593,7 +426067,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -423602,7 +426076,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -423611,7 +426085,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -423620,7 +426094,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -423629,7 +426103,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -423638,7 +426112,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -423647,7 +426121,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -423656,348 +426130,348 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api.dora.incubateur.net/148.253.96.193", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "213" + "finding": "376" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "allow": "GET, OPTIONS", + "allow": "OPTIONS, GET", "content-length": "4", "content-security-policy": "default-src 'self'", "content-type": "application/json", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 16:37:02 GMT", + "date": "Sun, 24 Dec 2023 14:56:20 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "5ffa33b6-5f6a-44af-9e2f-8a0ed3e60b0f" + "x-request-id": "511035d5-59fc-4f1e-acc9-eb7232c6c35d" }, "endpoints": [ { "hostname": "api.dora.incubateur.net", - "ip": "148.253.96.193", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -424082,7 +426556,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:36:19", + "@generated": "Sun, 24 Dec 2023 14:55:39", "site": [ { "@name": "https://api.dora.incubateur.net", @@ -424183,7 +426657,7 @@ "type": "dns", "host": "api.dora.incubateur.net.", "matched-at": "api.dora.incubateur.net", - "timestamp": "2023-12-17T16:41:51.901805966Z", + "timestamp": "2023-12-24T15:04:09.798964777Z", "matcher-status": true }, { @@ -424218,7 +426692,7 @@ "extracted-results": [ "dora-back-staging.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T16:41:52.035545694Z", + "timestamp": "2023-12-24T15:04:09.801017942Z", "matcher-status": true }, { @@ -424244,10 +426718,10 @@ "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", "extracted-results": [ - "GET, OPTIONS" + "OPTIONS, GET" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:41:58.544293808Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:04:19.709122191Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424283,8 +426757,8 @@ "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:42:33.611292977Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:05:13.812875482Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424320,8 +426794,8 @@ "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:42:33.611340436Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:05:13.81292295Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424357,8 +426831,8 @@ "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:42:33.611365813Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:05:13.812940773Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424394,8 +426868,8 @@ "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:42:33.61138584Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:05:13.81296072Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424431,8 +426905,8 @@ "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:42:33.611441906Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:05:13.812979906Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424447,7 +426921,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -424461,8 +426936,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:48:34.296153543Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:11:37.857928474Z", "matcher-status": true }, { @@ -424476,7 +426951,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -424490,8 +426966,8 @@ "extracted-results": [ "api.dora.incubateur.net" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:48:34.296284617Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:11:37.858031246Z", "matcher-status": true }, { @@ -424506,7 +426982,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -424520,8 +426997,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:48:35.5480546Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:11:40.01115143Z", "matcher-status": true }, { @@ -424536,7 +427013,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -424550,8 +427028,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:48:35.736470721Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T15:11:40.419811763Z", "matcher-status": true } ], @@ -424668,7 +427146,7 @@ "http": { "url": "https://api.dora.fabrique.social.gouv.fr/ping/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:46:16 GMT", + "end_time": "Sun, 24 Dec 2023 14:56:53 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -424678,17 +427156,17 @@ "Content-Security-Policy": "default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 16:46:15 GMT", + "Date": "Sun, 24 Dec 2023 14:56:52 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "1cb10963-d34e-4375-acc0-4753e9486c3b" + "X-Request-ID": "94ae91b2-2189-402c-9ea6-db5ec3e21ef2" }, - "scan_id": 45559126, + "scan_id": 45768255, "score": 100, - "start_time": "Sun, 17 Dec 2023 16:46:11 GMT", + "start_time": "Sun, 24 Dec 2023 14:56:49 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 1, @@ -424899,77 +427377,77 @@ "testssl": [ { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -424977,7 +427455,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -424985,7 +427463,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -424993,7 +427471,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425001,7 +427479,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425009,7 +427487,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425017,483 +427495,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:18" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-29 15:18" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702831657" + "finding": "1703429929" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -425501,7 +427979,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -425510,7 +427988,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -425519,7 +427997,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -425528,7 +428006,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -425537,7 +428015,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -425545,7 +428023,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -425554,7 +428032,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -425563,7 +428041,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -425572,7 +428050,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -425581,14 +428059,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -425597,7 +428075,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -425606,7 +428084,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -425615,7 +428093,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -425624,7 +428102,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -425633,7 +428111,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -425642,7 +428120,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -425651,7 +428129,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -425660,7 +428138,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -425669,7 +428147,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -425678,399 +428156,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426078,7 +428556,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426086,7 +428564,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426094,7 +428572,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426102,7 +428580,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426110,7 +428588,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426118,483 +428596,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:18" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-29 15:18" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702831708" + "finding": "1703430023" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -426602,7 +429080,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -426611,7 +429089,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -426620,7 +429098,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -426629,7 +429107,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -426638,7 +429116,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -426646,7 +429124,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -426655,7 +429133,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -426664,7 +429142,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -426673,7 +429151,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -426682,14 +429160,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -426698,7 +429176,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -426707,7 +429185,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426716,7 +429194,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426725,7 +429203,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426734,7 +429212,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426743,7 +429221,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -426752,7 +429230,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -426761,7 +429239,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -426770,7 +429248,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -426779,399 +429257,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427179,7 +429657,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427187,7 +429665,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427195,7 +429673,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427203,7 +429681,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427211,7 +429689,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427219,483 +429697,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-31 15:18" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-29 15:18" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702831759" + "finding": "1703430117" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -427703,7 +430181,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -427712,7 +430190,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -427721,7 +430199,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -427730,7 +430208,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -427739,7 +430217,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -427747,7 +430225,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -427756,7 +430234,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -427765,7 +430243,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -427774,7 +430252,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -427783,14 +430261,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -427799,7 +430277,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -427808,7 +430286,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -427817,7 +430295,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -427826,7 +430304,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427835,7 +430313,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427844,7 +430322,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -427853,7 +430331,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -427862,7 +430340,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -427871,7 +430349,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -427880,322 +430358,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -428547,7 +431025,7 @@ "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -428750,7 +431228,7 @@ "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702831811" + "finding": "1703430210" }, { "id": "HSTS", @@ -429306,30 +431784,30 @@ "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "378" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "allow": "OPTIONS, GET", + "allow": "GET, OPTIONS", "content-length": "4", "content-security-policy": "default-src 'self'", "content-type": "application/json", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 16:46:45 GMT", + "date": "Sun, 24 Dec 2023 14:57:25 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "b1d89d8f-c766-441f-bb01-467003caacaf" + "x-request-id": "582f57b1-42fc-40ef-9b83-68046a47b7de" }, "endpoints": [ { "hostname": "api.dora.fabrique.social.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -429397,7 +431875,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:46:05", + "@generated": "Sun, 24 Dec 2023 14:56:42", "site": [ { "@name": "https://api.dora.fabrique.social.gouv.fr", @@ -429505,7 +431983,7 @@ "extracted-results": [ "dora-back-prod.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T16:51:31.581632064Z", + "timestamp": "2023-12-24T15:05:15.958040322Z", "matcher-status": true }, { @@ -429540,7 +432018,7 @@ "type": "dns", "host": "api.dora.fabrique.social.gouv.fr.", "matched-at": "api.dora.fabrique.social.gouv.fr", - "timestamp": "2023-12-17T16:51:31.77675385Z", + "timestamp": "2023-12-24T15:05:15.980594053Z", "matcher-status": true }, { @@ -429554,7 +432032,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -429568,8 +432047,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:58:15.177594955Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:12:45.399225716Z", "matcher-status": true }, { @@ -429583,7 +432062,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -429597,8 +432077,8 @@ "extracted-results": [ "api.dora.fabrique.social.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:58:15.1777151Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:12:45.3993398Z", "matcher-status": true }, { @@ -429613,7 +432093,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -429627,8 +432108,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:58:16.43304085Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:12:47.359328226Z", "matcher-status": true }, { @@ -429643,7 +432124,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -429657,8 +432139,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T16:58:16.62565241Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:12:47.736754702Z", "matcher-status": true } ], @@ -429775,68 +432257,42 @@ "http": { "url": "https://pdf.dora.incubateur.net/ping", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:58:05 GMT", - "grade": "A+", + "end_time": "Sun, 24 Dec 2023 15:15:34 GMT", + "grade": "D+", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "139", - "Content-Security-Policy": "default-src 'none'", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 16:58:04 GMT", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", + "Content-Encoding": "identity", + "Content-Type": "text/html", + "Date": "Sun, 24 Dec 2023 15:15:33 GMT", "Strict-Transport-Security": "max-age=31536000", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "fa1e7337-2358-4a48-8327-329e8ed9111f", - "X-XSS-Protection": "0" + "Transfer-Encoding": "chunked", + "X-Request-ID": "1039f5ff-bc41-4ba4-a299-ad55bedd87dc" }, - "scan_id": 45559319, - "score": 115, - "start_time": "Sun, 17 Dec 2023 16:55:24 GMT", + "scan_id": 45768453, + "score": 40, + "start_time": "Sun, 24 Dec 2023 15:15:30 GMT", "state": "FINISHED", - "status_code": 404, - "tests_failed": 0, - "tests_passed": 12, + "status_code": 503, + "tests_failed": 4, + "tests_passed": 8, "tests_quantity": 12, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "default-src": [ - "'none'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-no-unsafe-default-src-none", - "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", - "score_modifier": 10 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "contribute": { "expectation": "contribute-json-only-required-on-mozilla-properties", @@ -429912,14 +432368,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -429951,34 +432407,34 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-1-mode-block", "name": "x-xss-protection", "output": { - "data": "0" + "data": null }, - "pass": true, - "result": "x-xss-protection-not-needed-due-to-csp", - "score_description": "X-XSS-Protection header not needed due to strong Content Security Policy (CSP) header", - "score_modifier": 0 + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 } } }, @@ -430208,7 +432664,7 @@ "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -430355,7 +432811,7 @@ "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -430543,8 +432999,8 @@ "id": "HTTP_status_code", "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", @@ -430558,7 +433014,7 @@ "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702832374" + "finding": "1703431022" }, { "id": "HSTS_time", @@ -430610,39 +433066,11 @@ "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.incubateur.net/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.incubateur.net/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.incubateur.net/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.incubateur.net/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", + "id": "security_headers", "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", @@ -430718,10 +433146,10 @@ "id": "BREACH", "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -431344,7 +433772,7 @@ "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -431491,7 +433919,7 @@ "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -431679,8 +434107,8 @@ "id": "HTTP_status_code", "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", @@ -431694,7 +434122,7 @@ "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702832425" + "finding": "1703431081" }, { "id": "HSTS_time", @@ -431746,39 +434174,11 @@ "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.incubateur.net/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.incubateur.net/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.incubateur.net/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.incubateur.net/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", + "id": "security_headers", "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", @@ -431854,10 +434254,10 @@ "id": "BREACH", "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -432282,77 +434682,77 @@ }, { "id": "service", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432360,7 +434760,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432368,7 +434768,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432376,7 +434776,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432384,7 +434784,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -432392,7 +434792,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -432400,525 +434800,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-10-31 08:57" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-29 08:57" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702832477" + "finding": "1703431141" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "id": "security_headers", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -432926,7 +435298,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -432935,7 +435307,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -432944,7 +435316,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -432953,7 +435325,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -432962,7 +435334,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -432970,7 +435342,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -432979,7 +435351,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -432988,16 +435360,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -433006,14 +435378,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -433022,7 +435394,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -433031,7 +435403,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -433040,7 +435412,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -433049,7 +435421,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -433058,7 +435430,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -433067,7 +435439,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -433076,7 +435448,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -433085,7 +435457,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -433094,7 +435466,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -433103,392 +435475,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433496,7 +435868,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433504,7 +435876,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433512,7 +435884,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433520,7 +435892,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -433528,7 +435900,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -433536,525 +435908,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-31 08:57" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-29 08:57" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702832529" + "finding": "1703431200" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.incubateur.net/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.incubateur.net/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.incubateur.net/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.incubateur.net/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "id": "security_headers", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -434062,7 +436406,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -434071,7 +436415,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -434080,7 +436424,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -434089,7 +436433,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -434098,7 +436442,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -434106,7 +436450,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -434115,7 +436459,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -434124,16 +436468,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -434142,14 +436486,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -434158,7 +436502,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -434167,7 +436511,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -434176,7 +436520,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -434185,7 +436529,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -434194,7 +436538,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -434203,7 +436547,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -434212,7 +436556,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -434221,7 +436565,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -434230,7 +436574,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -434239,353 +436583,341 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "240" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "content-length": "2", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 16:58:43 GMT", - "etag": "W/\"2-eoX0dku9ba8cNUXvu/DyeabcC+s\"", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", + "content-encoding": "identity", + "content-type": "text/html", + "date": "Sun, 24 Dec 2023 15:16:08 GMT", "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "6c128f19-5f0c-4b77-95a5-160d479f5de4", - "x-xss-protection": "0" + "x-request-id": "1d825978-ea16-4a69-b24d-5cd180e3e969" }, "endpoints": [ { "hostname": "pdf.dora.incubateur.net", - "ip": "80.247.13.145", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -434644,7 +436976,7 @@ "wappalyzer": { "urls": { "https://pdf.dora.incubateur.net/ping": { - "status": 200 + "status": 503 } }, "technologies": [ @@ -434670,7 +437002,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:55:18", + "@generated": "Sun, 24 Dec 2023 15:15:24", "site": [ { "@name": "https://pdf.dora.incubateur.net", @@ -434679,18 +437011,11 @@ "@ssl": "true", "alerts": [ { - "name": "CSP: Wildcard Directive", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "CSP: style-src unsafe-inline", + "name": "Content Security Policy (CSP) Header Not Set", "riskcode": "2", "confidence": "3", "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { "name": "Permissions Policy Header Not Set", @@ -434700,11 +437025,11 @@ "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, { - "name": "Re-examine Cache-control Directives", + "name": "Non-Storable Content", "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" }, { "name": "Sec-Fetch-Dest Header is Missing", @@ -434733,13 +437058,6 @@ "confidence": "3", "riskdesc": "Informational (High)", "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" } ] } @@ -434778,7 +437096,7 @@ "extracted-results": [ "dora-pdf-staging.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T17:03:28.717734549Z", + "timestamp": "2023-12-24T15:21:30.697006012Z", "matcher-status": true }, { @@ -434813,7 +437131,7 @@ "type": "dns", "host": "pdf.dora.incubateur.net.", "matched-at": "pdf.dora.incubateur.net", - "timestamp": "2023-12-17T17:03:28.806080256Z", + "timestamp": "2023-12-24T15:21:30.804085581Z", "matcher-status": true }, { @@ -434848,8 +437166,8 @@ "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.018702693Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649012195Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -434885,8 +437203,8 @@ "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019183829Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649059002Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -434918,12 +437236,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019215148Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649075142Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -434955,12 +437273,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019235345Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649196788Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -434992,12 +437310,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.01924874Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649218138Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435029,12 +437347,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019261564Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649231914Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435066,12 +437384,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019273987Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649244798Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435103,12 +437421,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-frame-options", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019289637Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649259906Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435140,12 +437458,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019304314Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649273221Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435177,12 +437495,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:04:11.019316407Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:22:33.649285864Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435197,7 +437515,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -435211,8 +437530,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:10:10.980265589Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:28:56.455250271Z", "matcher-status": true }, { @@ -435226,7 +437545,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -435240,8 +437560,8 @@ "extracted-results": [ "pdf.dora.incubateur.net" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:10:10.980379442Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:28:56.455358503Z", "matcher-status": true }, { @@ -435256,7 +437576,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -435270,8 +437591,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:10:12.149552006Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:28:58.107650747Z", "matcher-status": true }, { @@ -435286,7 +437607,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -435300,8 +437622,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T17:10:12.325641217Z", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T15:28:58.321592935Z", "matcher-status": true } ], @@ -435379,7 +437701,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "A+", + "httpGrade": "D+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -435418,7 +437740,7 @@ "http": { "url": "https://pdf.dora.fabrique.social.gouv.fr/ping", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 16:59:53 GMT", + "end_time": "Sun, 24 Dec 2023 15:22:55 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -435429,7 +437751,7 @@ "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 16:59:52 GMT", + "Date": "Sun, 24 Dec 2023 15:22:54 GMT", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=31536000", @@ -435438,12 +437760,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "ace199e1-d129-4186-b30f-eb8c44275628", + "X-Request-ID": "a433c262-5f49-48ed-8db4-50f4c4861e61", "X-XSS-Protection": "0" }, - "scan_id": 45559393, + "scan_id": 45768518, "score": 115, - "start_time": "Sun, 17 Dec 2023 16:59:48 GMT", + "start_time": "Sun, 24 Dec 2023 15:22:52 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 0, @@ -435653,77 +437975,77 @@ "testssl": [ { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -435731,7 +438053,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -435739,7 +438061,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -435747,7 +438069,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -435755,7 +438077,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -435763,7 +438085,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -435771,525 +438093,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-10-31 14:00" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-29 14:00" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702832518" + "finding": "1703431495" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -436297,7 +438619,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -436306,7 +438628,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -436315,7 +438637,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -436324,7 +438646,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -436333,7 +438655,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -436341,7 +438663,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -436350,7 +438672,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -436359,7 +438681,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -436368,7 +438690,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -436377,14 +438699,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -436393,7 +438715,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -436402,7 +438724,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -436411,7 +438733,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -436420,7 +438742,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -436429,7 +438751,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -436438,7 +438760,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -436447,7 +438769,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -436456,7 +438778,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -436465,7 +438787,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -436474,392 +438796,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436867,7 +439189,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436875,7 +439197,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436883,7 +439205,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436891,7 +439213,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436899,7 +439221,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436907,525 +439229,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-10-31 14:00" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-29 14:00" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702832616" + "finding": "1703431592" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -437433,7 +439755,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -437442,7 +439764,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -437451,7 +439773,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -437460,7 +439782,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -437469,7 +439791,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -437477,7 +439799,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -437486,7 +439808,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -437495,7 +439817,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -437504,7 +439826,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -437513,14 +439835,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -437529,7 +439851,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -437538,7 +439860,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -437547,7 +439869,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -437556,7 +439878,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -437565,7 +439887,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -437574,7 +439896,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -437583,7 +439905,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -437592,7 +439914,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -437601,7 +439923,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -437610,392 +439932,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438003,7 +440325,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438011,7 +440333,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438019,7 +440341,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438027,7 +440349,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -438035,7 +440357,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -438043,525 +440365,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-31 14:00" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-29 14:00" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702832713" + "finding": "1703431688" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -438569,7 +440891,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -438578,7 +440900,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -438587,7 +440909,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -438596,7 +440918,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -438605,7 +440927,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -438613,7 +440935,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -438622,7 +440944,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -438631,7 +440953,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -438640,7 +440962,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -438649,14 +440971,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -438665,7 +440987,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -438674,7 +440996,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -438683,7 +441005,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -438692,7 +441014,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -438701,7 +441023,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -438710,7 +441032,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -438719,7 +441041,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -438728,7 +441050,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -438737,7 +441059,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -438746,392 +441068,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439139,7 +441461,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439147,7 +441469,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439155,7 +441477,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439163,7 +441485,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -439171,7 +441493,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -439179,525 +441501,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-31 14:00" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-29 14:00" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702832811" + "finding": "1703431785" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -439705,7 +442027,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -439714,7 +442036,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -439723,7 +442045,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -439732,7 +442054,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -439741,7 +442063,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -439749,7 +442071,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -439758,7 +442080,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -439767,7 +442089,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -439776,7 +442098,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -439785,14 +442107,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -439801,7 +442123,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -439810,7 +442132,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -439819,7 +442141,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -439828,7 +442150,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -439837,7 +442159,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -439846,7 +442168,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -439855,7 +442177,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -439864,7 +442186,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -439873,7 +442195,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -439882,325 +442204,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "394" + "finding": "390" } ], "thirdparties": { @@ -440212,7 +442534,7 @@ "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 17:00:30 GMT", + "date": "Sun, 24 Dec 2023 15:23:27 GMT", "etag": "W/\"2-eoX0dku9ba8cNUXvu/DyeabcC+s\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -440222,13 +442544,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "48df9969-db1e-42b6-9c35-39376518335e", + "x-request-id": "49e2f38c-63c6-4c52-9f96-42a7080f0973", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "pdf.dora.fabrique.social.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -440313,7 +442635,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 16:59:41", + "@generated": "Sun, 24 Dec 2023 15:22:45", "site": [ { "@name": "https://pdf.dora.fabrique.social.gouv.fr", @@ -440421,7 +442743,7 @@ "type": "dns", "host": "pdf.dora.fabrique.social.gouv.fr.", "matched-at": "pdf.dora.fabrique.social.gouv.fr", - "timestamp": "2023-12-17T17:08:39.464741035Z", + "timestamp": "2023-12-24T15:31:32.730969872Z", "matcher-status": true }, { @@ -440456,7 +442778,7 @@ "extracted-results": [ "dora-pdf-prod.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T17:08:40.492869079Z", + "timestamp": "2023-12-24T15:31:32.853151194Z", "matcher-status": true }, { @@ -440485,7 +442807,7 @@ "GET,HEAD" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:08:51.079118743Z", + "timestamp": "2023-12-24T15:31:44.352708981Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440522,7 +442844,7 @@ "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:09:55.032714485Z", + "timestamp": "2023-12-24T15:32:49.878532618Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440559,7 +442881,7 @@ "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:09:55.032763877Z", + "timestamp": "2023-12-24T15:32:49.878572462Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440596,7 +442918,7 @@ "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:09:55.032782262Z", + "timestamp": "2023-12-24T15:32:49.878593662Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440636,7 +442958,7 @@ "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping/", "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:10:36.122091294Z", + "timestamp": "2023-12-24T15:33:30.058557377Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: pdf.dora.fabrique.social.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping/'", "matcher-status": true }, @@ -440651,7 +442973,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -440666,7 +442989,7 @@ "Let's Encrypt" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:16:29.436334965Z", + "timestamp": "2023-12-24T15:39:23.452987332Z", "matcher-status": true }, { @@ -440680,7 +443003,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -440695,7 +443019,7 @@ "pdf.dora.fabrique.social.gouv.fr" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:16:29.436467964Z", + "timestamp": "2023-12-24T15:39:23.453083471Z", "matcher-status": true }, { @@ -440710,7 +443034,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -440725,7 +443050,7 @@ "tls12" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:16:31.880976867Z", + "timestamp": "2023-12-24T15:39:25.71006125Z", "matcher-status": true }, { @@ -440740,7 +443065,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -440755,7 +443081,7 @@ "tls13" ], "ip": "80.247.12.255", - "timestamp": "2023-12-17T17:16:32.193799716Z", + "timestamp": "2023-12-24T15:39:26.022645724Z", "matcher-status": true } ], @@ -440927,7 +443253,7 @@ "type": "dns", "host": "app.eva.beta.gouv.fr.", "matched-at": "app.eva.beta.gouv.fr", - "timestamp": "2023-12-17T17:22:35.527144382Z", + "timestamp": "2023-12-24T15:36:33.500968488Z", "matcher-status": true } ], @@ -441039,7 +443365,7 @@ "http": { "url": "https://api.app.eva.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:23:12 GMT", + "end_time": "Sun, 24 Dec 2023 15:40:57 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -441048,12 +443374,12 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:23:10 GMT", - "etag": "W/\"728cf6e4811b788823a3a8fb6f8b0bba\"", + "date": "Sun, 24 Dec 2023 15:40:54 GMT", + "etag": "W/\"7b54d340491df63b05169988e2b392f2\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "Apache", - "set-cookie": "_session_id=jqvpj3iqmHqNfBI2JM%2FiD5Ar2chFTMdSxJyMzD0bNuTl3xArKR4fk40aaVPl6r%2BN0GDHl69T%2FPUDp8zCaOqrxVJohSj3zXw4ajY%2BbPcbYmTWaCQ%2BJHCiwbsEHjJR%2FwYTjiEeTQUZYCXjWqCUtQ3UtXeyjNMNR%2FCFk5ftqu8fQ5V4uhDRa%2FiGDVsdakz7xyDmRywSWOwooN2J9WB4p3zcTI5p9KKfavuDQZqr9jYxKKM65rDqef7WOrulIXKXkSN9HQeclssE8qdhDpUwVVOkwagJqw%3D%3D--C1ttQajjWqLqIcC4--zty%2F2qkYjE14n%2Bb7PCL9LQ%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", + "set-cookie": "_session_id=E0hlXmuf9%2FbJKrkATTB8hVzP%2B1z0pv40nb%2B1CPjMmGmLvkZOTYgSP9qLtbVN9SZl9QQffImdjH8DBfYdCgTcUz4WvPXLF15HcD95zEQggGOjkOdB1TvG1JO0le0wwRACFa0smf6ZTj1hGU1%2BhXNNwmaoyzJd73AZi%2BP4hacdBcq%2Bwb61xuPvpO8q48r9yfZLioDmVYDkXNjINBeCI8OIGoxOj7cKih8xHjVQQrWM9l4hKdZyik%2FvggLcP66iYRk18Kzd%2FLacw9L7nV76Wjt5sLlU1Q%3D%3D--fwsfPoFPuy52YOBA--6xFWn%2B2Z4Hi%2Bnm%2FWgpl5oA%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", "strict-transport-security": "max-age=63072000; includeSubDomains", "transfer-encoding": "chunked", "vary": "Accept,Origin", @@ -441062,13 +443388,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "3ee8dade-d45f-46df-b0e9-af42bfbcd8f2, 3ee8dade-d45f-46df-b0e9-af42bfbcd8f2", - "x-runtime": "0.019428", + "x-request-id": "6d4889ed-0946-46bf-a864-92cc43d672ab, 6d4889ed-0946-46bf-a864-92cc43d672ab", + "x-runtime": "0.018656", "x-xss-protection": "0" }, - "scan_id": 45560084, + "scan_id": 45768702, "score": 60, - "start_time": "Sun, 17 Dec 2023 17:22:13 GMT", + "start_time": "Sun, 24 Dec 2023 15:40:50 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -441267,15 +443593,15 @@ "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T17:32:30Z", - "next_check_at": "2023-12-17T18:32:28Z", + "last_check_at": "2023-12-24T15:13:55Z", + "next_check_at": "2023-12-24T16:13:19Z", "mute_until": "forever", "favicon_url": "https://eva.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T17:32:31Z", + "tested_at": "2023-12-24T08:15:52Z", "expires_at": "2024-03-04T07:32:35Z", "valid": true, "error": null @@ -441657,7 +443983,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -441860,7 +444186,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1702833894" + "finding": "1703432568" }, { "id": "HSTS", @@ -442416,7 +444742,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "102" + "finding": "101" } ], "thirdparties": { @@ -442443,7 +444769,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/f69a6d97-fd72-455d-826c-f04d4d228c03/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-17-23" + "url": "https://client.crisp.chat/settings/website/f69a6d97-fd72-455d-826c-f04d4d228c03/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-15-41" }, { "type": "unknown", @@ -442457,11 +444783,11 @@ "cookies": [ { "name": "_session_id", - "value": "T6g77KlvXU0NKsY%2Byl98otZ5%2F9dm4GF1VTXX%2BRlPzuqDPEIqBFljHdHKc6HuAwVAIVI8%2FrsulyPpgKGKvv46O5bRuhzVll47aMnzSGXR7YlklKZ%2BhWiYGYT8wGWRLOV92t%2FgbEWgYpWJHKIBKmY6pw5TRNWWIVkV0luZJa05lWXkk0j12Mq3Kr9EYGomd4XsrjBmNme05X6TSmeqBQqR0jqr9L6LUpG56tTDXa2kTANEGler5CNG%2BRBMdNA8Yt3AcsCtBf1U%2BOyvpOJ31uatfQjlUg%3D%3D--No937ZhU94odnSpZ--pJ4Nz1V%2BG2JJoyEh24FjpQ%3D%3D", + "value": "d53gUUVapDGoU2xMiyso6Wug02arx7BEDJnnsEoCb78g29tad8O4nsOKNm6gFC6hEPXOT6Lufvatu0SJhp%2BYWkUPM8dtTl8EgorQMyC4UCEGbHG3NjH55Sx2vmsyQTinFD7AhAeYdaCLT14gbeSNAYpCzdKVW56pIlnNIbBFVjIDjdbPrGgfQ%2BBEF83qd6H1djVMESc7XgG7iFCHaCr%2Fde%2BbfQmFuZD6%2FnPofYJv16XAQ2WQ5bxTBdW6v7vfSGPGdzWhe2ik95Nig16oAzvYcF3cbg%3D%3D--CM%2FRbuEFRhZQBLh5--C9s6QssYpdgF81UOCSDwUA%3D%3D", "domain": "eva.beta.gouv.fr", "path": "/", "expires": -1, - "size": 365, + "size": 359, "httpOnly": true, "secure": true, "session": true, @@ -442475,12 +444801,12 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:23:30 GMT", - "etag": "W/\"cb9361dd19dc27199fae6a2905b87e84\"", + "date": "Sun, 24 Dec 2023 15:41:27 GMT", + "etag": "W/\"91ca88ac788bf77e331123d86df65653\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "Apache", - "set-cookie": "_session_id=T6g77KlvXU0NKsY%2Byl98otZ5%2F9dm4GF1VTXX%2BRlPzuqDPEIqBFljHdHKc6HuAwVAIVI8%2FrsulyPpgKGKvv46O5bRuhzVll47aMnzSGXR7YlklKZ%2BhWiYGYT8wGWRLOV92t%2FgbEWgYpWJHKIBKmY6pw5TRNWWIVkV0luZJa05lWXkk0j12Mq3Kr9EYGomd4XsrjBmNme05X6TSmeqBQqR0jqr9L6LUpG56tTDXa2kTANEGler5CNG%2BRBMdNA8Yt3AcsCtBf1U%2BOyvpOJ31uatfQjlUg%3D%3D--No937ZhU94odnSpZ--pJ4Nz1V%2BG2JJoyEh24FjpQ%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", + "set-cookie": "_session_id=d53gUUVapDGoU2xMiyso6Wug02arx7BEDJnnsEoCb78g29tad8O4nsOKNm6gFC6hEPXOT6Lufvatu0SJhp%2BYWkUPM8dtTl8EgorQMyC4UCEGbHG3NjH55Sx2vmsyQTinFD7AhAeYdaCLT14gbeSNAYpCzdKVW56pIlnNIbBFVjIDjdbPrGgfQ%2BBEF83qd6H1djVMESc7XgG7iFCHaCr%2Fde%2BbfQmFuZD6%2FnPofYJv16XAQ2WQ5bxTBdW6v7vfSGPGdzWhe2ik95Nig16oAzvYcF3cbg%3D%3D--CM%2FRbuEFRhZQBLh5--C9s6QssYpdgF81UOCSDwUA%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", "strict-transport-security": "max-age=63072000; includeSubDomains", "vary": "Origin", "via": "1.1 eva.beta.gouv.fr, 2.0 alproxy", @@ -442488,8 +444814,8 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "7d47344c-f876-4a19-9489-ae7f609067c0\n7d47344c-f876-4a19-9489-ae7f609067c0", - "x-runtime": "0.033128", + "x-request-id": "81a640a3-8908-4f90-a5c5-546d4cf1082c\n81a640a3-8908-4f90-a5c5-546d4cf1082c", + "x-runtime": "0.022673", "x-xss-protection": "0" }, "endpoints": [ @@ -442551,7 +444877,7 @@ }, { "hostname": "code.jquery.com", - "ip": "151.101.130.137", + "ip": "151.101.2.137", "geoip": { "continent": { "code": "NA", @@ -442605,8 +444931,42 @@ }, { "hostname": "client.crisp.chat", - "ip": "104.18.34.181", + "ip": "172.64.153.75", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -442656,7 +445016,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:21:46", + "@generated": "Sun, 24 Dec 2023 15:40:23", "site": [ { "@name": "https://api.app.eva.beta.gouv.fr", @@ -442785,7 +445145,7 @@ { "requestedUrl": "https://api.app.eva.beta.gouv.fr/", "finalUrl": "https://eva.beta.gouv.fr/pro/admin/login", - "fetchTime": "2023-12-17T17:22:00.673Z", + "fetchTime": "2023-12-24T15:40:37.727Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://api.app.eva.beta.gouv.fr/) was redirected to https://eva.beta.gouv.fr/pro/admin/login. Try testing the second URL directly." ], @@ -442850,53 +445210,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8376, + "numericValue": 8352, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7178, - "firstMeaningfulPaint": 7178, - "largestContentfulPaint": 8155, - "interactive": 8376, - "speedIndex": 8833, - "totalBlockingTime": 184, - "maxPotentialFID": 224, + "firstContentfulPaint": 7175, + "firstMeaningfulPaint": 7175, + "largestContentfulPaint": 8145, + "interactive": 8352, + "speedIndex": 8825, + "totalBlockingTime": 185, + "maxPotentialFID": 231, "cumulativeLayoutShift": 0.006686156849379994, "cumulativeLayoutShiftMainFrame": 0.006686156849379994, "totalCumulativeLayoutShift": 0.006686156849379994, "observedTimeOrigin": 0, - "observedTimeOriginTs": 356665257, + "observedTimeOriginTs": 274609767, "observedNavigationStart": 0, - "observedNavigationStartTs": 356665257, - "observedFirstPaint": 2693, - "observedFirstPaintTs": 359358040, - "observedFirstContentfulPaint": 2693, - "observedFirstContentfulPaintTs": 359358040, - "observedFirstContentfulPaintAllFrames": 2693, - "observedFirstContentfulPaintAllFramesTs": 359358040, - "observedFirstMeaningfulPaint": 2707, - "observedFirstMeaningfulPaintTs": 359371937, - "observedLargestContentfulPaint": 2860, - "observedLargestContentfulPaintTs": 359524795, - "observedLargestContentfulPaintAllFrames": 2860, - "observedLargestContentfulPaintAllFramesTs": 359524795, - "observedTraceEnd": 5386, - "observedTraceEndTs": 362051086, - "observedLoad": 2905, - "observedLoadTs": 359570618, - "observedDomContentLoaded": 2684, - "observedDomContentLoadedTs": 359349261, + "observedNavigationStartTs": 274609767, + "observedFirstPaint": 2704, + "observedFirstPaintTs": 277313693, + "observedFirstContentfulPaint": 2704, + "observedFirstContentfulPaintTs": 277313693, + "observedFirstContentfulPaintAllFrames": 2704, + "observedFirstContentfulPaintAllFramesTs": 277313693, + "observedFirstMeaningfulPaint": 2720, + "observedFirstMeaningfulPaintTs": 277329968, + "observedLargestContentfulPaint": 2868, + "observedLargestContentfulPaintTs": 277477870, + "observedLargestContentfulPaintAllFrames": 2868, + "observedLargestContentfulPaintAllFramesTs": 277477870, + "observedTraceEnd": 5563, + "observedTraceEndTs": 280173162, + "observedLoad": 2930, + "observedLoadTs": 277539515, + "observedDomContentLoaded": 2700, + "observedDomContentLoadedTs": 277309438, "observedCumulativeLayoutShift": 0.006686156849379994, "observedCumulativeLayoutShiftMainFrame": 0.006686156849379994, "observedTotalCumulativeLayoutShift": 0.006686156849379994, - "observedFirstVisualChange": 2703, - "observedFirstVisualChangeTs": 359368257, - "observedLastVisualChange": 3570, - "observedLastVisualChangeTs": 360235257, - "observedSpeedIndex": 2793, - "observedSpeedIndexTs": 359458288 + "observedFirstVisualChange": 2712, + "observedFirstVisualChangeTs": 277321767, + "observedLastVisualChange": 3595, + "observedLastVisualChangeTs": 278204767, + "observedSpeedIndex": 2804, + "observedSpeedIndexTs": 277413570 }, { "lcpInvalidated": false @@ -442918,19 +445278,19 @@ "numScripts": 10, "numStylesheets": 3, "numFonts": 2, - "numTasks": 590, - "numTasksOver10ms": 5, + "numTasks": 579, + "numTasksOver10ms": 4, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.0390000000000006, - "throughput": 5321121.161440214, - "maxRtt": 151.618, - "maxServerLatency": 194.365, - "totalByteWeight": 911989, - "totalTaskTime": 213.49899999999934, - "mainDocumentTransferSize": 4551 + "rtt": 1.0669999999999997, + "throughput": 4825095.248041066, + "maxRtt": 151.611, + "maxServerLatency": 191.542, + "totalByteWeight": 912938, + "totalTaskTime": 203.3879999999991, + "mainDocumentTransferSize": 4568 } ] } @@ -443061,20 +445421,20 @@ "http": { "url": "https://disinfo.quaidorsay.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:29:21 GMT", + "end_time": "Sun, 24 Dec 2023 15:50:11 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Access-Control-Allow-Origin": "*", - "Age": "210", + "Age": "297", "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Length": "1313", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 17:29:19 GMT", + "Date": "Sun, 24 Dec 2023 15:50:10 GMT", "ETag": "W/\"64faf83f-a05\"", "Last-Modified": "Fri, 08 Sep 2023 10:32:31 GMT", "Server": "nginx/1.18.0", @@ -443083,17 +445443,17 @@ "Via": "1.1 varnish", "X-Cache": "HIT", "X-Cache-Hits": "1", - "X-Fastly-Request-ID": "08d39287a2e98c5ae2a0f1d5983a3f5deef50714", - "X-GitHub-Request-Id": "4F00:26AF32:62299A2:6401CB7:657EFCCF", - "X-Served-By": "cache-lcy-eglc8600049-LCY", - "X-Timer": "S1702834160.809841,VS0,VE1", - "expires": "Sun, 17 Dec 2023 14:01:11 GMT", + "X-Fastly-Request-ID": "de08101411850e06ca9673ee18fe7538c85889ec", + "X-GitHub-Request-Id": "6CA4:1D9670:B2F82B:B6BAAD:658837C9", + "X-Served-By": "cache-lcy-eglc8600045-LCY", + "X-Timer": "S1703433010.076654,VS0,VE2", + "expires": "Sun, 24 Dec 2023 14:03:13 GMT", "permissions-policy": "interest-cohort=()", "x-proxy-cache": "MISS" }, - "scan_id": 45560173, + "scan_id": 45768761, "score": 40, - "start_time": "Sun, 17 Dec 2023 17:29:16 GMT", + "start_time": "Sun, 24 Dec 2023 15:47:27 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -443270,12 +445630,12 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.4p1 Debian 5+deb11u2", + "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { - "id": "PRION:CVE-2016-20012", "cvss": "5.0", "is_exploit": "false", + "id": "PRION:CVE-2016-20012", "type": "prion" } ] @@ -443660,7 +446020,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "OK", - "finding": "38 >= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", @@ -443856,21 +446216,21 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "+167 seconds from localtime" + "finding": "+332 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "1702834282" + "finding": "1703433135" }, { "id": "HTTP_headerAge", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "167 seconds" + "finding": "332 seconds" }, { "id": "HSTS_time", @@ -443940,7 +446300,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "cache-lcy-eglc8600061-LCY" + "finding": "cache-lcy-eglc8600069-LCY" }, { "id": "Cache-Control", @@ -443955,7 +446315,7 @@ "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 1" + "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 2" }, { "id": "heartbleed", @@ -444465,7 +446825,7 @@ "value": "1", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1702835994, + "expires": 1703434846, "size": 16, "httpOnly": false, "secure": false, @@ -444477,10 +446837,10 @@ }, { "name": "_pk_id.89.7763", - "value": "073ff484326097ff.1702834194.", + "value": "0335f87995966139.1703433046.", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1736789394, + "expires": 1737388246, "size": 42, "httpOnly": false, "secure": false, @@ -444499,9 +446859,9 @@ "content-encoding": "gzip", "content-length": "24565", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:29:53 GMT", + "date": "Sun, 24 Dec 2023 15:50:45 GMT", "etag": "W/\"64faf83f-10d49\"", - "expires": "Sun, 17 Dec 2023 17:37:06 GMT", + "expires": "Sun, 24 Dec 2023 15:55:13 GMT", "last-modified": "Fri, 08 Sep 2023 10:32:31 GMT", "permissions-policy": "interest-cohort=()", "server": "nginx/1.18.0", @@ -444510,11 +446870,11 @@ "via": "1.1 varnish", "x-cache": "HIT", "x-cache-hits": "1", - "x-fastly-request-id": "832c7ae6ec283e9dc57b1f08e320dd446f3c8088", - "x-github-request-id": "563E:D2B5B:6D36C80:6F1F4A5:657F2F69", + "x-fastly-request-id": "e9983d18c7a2357327d76be33a5071b15d0b63a7", + "x-github-request-id": "B396:3B300F:1A850F1:1B06F4C:65885209", "x-proxy-cache": "MISS", - "x-served-by": "cache-lcy-eglc8600055-LCY", - "x-timer": "S1702834193.024740,VS0,VE121" + "x-served-by": "cache-lcy-eglc8600056-LCY", + "x-timer": "S1703433045.027322,VS0,VE110" }, "endpoints": [ { @@ -444713,7 +447073,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:28:51", + "@generated": "Sun, 24 Dec 2023 15:47:01", "site": [ { "@name": "https://disinfo.quaidorsay.fr", @@ -444919,7 +447279,7 @@ "type": "dns", "host": "disinfo.quaidorsay.fr.", "matched-at": "disinfo.quaidorsay.fr", - "timestamp": "2023-12-17T17:32:42.064273064Z", + "timestamp": "2023-12-24T15:53:34.979631486Z", "matcher-status": true }, { @@ -444950,7 +447310,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:33:08.924899635Z", + "timestamp": "2023-12-24T15:54:00.662716174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -444982,7 +447342,7 @@ "nginx/1.18.0" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:33:08.930609629Z", + "timestamp": "2023-12-24T15:54:00.668396469Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445009,7 +447369,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:33:55.040669007Z", + "timestamp": "2023-12-24T15:54:47.247003824Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445041,12 +447401,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476740981Z", + "timestamp": "2023-12-24T15:55:07.58604955Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445078,12 +447438,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476782118Z", + "timestamp": "2023-12-24T15:55:07.586094504Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445115,12 +447475,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476797797Z", + "timestamp": "2023-12-24T15:55:07.586111606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445152,12 +447512,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476814759Z", + "timestamp": "2023-12-24T15:55:07.586124059Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445189,12 +447549,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476828645Z", + "timestamp": "2023-12-24T15:55:07.586137173Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445226,12 +447586,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-frame-options", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476843913Z", + "timestamp": "2023-12-24T15:55:07.586179894Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445263,12 +447623,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476857789Z", + "timestamp": "2023-12-24T15:55:07.586202356Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445300,12 +447660,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476872707Z", + "timestamp": "2023-12-24T15:55:07.586221872Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445337,12 +447697,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:15.476888246Z", + "timestamp": "2023-12-24T15:55:07.586240247Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445371,7 +447731,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/Gemfile", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:29.874686445Z", + "timestamp": "2023-12-24T15:55:22.250630593Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/Gemfile'", "matcher-status": true }, @@ -445400,7 +447760,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/Gemfile.lock", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:34:30.430234677Z", + "timestamp": "2023-12-24T15:55:22.811986736Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/Gemfile.lock'", "matcher-status": true }, @@ -445440,7 +447800,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:09.877370102Z", + "timestamp": "2023-12-24T15:56:02.519455018Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: disinfo.quaidorsay.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/'", "matcher-status": true }, @@ -445480,7 +447840,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:09.877418643Z", + "timestamp": "2023-12-24T15:56:02.519500282Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: disinfo.quaidorsay.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/'", "matcher-status": true }, @@ -445527,10 +447887,10 @@ "host": "disinfo.quaidorsay.fr:22", "matched-at": "disinfo.quaidorsay.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2" + "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:53.458707324Z", + "timestamp": "2023-12-24T15:56:46.234177168Z", "matcher-status": true }, { @@ -445544,7 +447904,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -445559,7 +447920,7 @@ "Let's Encrypt" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:57.476930755Z", + "timestamp": "2023-12-24T15:56:49.772717954Z", "matcher-status": true }, { @@ -445573,7 +447934,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -445588,7 +447950,7 @@ "disinfo.quaidorsay.fr" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:57.477050448Z", + "timestamp": "2023-12-24T15:56:49.77282873Z", "matcher-status": true }, { @@ -445603,8 +447965,10 @@ ], "tags": [ "network", - "c2", "jarm", + "c2", + "ir", + "osint", "cti" ], "description": "Detect C2 Servers with JARM Hashes\n", @@ -445620,7 +447984,7 @@ "host": "disinfo.quaidorsay.fr:443", "matched-at": "disinfo.quaidorsay.fr:443", "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:57.664578875Z", + "timestamp": "2023-12-24T15:56:49.844015402Z", "matcher-status": true }, { @@ -445635,7 +447999,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -445650,7 +448015,7 @@ "tls12" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:59.689738212Z", + "timestamp": "2023-12-24T15:56:51.872293669Z", "matcher-status": true }, { @@ -445665,7 +448030,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -445680,7 +448046,7 @@ "tls13" ], "ip": "198.244.157.26", - "timestamp": "2023-12-17T17:35:59.992837172Z", + "timestamp": "2023-12-24T15:56:52.164879661Z", "matcher-status": true } ], @@ -445688,7 +448054,7 @@ { "requestedUrl": "https://disinfo.quaidorsay.fr/", "finalUrl": "https://disinfo.quaidorsay.fr/fr", - "fetchTime": "2023-12-17T17:29:05.569Z", + "fetchTime": "2023-12-24T15:47:16.090Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://disinfo.quaidorsay.fr/) was redirected to https://disinfo.quaidorsay.fr/fr. Try testing the second URL directly." ], @@ -445753,53 +448119,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2195, + "numericValue": 1996, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1471, - "firstMeaningfulPaint": 1771, - "largestContentfulPaint": 1771, - "interactive": 2195, - "speedIndex": 2317, - "totalBlockingTime": 52, - "maxPotentialFID": 153, + "firstContentfulPaint": 1472, + "firstMeaningfulPaint": 1772, + "largestContentfulPaint": 1772, + "interactive": 1996, + "speedIndex": 2336, + "totalBlockingTime": 14, + "maxPotentialFID": 78, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 232670441, + "observedTimeOriginTs": 352760219, "observedNavigationStart": 0, - "observedNavigationStartTs": 232670441, - "observedFirstPaint": 989, - "observedFirstPaintTs": 233659356, - "observedFirstContentfulPaint": 989, - "observedFirstContentfulPaintTs": 233659356, - "observedFirstContentfulPaintAllFrames": 989, - "observedFirstContentfulPaintAllFramesTs": 233659356, - "observedFirstMeaningfulPaint": 1278, - "observedFirstMeaningfulPaintTs": 233948494, - "observedLargestContentfulPaint": 1263, - "observedLargestContentfulPaintTs": 233932955, - "observedLargestContentfulPaintAllFrames": 1263, - "observedLargestContentfulPaintAllFramesTs": 233932955, - "observedTraceEnd": 3920, - "observedTraceEndTs": 236590903, - "observedLoad": 1611, - "observedLoadTs": 234281650, - "observedDomContentLoaded": 989, - "observedDomContentLoadedTs": 233659223, + "observedNavigationStartTs": 352760219, + "observedFirstPaint": 1001, + "observedFirstPaintTs": 353760949, + "observedFirstContentfulPaint": 1001, + "observedFirstContentfulPaintTs": 353760949, + "observedFirstContentfulPaintAllFrames": 1001, + "observedFirstContentfulPaintAllFramesTs": 353760949, + "observedFirstMeaningfulPaint": 1283, + "observedFirstMeaningfulPaintTs": 354043482, + "observedLargestContentfulPaint": 1269, + "observedLargestContentfulPaintTs": 354028779, + "observedLargestContentfulPaintAllFrames": 1269, + "observedLargestContentfulPaintAllFramesTs": 354028779, + "observedTraceEnd": 3944, + "observedTraceEndTs": 356704574, + "observedLoad": 1633, + "observedLoadTs": 354392970, + "observedDomContentLoaded": 997, + "observedDomContentLoadedTs": 353757599, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 986, - "observedFirstVisualChangeTs": 233656441, - "observedLastVisualChange": 1286, - "observedLastVisualChangeTs": 233956441, - "observedSpeedIndex": 1151, - "observedSpeedIndexTs": 233821313 + "observedFirstVisualChange": 1008, + "observedFirstVisualChangeTs": 353768219, + "observedLastVisualChange": 1292, + "observedLastVisualChangeTs": 354052219, + "observedSpeedIndex": 1164, + "observedSpeedIndexTs": 353923842 }, { "lcpInvalidated": false @@ -445821,19 +448187,19 @@ "numScripts": 1, "numStylesheets": 2, "numFonts": 2, - "numTasks": 203, - "numTasksOver10ms": 2, - "numTasksOver25ms": 1, + "numTasks": 204, + "numTasksOver10ms": 3, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 144.168, - "throughput": 5167755.638171161, - "maxRtt": 148.23999999999998, - "maxServerLatency": 120.57099999999997, - "totalByteWeight": 382609, - "totalTaskTime": 101.07599999999996, - "mainDocumentTransferSize": 1845 + "rtt": 141.894, + "throughput": 4976697.259333175, + "maxRtt": 151.68099999999998, + "maxServerLatency": 122.30799999999999, + "totalByteWeight": 382899, + "totalTaskTime": 95.24799999999995, + "mainDocumentTransferSize": 1843 } ] } @@ -445956,17 +448322,17 @@ "http": { "url": "https://opentermsarchive.org", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:34:15 GMT", + "end_time": "Sat, 23 Dec 2023 19:25:54 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 17:34:12 GMT", + "Date": "Sat, 23 Dec 2023 19:25:51 GMT", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains; preload", "Transfer-Encoding": "chunked", - "X-Request-ID": "4c9ca13f-c521-4bfd-b362-eec10f1d9bb6", + "X-Request-ID": "ec81878f-c471-44cc-a3b2-9c1941688b8f", "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr", @@ -445978,9 +448344,9 @@ "x-powered-by": "Next.js", "x-xss-protection": "1; mode=block" }, - "scan_id": 45560241, + "scan_id": 45746604, "score": 70, - "start_time": "Sun, 17 Dec 2023 17:34:09 GMT", + "start_time": "Sat, 23 Dec 2023 19:25:48 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -446004,25 +448370,25 @@ "https://stats.data.gouv.fr" ], "img-src": [ - "'self'", "https://sibyll.in", + "https://pbs.twimg.com", "https://media-exp1.licdn.com", "https://avatars.githubusercontent.com", + "'self'", "https://www.gravatar.com", - "data:", - "https://pbs.twimg.com" + "data:" ], "object-src": [ "'none'" ], "script-src": [ + "https://stats.data.gouv.fr", "'self'", - "'unsafe-eval'", - "https://stats.data.gouv.fr" + "'unsafe-eval'" ], "style-src": [ - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ] }, "http": true, @@ -446196,7 +448562,7 @@ "url": "https://opentermsarchive.org", "alias": null, "last_status": 200, - "uptime": 99.896, + "uptime": 100, "down": false, "down_since": null, "error": null, @@ -446210,16 +448576,16 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T17:46:32Z", - "next_check_at": "2023-12-17T17:51:31Z", + "last_check_at": "2023-12-24T16:05:27Z", + "next_check_at": "2023-12-24T16:10:27Z", "mute_until": null, "favicon_url": "https://opentermsarchive.org/favicon-16x16.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T17:06:45Z", - "expires_at": "2024-01-19T03:55:11Z", + "tested_at": "2023-12-24T15:50:33Z", + "expires_at": "2024-03-19T03:56:09Z", "valid": true, "error": null }, @@ -446227,11 +448593,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 195, - "connection": 168, - "handshake": 177, - "response": 189, - "total": 729 + "namelookup": 155, + "connection": 140, + "handshake": 149, + "response": 148, + "total": 592 } }, "uptimeGrade": "A", @@ -446264,77 +448630,77 @@ "testssl": [ { "id": "service", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446342,7 +448708,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446350,7 +448716,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446358,7 +448724,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -446366,7 +448732,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -446374,7 +448740,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -446382,532 +448748,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "85 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-10-21 03:55" + "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-01-19 03:55" + "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702834545" + "finding": "1703433217" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -446915,7 +449281,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -446924,7 +449290,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -446933,7 +449299,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -446942,7 +449308,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -446951,7 +449317,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -446959,7 +449325,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -446968,7 +449334,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -446977,7 +449343,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -446986,7 +449352,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -446995,14 +449361,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -447011,7 +449377,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -447020,7 +449386,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -447029,16 +449395,16 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=75556F05C75B173BB6FCEE10A208200600C452C512BDA1B012067516A82697DA" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1914614B46DA30475C54EBC3D141EFCCF4B6F9EAAF43D77B36C70522ECC8887D" }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -447047,7 +449413,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -447056,7 +449422,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -447065,7 +449431,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -447074,7 +449440,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -447083,7 +449449,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -447092,392 +449458,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -447485,7 +449851,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -447493,7 +449859,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -447501,7 +449867,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -447509,7 +449875,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -447517,7 +449883,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -447525,532 +449891,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "85 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-10-21 03:55" + "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-01-19 03:55" + "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702834599" + "finding": "1703433272" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -448058,7 +450424,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -448067,7 +450433,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -448076,7 +450442,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -448085,7 +450451,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -448094,7 +450460,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -448102,7 +450468,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -448111,7 +450477,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -448120,7 +450486,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -448129,7 +450495,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -448138,14 +450504,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -448154,7 +450520,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -448163,7 +450529,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -448172,16 +450538,16 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=75556F05C75B173BB6FCEE10A208200600C452C512BDA1B012067516A82697DA" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1914614B46DA30475C54EBC3D141EFCCF4B6F9EAAF43D77B36C70522ECC8887D" }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448190,7 +450556,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448199,7 +450565,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -448208,7 +450574,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -448217,7 +450583,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -448226,7 +450592,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -448235,392 +450601,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448628,7 +450994,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448636,7 +451002,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448644,7 +451010,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448652,7 +451018,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -448660,7 +451026,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -448668,532 +451034,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "85 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2023-10-21 03:55" + "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2024-01-19 03:55" + "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702834654" + "finding": "1703433326" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -449201,7 +451567,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -449210,7 +451576,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -449219,7 +451585,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -449228,7 +451594,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -449237,7 +451603,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -449245,7 +451611,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -449254,7 +451620,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -449263,7 +451629,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -449272,7 +451638,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -449281,14 +451647,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -449297,7 +451663,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -449306,7 +451672,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -449315,16 +451681,16 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=75556F05C75B173BB6FCEE10A208200600C452C512BDA1B012067516A82697DA" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1914614B46DA30475C54EBC3D141EFCCF4B6F9EAAF43D77B36C70522ECC8887D" }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -449333,7 +451699,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -449342,7 +451708,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -449351,7 +451717,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -449360,7 +451726,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -449369,7 +451735,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -449378,392 +451744,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/80.247.12.255", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -449771,7 +452137,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -449779,7 +452145,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -449787,7 +452153,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -449795,7 +452161,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -449803,7 +452169,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -449811,532 +452177,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "85 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-10-21 03:55" + "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-01-19 03:55" + "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702834708" + "finding": "1703433381" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -450344,7 +452710,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -450353,7 +452719,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -450362,7 +452728,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -450371,7 +452737,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -450380,7 +452746,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -450388,7 +452754,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -450397,7 +452763,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -450406,7 +452772,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -450415,7 +452781,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -450424,14 +452790,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -450440,7 +452806,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -450449,7 +452815,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -450458,16 +452824,16 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=75556F05C75B173BB6FCEE10A208200600C452C512BDA1B012067516A82697DA" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1914614B46DA30475C54EBC3D141EFCCF4B6F9EAAF43D77B36C70522ECC8887D" }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -450476,7 +452842,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -450485,7 +452851,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -450494,7 +452860,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -450503,7 +452869,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -450512,7 +452878,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -450521,336 +452887,367 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "opentermsarchive.org/185.21.194.105", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "222" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "_pk_ses.179.cd52", + "value": "1", + "domain": "opentermsarchive.org", + "path": "/", + "expires": 1703434958, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.179.cd52", + "value": "7fff0d1d55f76e72.1703433159.", + "domain": "opentermsarchive.org", + "path": "/", + "expires": 1737388359, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:34:45 GMT", + "date": "Sun, 24 Dec 2023 15:52:38 GMT", "etag": "\"h756mn5f8c1yrl\"", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains; preload", "vary": "Accept-Encoding", @@ -450858,13 +453255,13 @@ "x-frame-options": "DENY", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "1a2565c5-496b-4e05-ad7e-53a484fc294c", + "x-request-id": "86659222-34f0-4d31-8db7-61f678868bb5", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "opentermsarchive.org", - "ip": "80.247.13.145", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -451146,7 +453543,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:33:45", + "@generated": "Sun, 24 Dec 2023 15:51:57", "site": [ { "@name": "https://opentermsarchive.org", @@ -451319,30 +453716,33 @@ "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", "extracted-results": [ - "5 mx1.mail.ovh.net.", - "1 mx0.mail.ovh.net.", "50 mx2.mail.ovh.net.", - "100 mx3.mail.ovh.net.", - "40 mx4.mail.ovh.net." + "1 mx0.mail.ovh.net.", + "5 mx1.mail.ovh.net.", + "40 mx4.mail.ovh.net.", + "100 mx3.mail.ovh.net." ], - "timestamp": "2023-12-17T17:39:52.609572608Z", + "timestamp": "2023-12-24T15:57:44.337291259Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -451358,10 +453758,10 @@ "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", "extracted-results": [ - "ns102.ovh.net.", - "dns102.ovh.net." + "\"v=spf1 include:mx.ovh.com ~all\"", + "\"1|www.opentermsarchive.org\"" ], - "timestamp": "2023-12-17T17:39:52.611976073Z", + "timestamp": "2023-12-24T15:57:44.337737815Z", "matcher-status": true }, { @@ -451396,27 +453796,24 @@ "type": "dns", "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", - "timestamp": "2023-12-17T17:39:53.603872623Z", + "timestamp": "2023-12-24T15:57:44.338687161Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -451432,10 +453829,10 @@ "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", "extracted-results": [ - "\"v=spf1 include:mx.ovh.com ~all\"", - "\"1|www.opentermsarchive.org\"" + "ns102.ovh.net.", + "dns102.ovh.net." ], - "timestamp": "2023-12-17T17:39:53.60641678Z", + "timestamp": "2023-12-24T15:57:44.455143492Z", "matcher-status": true }, { @@ -451464,7 +453861,7 @@ "GET, HEAD" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:39:59.629687234Z", + "timestamp": "2023-12-24T15:57:51.135156165Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451495,7 +453892,7 @@ "contact@opentermsarchive.org" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:04.794277443Z", + "timestamp": "2023-12-24T15:57:56.100222295Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451536,7 +453933,7 @@ "1; mode=block" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:04.884225525Z", + "timestamp": "2023-12-24T15:57:56.191412875Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451563,7 +453960,7 @@ "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:31.498101833Z", + "timestamp": "2023-12-24T15:58:22.459775659Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451595,12 +453992,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830595202Z", + "timestamp": "2023-12-24T15:58:28.013674599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451632,12 +454029,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830635337Z", + "timestamp": "2023-12-24T15:58:28.013724382Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451669,12 +454066,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830651887Z", + "timestamp": "2023-12-24T15:58:28.01374443Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451706,12 +454103,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830667206Z", + "timestamp": "2023-12-24T15:58:28.013760019Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451743,12 +454140,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830681923Z", + "timestamp": "2023-12-24T15:58:28.013773815Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451780,12 +454177,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830695339Z", + "timestamp": "2023-12-24T15:58:28.013788081Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451817,12 +454214,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:36.830708293Z", + "timestamp": "2023-12-24T15:58:28.013800595Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -451850,7 +454247,7 @@ "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org/robots.txt", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:46.364201076Z", + "timestamp": "2023-12-24T15:58:37.500791898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org/robots.txt'", "matcher-status": true }, @@ -451888,15 +454285,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2025-02-17T09:50:19.265Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.061938019Z", + "timestamp": "2023-12-24T15:58:38.134497054Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -451934,16 +454331,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "status", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "84", - "FR" + "client delete prohibited", + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.061976981Z", + "timestamp": "2023-12-24T15:58:38.134539554Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -451981,15 +454378,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrationDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "FR" + "2021-02-17T09:50:19.265Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.061991869Z", + "timestamp": "2023-12-24T15:58:38.134563298Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452027,16 +454424,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "dns102.ovh.net", - "ns102.ovh.net" + "2023-11-28T13:20:00.875Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.062001156Z", + "timestamp": "2023-12-24T15:58:38.134579398Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452074,15 +454470,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "expirationDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "false" + "2025-02-17T09:50:19.265Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.062010333Z", + "timestamp": "2023-12-24T15:58:38.134598073Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452120,16 +454516,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantAddress", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "client delete prohibited", - "client transfer prohibited" + "84", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.062019069Z", + "timestamp": "2023-12-24T15:58:38.134615385Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452167,15 +454563,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2021-02-17T09:50:19.265Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.062035129Z", + "timestamp": "2023-12-24T15:58:38.134632838Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452213,15 +454609,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "nameServers", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2023-11-28T13:20:00.875Z" + "dns102.ovh.net", + "ns102.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:40:47.062050838Z", + "timestamp": "2023-12-24T15:58:38.13464994Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452261,7 +454658,7 @@ "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org/", "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:40:59.367925262Z", + "timestamp": "2023-12-24T15:58:50.681418834Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: opentermsarchive.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org/'", "matcher-status": true }, @@ -452276,7 +454673,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -452291,7 +454689,7 @@ "Let's Encrypt" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:46:38.882041717Z", + "timestamp": "2023-12-24T16:04:30.38764297Z", "matcher-status": true }, { @@ -452305,7 +454703,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -452320,7 +454719,7 @@ "opentermsarchive.org" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:46:38.882145521Z", + "timestamp": "2023-12-24T16:04:30.387766381Z", "matcher-status": true }, { @@ -452335,7 +454734,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -452350,7 +454750,7 @@ "tls12" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:46:40.313544353Z", + "timestamp": "2023-12-24T16:04:31.987629087Z", "matcher-status": true }, { @@ -452365,7 +454765,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -452380,7 +454781,7 @@ "tls13" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T17:46:40.501085969Z", + "timestamp": "2023-12-24T16:04:32.15988207Z", "matcher-status": true } ], @@ -452388,7 +454789,7 @@ { "requestedUrl": "https://opentermsarchive.org/", "finalUrl": "https://opentermsarchive.org/", - "fetchTime": "2023-12-17T17:33:58.961Z", + "fetchTime": "2023-12-24T15:52:11.633Z", "runWarnings": [], "categories": { "performance": { @@ -452451,53 +454852,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5409, + "numericValue": 5410, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1040, - "firstMeaningfulPaint": 1040, - "largestContentfulPaint": 1040, - "interactive": 5409, - "speedIndex": 1237, - "totalBlockingTime": 175, - "maxPotentialFID": 145, + "firstContentfulPaint": 1106, + "firstMeaningfulPaint": 1106, + "largestContentfulPaint": 1106, + "interactive": 5410, + "speedIndex": 1275, + "totalBlockingTime": 232, + "maxPotentialFID": 167, "cumulativeLayoutShift": 0.00007340929243299697, "cumulativeLayoutShiftMainFrame": 0.00007340929243299697, "totalCumulativeLayoutShift": 0.00007340929243299697, "observedTimeOrigin": 0, - "observedTimeOriginTs": 254358108, + "observedTimeOriginTs": 199105064, "observedNavigationStart": 0, - "observedNavigationStartTs": 254358108, - "observedFirstPaint": 502, - "observedFirstPaintTs": 254860328, - "observedFirstContentfulPaint": 502, - "observedFirstContentfulPaintTs": 254860328, - "observedFirstContentfulPaintAllFrames": 502, - "observedFirstContentfulPaintAllFramesTs": 254860328, - "observedFirstMeaningfulPaint": 502, - "observedFirstMeaningfulPaintTs": 254860328, - "observedLargestContentfulPaint": 502, - "observedLargestContentfulPaintTs": 254860328, - "observedLargestContentfulPaintAllFrames": 502, - "observedLargestContentfulPaintAllFramesTs": 254860328, - "observedTraceEnd": 3420, - "observedTraceEndTs": 257778468, - "observedLoad": 1113, - "observedLoadTs": 255470957, - "observedDomContentLoaded": 702, - "observedDomContentLoadedTs": 255060125, + "observedNavigationStartTs": 199105064, + "observedFirstPaint": 489, + "observedFirstPaintTs": 199593748, + "observedFirstContentfulPaint": 489, + "observedFirstContentfulPaintTs": 199593748, + "observedFirstContentfulPaintAllFrames": 489, + "observedFirstContentfulPaintAllFramesTs": 199593748, + "observedFirstMeaningfulPaint": 489, + "observedFirstMeaningfulPaintTs": 199593748, + "observedLargestContentfulPaint": 489, + "observedLargestContentfulPaintTs": 199593748, + "observedLargestContentfulPaintAllFrames": 489, + "observedLargestContentfulPaintAllFramesTs": 199593748, + "observedTraceEnd": 3536, + "observedTraceEndTs": 202640840, + "observedLoad": 1220, + "observedLoadTs": 200325202, + "observedDomContentLoaded": 799, + "observedDomContentLoadedTs": 199903812, "observedCumulativeLayoutShift": 0.00007340929243299697, "observedCumulativeLayoutShiftMainFrame": 0.00007340929243299697, "observedTotalCumulativeLayoutShift": 0.00007340929243299697, - "observedFirstVisualChange": 481, - "observedFirstVisualChangeTs": 254839108, - "observedLastVisualChange": 815, - "observedLastVisualChangeTs": 255173108, - "observedSpeedIndex": 502, - "observedSpeedIndexTs": 254859805 + "observedFirstVisualChange": 486, + "observedFirstVisualChangeTs": 199591064, + "observedLastVisualChange": 1136, + "observedLastVisualChangeTs": 200241064, + "observedSpeedIndex": 526, + "observedSpeedIndexTs": 199631014 }, { "lcpInvalidated": false @@ -452519,18 +454920,18 @@ "numScripts": 20, "numStylesheets": 3, "numFonts": 1, - "numTasks": 507, - "numTasksOver10ms": 9, + "numTasks": 574, + "numTasksOver10ms": 8, "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.01, - "throughput": 28744311.269219015, - "maxRtt": 82.067, - "maxServerLatency": 63.72899999999997, - "totalByteWeight": 776718, - "totalTaskTime": 285.91399999999925, + "rtt": 80.073, + "throughput": 9063171.32380345, + "maxRtt": 83.42, + "maxServerLatency": 116.18400000000001, + "totalByteWeight": 777014, + "totalTaskTime": 287.2559999999995, "mainDocumentTransferSize": 18163 } ] @@ -452625,16 +455026,16 @@ "httpGrade": "B", "apdex": 1, "apdexGrade": "A", - "uptime": 99.896, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-19T03:55:00.000Z", + "testsslExpireDate": "2024-03-19T03:56:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, "lighthouse_performance": 0.55, @@ -452661,7 +455062,7 @@ "http": { "url": "https://open-collectivites.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:50:15 GMT", + "end_time": "Sun, 24 Dec 2023 16:09:15 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -452669,7 +455070,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 17:50:14 GMT", + "Date": "Sun, 24 Dec 2023 16:09:14 GMT", "Referrer-Policy": "same-origin", "Server": "nginx/1.24.0", "Transfer-Encoding": "chunked", @@ -452677,9 +455078,9 @@ "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 45560412, + "scan_id": 45769010, "score": 45, - "start_time": "Sun, 17 Dec 2023 17:50:10 GMT", + "start_time": "Sun, 24 Dec 2023 16:09:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -452859,129 +455260,129 @@ "version": "7.6p1 Ubuntu 4ubuntu0.5", "vulnerabilities": [ { - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", "type": "exploitpack" }, { - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", "type": "exploitpack" }, { - "id": "EDB-ID:46516", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "EDB-ID:46516", "type": "exploitdb" }, { - "id": "EDB-ID:46193", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "EDB-ID:46193", "type": "exploitdb" }, { - "id": "CVE-2019-6111", - "cvss": "5.8", "is_exploit": "false", + "cvss": "5.8", + "id": "CVE-2019-6111", "type": "cve" }, { - "id": "1337DAY-ID-32328", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "1337DAY-ID-32328", "type": "zdt" }, { - "id": "1337DAY-ID-32009", - "cvss": "5.8", "is_exploit": "true", + "cvss": "5.8", + "id": "1337DAY-ID-32009", "type": "zdt" }, { - "id": "SSH_ENUM", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "SSH_ENUM", "type": "canvas" }, { - "id": "PRION:CVE-2018-15919", - "cvss": "5.0", "is_exploit": "false", + "cvss": "5.0", + "id": "PRION:CVE-2018-15919", "type": "prion" }, { - "id": "PRION:CVE-2018-15473", - "cvss": "5.0", "is_exploit": "false", + "cvss": "5.0", + "id": "PRION:CVE-2018-15473", "type": "prion" }, { - "id": "PACKETSTORM:150621", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "PACKETSTORM:150621", "type": "packetstorm" }, { - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", "type": "exploitpack" }, { - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", "type": "exploitpack" }, { - "id": "EDB-ID:45939", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "EDB-ID:45939", "type": "exploitdb" }, { - "id": "EDB-ID:45233", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "EDB-ID:45233", "type": "exploitdb" }, { - "id": "CVE-2018-15919", - "cvss": "5.0", "is_exploit": "false", + "cvss": "5.0", + "id": "CVE-2018-15919", "type": "cve" }, { - "id": "CVE-2018-15473", - "cvss": "5.0", "is_exploit": "false", + "cvss": "5.0", + "id": "CVE-2018-15473", "type": "cve" }, { - "id": "1337DAY-ID-31730", - "cvss": "5.0", "is_exploit": "true", + "cvss": "5.0", + "id": "1337DAY-ID-31730", "type": "zdt" }, { - "id": "PACKETSTORM:151227", - "cvss": "0.0", "is_exploit": "true", + "cvss": "0.0", + "id": "PACKETSTORM:151227", "type": "packetstorm" }, { - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", - "cvss": "0.0", "is_exploit": "true", + "cvss": "0.0", + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", "type": "metasploit" }, { - "id": "1337DAY-ID-30937", - "cvss": "0.0", "is_exploit": "true", + "cvss": "0.0", + "id": "1337DAY-ID-30937", "type": "zdt" } ] @@ -453385,8 +455786,8 @@ "id": "cert_expirationStatus", "ip": "open-collectivites.fr/5.39.67.78", "port": "443", - "severity": "OK", - "finding": "35 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (28)" }, { "id": "cert_notBefore", @@ -453399,7 +455800,7 @@ "id": "cert_notAfter", "ip": "open-collectivites.fr/5.39.67.78", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-01-22 02:59" }, { @@ -453589,7 +455990,7 @@ "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "INFO", - "finding": "1702835505" + "finding": "1703434242" }, { "id": "HSTS", @@ -454206,7 +456607,7 @@ "value": "1", "domain": "open-collectivites.fr", "path": "/", - "expires": 1702837247, + "expires": 1703435986, "size": 17, "httpOnly": false, "secure": false, @@ -454218,10 +456619,10 @@ }, { "name": "_pk_id.175.481d", - "value": "215cd391a89ed4b9.1702835447.", + "value": "ad01d229bd1b4b90.1703434186.", "domain": "open-collectivites.fr", "path": "/", - "expires": 1736790647, + "expires": 1737389386, "size": 43, "httpOnly": false, "secure": false, @@ -454236,7 +456637,7 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:50:46 GMT", + "date": "Sun, 24 Dec 2023 16:09:45 GMT", "referrer-policy": "same-origin", "server": "nginx/1.24.0", "transfer-encoding": "chunked", @@ -454287,7 +456688,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 1000, "latitude": 48.9029, "longitude": 2.529, "time_zone": "Europe/Paris" @@ -454377,7 +456778,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 1000, "latitude": 48.9029, "longitude": 2.529, "time_zone": "Europe/Paris" @@ -454627,7 +457028,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:48:45", + "@generated": "Sun, 24 Dec 2023 16:06:44", "site": [ { "@name": "https://open-collectivites.fr", @@ -454760,23 +457161,20 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -454791,27 +457189,30 @@ "type": "dns", "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", - "timestamp": "2023-12-17T17:53:15.801923091Z", + "extracted-results": [ + "dns101.ovh.net.", + "ns101.ovh.net." + ], + "timestamp": "2023-12-24T16:12:11.864803635Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -454827,28 +457228,28 @@ "type": "dns", "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", - "extracted-results": [ - "10 mx3.mail.ovh.net.", - "1 mx4.mail.ovh.net." - ], - "timestamp": "2023-12-17T17:53:15.889603216Z", + "timestamp": "2023-12-24T16:12:12.054644935Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -454864,10 +457265,10 @@ "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", "extracted-results": [ - "ns101.ovh.net.", - "dns101.ovh.net." + "10 mx3.mail.ovh.net.", + "1 mx4.mail.ovh.net." ], - "timestamp": "2023-12-17T17:53:16.878224417Z", + "timestamp": "2023-12-24T16:12:12.937572719Z", "matcher-status": true }, { @@ -454898,7 +457299,7 @@ "nginx/1.24.0" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:53:32.322816499Z", + "timestamp": "2023-12-24T16:12:28.636592591Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -454925,7 +457326,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:05.448963956Z", + "timestamp": "2023-12-24T16:13:01.919251099Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -454957,12 +457358,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477303073Z", + "timestamp": "2023-12-24T16:13:15.110437315Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -454994,12 +457395,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477368014Z", + "timestamp": "2023-12-24T16:13:15.110486286Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455031,12 +457432,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477383943Z", + "timestamp": "2023-12-24T16:13:15.110506534Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455068,12 +457469,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.47739814Z", + "timestamp": "2023-12-24T16:13:15.110630586Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455105,12 +457506,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477413879Z", + "timestamp": "2023-12-24T16:13:15.110649662Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455142,12 +457543,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "content-security-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477426793Z", + "timestamp": "2023-12-24T16:13:15.110668047Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455179,12 +457580,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.477438916Z", + "timestamp": "2023-12-24T16:13:15.110683986Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455216,12 +457617,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.47745205Z", + "timestamp": "2023-12-24T16:13:15.110700447Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455251,7 +457652,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:18.478022303Z", + "timestamp": "2023-12-24T16:13:15.111571919Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455289,18 +457690,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "registrantPhone", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "FR", - "2 place des Saussaies", - "Paris", - "75008" + "+33.149273723" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.6316677Z", + "timestamp": "2023-12-24T16:13:30.370589911Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455338,15 +457736,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantAddress", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ + "2 place des Saussaies", + "Paris", + "75008", "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631708146Z", + "timestamp": "2023-12-24T16:13:30.370630557Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455384,15 +457785,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "nameServers", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "active" + "ns101.ovh.net", + "dns101.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.63172128Z", + "timestamp": "2023-12-24T16:13:30.370648942Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455430,15 +457832,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "status", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "2021-01-05T11:51:50Z" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631736919Z", + "timestamp": "2023-12-24T16:13:30.370666875Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455476,15 +457878,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrationDate", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "2024-01-05T11:51:50Z" + "2021-01-05T11:51:50Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631756826Z", + "timestamp": "2023-12-24T16:13:30.370684909Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455522,15 +457924,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "expirationDate", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "DGCL" + "2024-01-05T11:51:50Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631770933Z", + "timestamp": "2023-12-24T16:13:30.370698535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455568,7 +457970,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantName", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", @@ -455576,7 +457978,7 @@ "DGCL" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631785029Z", + "timestamp": "2023-12-24T16:13:30.370711749Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455622,7 +458024,7 @@ "4c3hbdbcsnslde99s7ak@u.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631797462Z", + "timestamp": "2023-12-24T16:13:30.370729252Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455660,16 +458062,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "dns101.ovh.net", - "ns101.ovh.net" + "2023-02-28T23:11:21.947366Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631817099Z", + "timestamp": "2023-12-24T16:13:30.370743148Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455707,15 +458108,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantOrg", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "false" + "DGCL" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631836796Z", + "timestamp": "2023-12-24T16:13:30.370755992Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455753,15 +458154,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "2023-02-28T23:11:21.947366Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631853557Z", + "timestamp": "2023-12-24T16:13:30.370768766Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455799,15 +458200,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "secureDNS", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", "extracted-results": [ - "+33.149273723" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T17:54:33.631870689Z", + "timestamp": "2023-12-24T16:13:30.37078142Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", "matcher-status": true }, @@ -455847,7 +458248,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr/", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:52.099230456Z", + "timestamp": "2023-12-24T16:13:48.754699042Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: open-collectivites.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr/'", "matcher-status": true }, @@ -455887,7 +458288,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr/", "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:54:52.099283855Z", + "timestamp": "2023-12-24T16:13:48.754746642Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: open-collectivites.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr/'", "matcher-status": true }, @@ -455937,7 +458338,7 @@ "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:55:49.164070957Z", + "timestamp": "2023-12-24T16:14:45.962172578Z", "matcher-status": true }, { @@ -455951,7 +458352,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -455966,7 +458368,7 @@ "Let's Encrypt" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:31.940748839Z", + "timestamp": "2023-12-24T16:15:29.109947835Z", "matcher-status": true }, { @@ -455980,7 +458382,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -455992,12 +458395,12 @@ "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "www.open-collectivites.fr", "dev.open-collectivites.fr", - "open-collectivites.fr" + "open-collectivites.fr", + "www.open-collectivites.fr" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:31.940871027Z", + "timestamp": "2023-12-24T16:15:29.110085413Z", "matcher-status": true }, { @@ -456012,7 +458415,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -456032,7 +458436,7 @@ "tls10" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:32.290134263Z", + "timestamp": "2023-12-24T16:15:29.706662476Z", "matcher-status": true }, { @@ -456047,7 +458451,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -456067,7 +458472,7 @@ "tls11" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:32.588499322Z", + "timestamp": "2023-12-24T16:15:29.975026597Z", "matcher-status": true }, { @@ -456082,7 +458487,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -456097,7 +458503,7 @@ "tls10" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:32.8885303Z", + "timestamp": "2023-12-24T16:15:30.240417509Z", "matcher-status": true }, { @@ -456112,7 +458518,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -456127,73 +458534,74 @@ "tls11" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:33.190380549Z", + "timestamp": "2023-12-24T16:15:30.51763946Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" + "tls12" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:33.263132375Z", + "timestamp": "2023-12-24T16:15:30.792558343Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "tls12" + "[tls10 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:33.501476681Z", + "timestamp": "2023-12-24T16:15:31.155361129Z", "matcher-status": true }, { @@ -456229,7 +458637,7 @@ "[tls11 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" ], "ip": "5.39.67.78", - "timestamp": "2023-12-17T17:56:33.563756378Z", + "timestamp": "2023-12-24T16:15:31.425721164Z", "matcher-status": true } ], @@ -456237,7 +458645,7 @@ { "requestedUrl": "https://open-collectivites.fr/", "finalUrl": "https://open-collectivites.fr/", - "fetchTime": "2023-12-17T17:49:59.998Z", + "fetchTime": "2023-12-24T16:09:00.305Z", "runWarnings": [], "categories": { "performance": { @@ -456300,53 +458708,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6011, + "numericValue": 5789, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3625, - "firstMeaningfulPaint": 3625, - "largestContentfulPaint": 5059, - "interactive": 6011, - "speedIndex": 3749, - "totalBlockingTime": 3, - "maxPotentialFID": 39, - "cumulativeLayoutShift": 0.0024618055555555556, - "cumulativeLayoutShiftMainFrame": 0.0024618055555555556, - "totalCumulativeLayoutShift": 0.0024618055555555556, + "firstContentfulPaint": 3173, + "firstMeaningfulPaint": 3173, + "largestContentfulPaint": 3480, + "interactive": 5789, + "speedIndex": 3370, + "totalBlockingTime": 2, + "maxPotentialFID": 54, + "cumulativeLayoutShift": 0.20826108805338542, + "cumulativeLayoutShiftMainFrame": 0.20826108805338542, + "totalCumulativeLayoutShift": 0.20826108805338542, "observedTimeOrigin": 0, - "observedTimeOriginTs": 366160356, + "observedTimeOriginTs": 381031134, "observedNavigationStart": 0, - "observedNavigationStartTs": 366160356, - "observedFirstPaint": 898, - "observedFirstPaintTs": 367058242, - "observedFirstContentfulPaint": 898, - "observedFirstContentfulPaintTs": 367058242, - "observedFirstContentfulPaintAllFrames": 898, - "observedFirstContentfulPaintAllFramesTs": 367058242, - "observedFirstMeaningfulPaint": 898, - "observedFirstMeaningfulPaintTs": 367058242, - "observedLargestContentfulPaint": 898, - "observedLargestContentfulPaintTs": 367058242, - "observedLargestContentfulPaintAllFrames": 898, - "observedLargestContentfulPaintAllFramesTs": 367058242, - "observedTraceEnd": 3756, - "observedTraceEndTs": 369916694, - "observedLoad": 1448, - "observedLoadTs": 367607937, - "observedDomContentLoaded": 1059, - "observedDomContentLoadedTs": 367219367, - "observedCumulativeLayoutShift": 0.0024618055555555556, - "observedCumulativeLayoutShiftMainFrame": 0.0024618055555555556, - "observedTotalCumulativeLayoutShift": 0.0024618055555555556, - "observedFirstVisualChange": 908, - "observedFirstVisualChangeTs": 367068356, - "observedLastVisualChange": 1058, - "observedLastVisualChangeTs": 367218356, - "observedSpeedIndex": 922, - "observedSpeedIndexTs": 367082149 + "observedNavigationStartTs": 381031134, + "observedFirstPaint": 782, + "observedFirstPaintTs": 381813606, + "observedFirstContentfulPaint": 782, + "observedFirstContentfulPaintTs": 381813606, + "observedFirstContentfulPaintAllFrames": 782, + "observedFirstContentfulPaintAllFramesTs": 381813606, + "observedFirstMeaningfulPaint": 782, + "observedFirstMeaningfulPaintTs": 381813606, + "observedLargestContentfulPaint": 782, + "observedLargestContentfulPaintTs": 381813606, + "observedLargestContentfulPaintAllFrames": 782, + "observedLargestContentfulPaintAllFramesTs": 381813606, + "observedTraceEnd": 3678, + "observedTraceEndTs": 384709064, + "observedLoad": 1368, + "observedLoadTs": 382399111, + "observedDomContentLoaded": 1000, + "observedDomContentLoadedTs": 382030637, + "observedCumulativeLayoutShift": 0.20826108805338542, + "observedCumulativeLayoutShiftMainFrame": 0.20826108805338542, + "observedTotalCumulativeLayoutShift": 0.20826108805338542, + "observedFirstVisualChange": 786, + "observedFirstVisualChangeTs": 381817134, + "observedLastVisualChange": 1003, + "observedLastVisualChangeTs": 382034134, + "observedSpeedIndex": 805, + "observedSpeedIndexTs": 381835893 }, { "lcpInvalidated": false @@ -456368,18 +458776,18 @@ "numScripts": 8, "numStylesheets": 4, "numFonts": 3, - "numTasks": 1103, + "numTasks": 1139, "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 79.309, - "throughput": 13147979.095093638, - "maxRtt": 87.589, - "maxServerLatency": 86.367, - "totalByteWeight": 1024886, - "totalTaskTime": 239.25299999999888, + "rtt": 76.798, + "throughput": 15824315.488907114, + "maxRtt": 81.675, + "maxServerLatency": 81.671, + "totalByteWeight": 1025154, + "totalTaskTime": 233.60599999999815, "mainDocumentTransferSize": 7458 } ] @@ -456440,7 +458848,7 @@ "nmapGrade": "F", "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-01-22T02:59:00.000Z", "testsslGrade": "B", "cookiesGrade": "B", @@ -456476,7 +458884,7 @@ "http": { "url": "https://mon-suivi-justice.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:55:02 GMT", + "end_time": "Sun, 24 Dec 2023 16:16:40 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -456485,11 +458893,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 17:55:01 GMT", - "ETag": "W/\"7281cdd94a8285609aff30a071e2fbe9\"", - "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "Date": "Sun, 24 Dec 2023 16:16:39 GMT", + "ETag": "W/\"e569d9d07800faf2d9c12dd29d015760\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_mon_suivi_justice_public_session=rJMbfRy1FaZXC0ktSX%2F0xnz%2BF%2BywWpYFSCgFt66X6fh1HR0uvytVIrH31Fw0%2BtdivX4RUsStVlgb16IJlcVOUSxoptLF2xU%2BebgVSewHs1y6d7N36%2F4r97doOi7dnsRqGlbivBd96qezaANz3rbR2oumpxDZf3Fg%2BMOURQ8w5p%2F6EZf7Mj06%2FLL77eAYhml4f29I6%2Fy2TZ93DrNr%2Bu0wpAYF%2Bde2FwUoRAvnbe8w19ngdY%2Fd12wB1jG9aL%2BAdZm34NlWf5JkuAlhBonsxpzJqNNBpfaAjmj2qhrt57YE5XiW7yZ9wAVzYBI%3D--KRkpnyXUxSnhkOOB--aLa5mO5gJEIZIqCGxkGq8g%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_mon_suivi_justice_public_session=MRUNi%2F8yUpks68wCK8JvYcq%2FSNt6BxeDNiASCpdFYsYSUr5Lgau4YkU%2FltHCH1Q1TDXHFXuU69wC%2B%2FU8jfyUVqJAFLHwrLh3whzTRIn4KJTPGWGV1bm1XelhzDy4iuh%2BdbQmvp071UmfPF8xGFnI9ZROLHrCSecTSnJQCObyOgqexdGtGR2F9fFMvB0QWUmEyuBzFWNhNwbeFItyviFDJ4aYdMxjh9%2B8fIRR44IvNMUN7Ib2zC5Q%2FuDI9Da%2B8JUJhcYU%2B0ukxEwNOkrVFx5o1bTQbcG2JEZhGNOrAtWm2lFOXQTh5RqRn40%3D--fXBWVY9GuHkkx0bq--gp6UpvrNHtSfktGAJMneVw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -456497,13 +458905,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "3c0b29fa-fc45-47a5-a80d-f5413bbc95ff, 3c0b29fa-fc45-47a5-a80d-f5413bbc95ff", - "X-Runtime": "0.015932", + "X-Request-ID": "ea76a3ac-f7a8-455c-ac1d-72c1ebc5eb9d, ea76a3ac-f7a8-455c-ac1d-72c1ebc5eb9d", + "X-Runtime": "0.017504", "X-XSS-Protection": "0" }, - "scan_id": 45560453, + "scan_id": 45769057, "score": 45, - "start_time": "Sun, 17 Dec 2023 17:54:58 GMT", + "start_time": "Sun, 24 Dec 2023 16:13:40 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -456699,16 +459107,16 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T17:19:32Z", - "next_check_at": "2023-12-17T18:19:28Z", + "last_check_at": "2023-12-24T16:31:18Z", + "next_check_at": "2023-12-24T17:30:52Z", "mute_until": null, "favicon_url": "https://mon-suivi-justice.beta.gouv.fr/packs/media/images/favicon-7358ba85.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T17:19:35Z", - "expires_at": "2024-01-18T08:38:09Z", + "tested_at": "2023-12-24T08:34:22Z", + "expires_at": "2024-03-18T08:39:15Z", "valid": true, "error": null }, @@ -456742,77 +459150,77 @@ "testssl": [ { "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456820,7 +459228,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456828,7 +459236,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456836,7 +459244,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -456844,7 +459252,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -456852,7 +459260,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -456860,546 +459268,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-10-20 08:38" + "finding": "2023-12-19 08:39" }, { "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-01-18 08:38" + "finding": "2024-03-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702835793" + "finding": "1703434716" }, { "id": "HSTS_multiple", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -457407,7 +459815,7 @@ }, { "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -457416,7 +459824,7 @@ }, { "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -457425,7 +459833,7 @@ }, { "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -457434,7 +459842,7 @@ }, { "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -457443,7 +459851,7 @@ }, { "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -457451,7 +459859,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -457460,7 +459868,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -457469,7 +459877,7 @@ }, { "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -457478,7 +459886,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -457487,14 +459895,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -457503,7 +459911,7 @@ }, { "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -457512,7 +459920,7 @@ }, { "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -457521,16 +459929,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A59C30173C3FAAFD7BEFA3ABFF0FE6886EAE32DB2271DE46A6F7F2E6A015116F" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" }, { "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -457539,7 +459947,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -457548,7 +459956,7 @@ }, { "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -457557,7 +459965,7 @@ }, { "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -457566,7 +459974,7 @@ }, { "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -457575,7 +459983,7 @@ }, { "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -457584,392 +459992,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", + "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457977,7 +460385,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457985,7 +460393,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -457993,7 +460401,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -458001,7 +460409,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -458009,7 +460417,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -458017,546 +460425,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-10-20 08:38" + "finding": "2023-12-19 08:39" }, { "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-01-18 08:38" + "finding": "2024-03-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702835848" + "finding": "1703434816" }, { "id": "HSTS_multiple", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -458564,7 +460972,7 @@ }, { "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -458573,7 +460981,7 @@ }, { "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -458582,7 +460990,7 @@ }, { "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -458591,7 +460999,7 @@ }, { "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -458600,7 +461008,7 @@ }, { "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -458608,7 +461016,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -458617,7 +461025,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -458626,7 +461034,7 @@ }, { "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -458635,7 +461043,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -458644,14 +461052,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -458660,7 +461068,7 @@ }, { "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -458669,7 +461077,7 @@ }, { "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -458678,16 +461086,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A59C30173C3FAAFD7BEFA3ABFF0FE6886EAE32DB2271DE46A6F7F2E6A015116F" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" }, { "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -458696,7 +461104,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -458705,7 +461113,7 @@ }, { "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -458714,7 +461122,7 @@ }, { "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -458723,7 +461131,7 @@ }, { "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -458732,7 +461140,7 @@ }, { "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -458741,315 +461149,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", + "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -459324,7 +461732,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "049AC0A4C3CDF247364EDC32474FC2146A6E" + "finding": "0367D2D5715C541D7A28CAA99D7288870029" }, { "id": "cert_serialNumberLen", @@ -459338,21 +461746,21 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1219242B4EC7C294CED5F96A80182396046EC742" + "finding": "A54CCC418502E998D48C7583C7A7506A431FD13F" }, { "id": "cert_fingerprintSHA256", "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "A59C30173C3FAAFD7BEFA3ABFF0FE6886EAE32DB2271DE46A6F7F2E6A015116F" + "finding": "2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" }, { "id": "cert", "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -459401,21 +461809,21 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2023-10-20 08:38" + "finding": "2023-12-19 08:39" }, { "id": "cert_notAfter", "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2024-01-18 08:38" + "finding": "2024-03-18 08:39" }, { "id": "cert_extlifeSpan", @@ -459604,7 +462012,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702835903" + "finding": "1703434915" }, { "id": "HSTS_multiple", @@ -459840,7 +462248,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A59C30173C3FAAFD7BEFA3ABFF0FE6886EAE32DB2271DE46A6F7F2E6A015116F" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" }, { "id": "LOGJAM", @@ -460213,77 +462621,77 @@ }, { "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460291,7 +462699,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460299,7 +462707,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460307,7 +462715,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -460315,7 +462723,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -460323,7 +462731,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -460331,546 +462739,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-10-20 08:38" + "finding": "2023-12-19 08:39" }, { "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-01-18 08:38" + "finding": "2024-03-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702835958" + "finding": "1703435016" }, { "id": "HSTS_multiple", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -460878,7 +463286,7 @@ }, { "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -460887,7 +463295,7 @@ }, { "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -460896,7 +463304,7 @@ }, { "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -460905,7 +463313,7 @@ }, { "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -460914,7 +463322,7 @@ }, { "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -460922,7 +463330,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -460931,7 +463339,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -460940,7 +463348,7 @@ }, { "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -460949,7 +463357,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -460958,14 +463366,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -460974,7 +463382,7 @@ }, { "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -460983,7 +463391,7 @@ }, { "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -460992,16 +463400,16 @@ }, { "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A59C30173C3FAAFD7BEFA3ABFF0FE6886EAE32DB2271DE46A6F7F2E6A015116F" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" }, { "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -461010,7 +463418,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -461019,7 +463427,7 @@ }, { "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -461028,7 +463436,7 @@ }, { "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -461037,7 +463445,7 @@ }, { "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -461046,7 +463454,7 @@ }, { "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -461055,325 +463463,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "223" + "finding": "403" } ], "thirdparties": { @@ -461381,7 +463789,7 @@ "cookies": [ { "name": "_mon_suivi_justice_public_session", - "value": "h%2BNLk8wWC6JZZsIXH%2Fl9QUUqZ7gkCdYWPzDq5lJkQ5cFPAnfd64Px1tfzlLUE22djRgmISLjtNRWlYi54S4hde8t%2B7rSM8zT2Yuaitu5GQTMhhHhQHG98aATNZmcErNT73XZIlROFE0%2FMqQdHfCExMgN4bPWmgeagXYY%2FyQeHaa1BcOZFTpmRzH8QEJn209oL8u8MCKlBayBPHTmzyvkg15CJsGG185BZQdk7TF45BuKvfksMlBLn8hLZi9iaeo6z71%2FYTZdtrKsbfwqFNIIgZN0ZMMe%2Fgr2Gqk2tS11sYpkdFJPa2U%2FSy4%3D--GKAdwuB2zIAU0VWG--qhzZEMyrbI%2BFWxMPd8y2Fg%3D%3D", + "value": "cFey3RiEHVC5An7pblPrnqdyxprJ357I3tsJ76SRr4eSvAaJxKPMz0AyuMEiYeJmHhDnsxDAJ0RwY0cxsJy%2BngbJlemmsM6aslSz3DpbKx4qEKvwqI9EALdHchGqL%2FxxaFHLgyw%2BO7HWrRCTArbZ4ZVT3UUmlcYJu4WW1NYxAhiGvYnD7A27NBK38Q9hGAYKrTf7BRWyADaUgdhHai45ChHsfOQym9loqXQJQvvUgJe4Ekyy2CkANcxjVtuc973kFcGbRk%2Fj6vYym9S139Uw%2F6iA2G9dFAZd%2FR%2BijU1ns9sgWIUUm2YNIDg%3D--W4dy51SFst28F6U%2F--OA%2B30hXAJzRBpyqqpL42Lg%3D%3D", "domain": "mon-suivi-justice.beta.gouv.fr", "path": "/", "expires": -1, @@ -461399,24 +463807,24 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:55:34 GMT", - "etag": "W/\"8a2f787fe92f9db15506162d0739389f\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 24 Dec 2023 16:16:59 GMT", + "etag": "W/\"0e49407f95a9740d3530f5608f815c27\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_mon_suivi_justice_public_session=h%2BNLk8wWC6JZZsIXH%2Fl9QUUqZ7gkCdYWPzDq5lJkQ5cFPAnfd64Px1tfzlLUE22djRgmISLjtNRWlYi54S4hde8t%2B7rSM8zT2Yuaitu5GQTMhhHhQHG98aATNZmcErNT73XZIlROFE0%2FMqQdHfCExMgN4bPWmgeagXYY%2FyQeHaa1BcOZFTpmRzH8QEJn209oL8u8MCKlBayBPHTmzyvkg15CJsGG185BZQdk7TF45BuKvfksMlBLn8hLZi9iaeo6z71%2FYTZdtrKsbfwqFNIIgZN0ZMMe%2Fgr2Gqk2tS11sYpkdFJPa2U%2FSy4%3D--GKAdwuB2zIAU0VWG--qhzZEMyrbI%2BFWxMPd8y2Fg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_mon_suivi_justice_public_session=cFey3RiEHVC5An7pblPrnqdyxprJ357I3tsJ76SRr4eSvAaJxKPMz0AyuMEiYeJmHhDnsxDAJ0RwY0cxsJy%2BngbJlemmsM6aslSz3DpbKx4qEKvwqI9EALdHchGqL%2FxxaFHLgyw%2BO7HWrRCTArbZ4ZVT3UUmlcYJu4WW1NYxAhiGvYnD7A27NBK38Q9hGAYKrTf7BRWyADaUgdhHai45ChHsfOQym9loqXQJQvvUgJe4Ekyy2CkANcxjVtuc973kFcGbRk%2Fj6vYym9S139Uw%2F6iA2G9dFAZd%2FR%2BijU1ns9sgWIUUm2YNIDg%3D--W4dy51SFst28F6U%2F--OA%2B30hXAJzRBpyqqpL42Lg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "8329ef4b-d027-44d0-8155-8ff38542a350\n8329ef4b-d027-44d0-8155-8ff38542a350", - "x-runtime": "0.106436", + "x-request-id": "40b6ef0a-3791-4633-abf3-a1a3124be7f6\n40b6ef0a-3791-4633-abf3-a1a3124be7f6", + "x-runtime": "0.017072", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "mon-suivi-justice.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -461614,7 +464022,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:54:33", + "@generated": "Sun, 24 Dec 2023 16:13:14", "site": [ { "@name": "https://mon-suivi-justice.beta.gouv.fr", @@ -461747,20 +464155,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -461776,10 +464188,10 @@ "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T18:00:42.735701861Z", + "timestamp": "2023-12-24T16:25:26.31582323Z", "matcher-status": true }, { @@ -461814,27 +464226,26 @@ "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", - "timestamp": "2023-12-17T18:00:42.799072819Z", + "timestamp": "2023-12-24T16:25:26.590665029Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -461844,37 +464255,38 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", - "matched-at": "_dmarc.mon-suivi-justice.beta.gouv.fr", + "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "\"Sendinblue-code:aa0242da3881fa910a302178893d437f\"", + "\"brevo-code:6a4eccf98af09a99d68fd8f855ab3e7e\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2023-12-17T18:00:42.815075706Z", + "timestamp": "2023-12-24T16:25:27.31198375Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -461884,37 +464296,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", - "matched-at": "mon-suivi-justice.beta.gouv.fr", + "matched-at": "_dmarc.mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T18:00:43.635897693Z", + "timestamp": "2023-12-24T16:25:27.453457972Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -461930,11 +464339,10 @@ "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:6a4eccf98af09a99d68fd8f855ab3e7e\"", - "\"Sendinblue-code:aa0242da3881fa910a302178893d437f\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T18:00:43.869464528Z", + "timestamp": "2023-12-24T16:25:27.456874784Z", "matcher-status": true }, { @@ -461971,8 +464379,8 @@ "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:00:55.865634409Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:25:46.325560593Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462004,12 +464412,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.696005988Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795149277Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462041,12 +464449,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.69605042Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795197046Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462078,12 +464486,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.696066981Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795222092Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462115,12 +464523,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.696082891Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795245115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462152,12 +464560,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.696100373Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795262718Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462189,12 +464597,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:01:33.696117665Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:26:40.795281012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462209,7 +464617,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -462223,8 +464632,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:07:40.630472757Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:33:13.441146995Z", "matcher-status": true }, { @@ -462238,7 +464647,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -462252,8 +464662,8 @@ "extracted-results": [ "mon-suivi-justice.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:07:40.630588832Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:33:13.441253783Z", "matcher-status": true }, { @@ -462268,7 +464678,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -462282,8 +464693,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:07:42.074282504Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:33:16.056278661Z", "matcher-status": true }, { @@ -462298,7 +464709,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -462312,8 +464724,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:07:42.27471489Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T16:33:16.367508628Z", "matcher-status": true } ], @@ -462321,7 +464733,7 @@ { "requestedUrl": "https://mon-suivi-justice.beta.gouv.fr/", "finalUrl": "https://mon-suivi-justice.beta.gouv.fr/", - "fetchTime": "2023-12-17T17:54:47.659Z", + "fetchTime": "2023-12-24T16:13:28.967Z", "runWarnings": [], "categories": { "performance": { @@ -462384,53 +464796,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1990, + "numericValue": 1732, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1589, - "firstMeaningfulPaint": 1589, - "largestContentfulPaint": 1771, - "interactive": 1990, - "speedIndex": 2172, - "totalBlockingTime": 1, - "maxPotentialFID": 52, + "firstContentfulPaint": 1732, + "firstMeaningfulPaint": 1732, + "largestContentfulPaint": 1917, + "interactive": 1732, + "speedIndex": 2651, + "totalBlockingTime": 0, + "maxPotentialFID": 40, "cumulativeLayoutShift": 0.010546875, "cumulativeLayoutShiftMainFrame": 0.010546875, "totalCumulativeLayoutShift": 0.010546875, "observedTimeOrigin": 0, - "observedTimeOriginTs": 236117735, + "observedTimeOriginTs": 254636730, "observedNavigationStart": 0, - "observedNavigationStartTs": 236117735, - "observedFirstPaint": 688, - "observedFirstPaintTs": 236805999, - "observedFirstContentfulPaint": 688, - "observedFirstContentfulPaintTs": 236805999, - "observedFirstContentfulPaintAllFrames": 688, - "observedFirstContentfulPaintAllFramesTs": 236805999, - "observedFirstMeaningfulPaint": 688, - "observedFirstMeaningfulPaintTs": 236805999, - "observedLargestContentfulPaint": 688, - "observedLargestContentfulPaintTs": 236805999, - "observedLargestContentfulPaintAllFrames": 688, - "observedLargestContentfulPaintAllFramesTs": 236805999, - "observedTraceEnd": 3326, - "observedTraceEndTs": 239443585, - "observedLoad": 1019, - "observedLoadTs": 237136555, - "observedDomContentLoaded": 687, - "observedDomContentLoadedTs": 236804956, + "observedNavigationStartTs": 254636730, + "observedFirstPaint": 1010, + "observedFirstPaintTs": 255646816, + "observedFirstContentfulPaint": 1010, + "observedFirstContentfulPaintTs": 255646816, + "observedFirstContentfulPaintAllFrames": 1010, + "observedFirstContentfulPaintAllFramesTs": 255646816, + "observedFirstMeaningfulPaint": 1010, + "observedFirstMeaningfulPaintTs": 255646816, + "observedLargestContentfulPaint": 1010, + "observedLargestContentfulPaintTs": 255646816, + "observedLargestContentfulPaintAllFrames": 1010, + "observedLargestContentfulPaintAllFramesTs": 255646816, + "observedTraceEnd": 3924, + "observedTraceEndTs": 258561088, + "observedLoad": 1614, + "observedLoadTs": 256250753, + "observedDomContentLoaded": 1009, + "observedDomContentLoadedTs": 255645545, "observedCumulativeLayoutShift": 0.010546875, "observedCumulativeLayoutShiftMainFrame": 0.010546875, "observedTotalCumulativeLayoutShift": 0.010546875, - "observedFirstVisualChange": 689, - "observedFirstVisualChangeTs": 236806735, - "observedLastVisualChange": 1306, - "observedLastVisualChangeTs": 237423735, - "observedSpeedIndex": 706, - "observedSpeedIndexTs": 236823860 + "observedFirstVisualChange": 1019, + "observedFirstVisualChangeTs": 255655730, + "observedLastVisualChange": 1636, + "observedLastVisualChangeTs": 256272730, + "observedSpeedIndex": 1041, + "observedSpeedIndexTs": 255677606 }, { "lcpInvalidated": false @@ -462452,19 +464864,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 547, - "numTasksOver10ms": 4, + "numTasks": 578, + "numTasksOver10ms": 2, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.944, - "throughput": 8232471.332789084, - "maxRtt": 86.166, - "maxServerLatency": 17.26299999999999, - "totalByteWeight": 279629, - "totalTaskTime": 150.41300000000015, - "mainDocumentTransferSize": 3971 + "rtt": 150.428, + "throughput": 4640688.185322322, + "maxRtt": 152.103, + "maxServerLatency": 2.410000000000025, + "totalByteWeight": 282204, + "totalTaskTime": 143.54900000000006, + "mainDocumentTransferSize": 3953 } ] } @@ -462525,7 +464937,7 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-18T08:38:00.000Z", + "testsslExpireDate": "2024-03-18T08:39:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, @@ -462557,7 +464969,7 @@ "http": { "url": "https://ellesfontlaculture.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 17:59:14 GMT", + "end_time": "Sun, 24 Dec 2023 16:16:40 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -462566,13 +464978,13 @@ "Cache-Control": "max-age=0, private, must-revalidate", "Connection": "keep-alive", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 17:59:12 GMT", - "Etag": "W/\"e958f3ad5f1c0e0c0578e8feba31eb41\"", + "Date": "Sun, 24 Dec 2023 16:16:38 GMT", + "Etag": "W/\"a9fe7f9726f59c49f0f7a47d32ea5eee\"", "Link": "; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_ellesfontlaphoto_session=T0QgOB08fUVmq%2BPgcf0aL1HsEC08P3O4IVh1KYLqPwqGqPCCQlv%2FgSNyn4BMmZYOX92LjWpjR%2F%2BBLR9adgyGSR2NC48dbDlWzx8xbPH4ija%2Br2aefyJRx6wiW2yakyZE88ahAqgRGLeIxj7aVMU6PiDiJodVxbAk6n%2BQZOCycIM6upIIA%2BAxnLJCZXJcy%2BTh6tpnqNrpmruPRdZPdAPEyAyq69cOXiR%2BxHMX1Ty6nhVLbIAGTJGZPuDSv%2BDOMw8Gp1u4kRtk1qyB4qNfKwmu4YZ2k1oH2BnIrMYciKTVJDj1j6JVUOj9b1ofJ1ITB6o8N3tM0eAitzqF9vMrgznKQx5owcDeYIAAw2NA%2FqeQPmMQxtM13DnSE0iA2yzdhVRXbEjxRctc%2FU4YIdbVLFxr%2F%2F%2Fa7BQbVCsCXB%2FbdPZCHCyHJeZul6Vjo%2BLDNx6kDzcOoZyD3k8JM7tdM5ib1zQ2nXKNh5w5IHeORrlrvkPySwnExeQoITtYeJzksQ%2B8--Lmsvglo0PdHeexAg--KaSLYvfFDG9VkYyK5VyLCg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_ellesfontlaphoto_session=dj7oqskx71LwtLQ2Arf0H4wiv63aYeBOumhEu7X4HmTT9hkeiyOLR3TAGGIL%2BaI%2BjtnD1IHqTE%2FXSmlBY69QHciLm1JNXKEylN%2FGPqXk6spvh7XJYI3%2BUn71nGdVUulYi8wYUUDKj3jwDAdGnnbcepZCeV7ONjxSBx9ARAi%2Byl8Pf%2FXmf03SgFpR6jQ724Em4mx0OUzNI%2BN6dGetJE%2FQUOLCBRQpdCoFkMDMndnaM9tyrGFU1VX9wwzHsMhScL81ph8UtKOMXfpnpNDdVI3csdUAXVlb4%2BhVyosACJU3kNCzNHq8UMtZFZoPD1TigPxbvIo7sIcOmuOsXXaHxh49rpEBc90Ky0eCv3AvbjohmqkZFcWsHL6zhYIH3WCqEMcs5iOWs33v8uuPJ%2FQ8nAzjHztjWf91aECOyTpOtmc93NQoZJMpzcWXKgmTIuDmg9TcS7LtSPwwxAXFmUZsyc8s9%2BB%2FgF%2BlWkIcSB31dJMKooYzrRDku97NZGCyWjzj--UOnh3T9r6IU%2Bi0HR--t5VpChinCNq5gqqDbQfLCA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31557600", - "Traceresponse": "00-17a1b04698b699650a1eb2c8065a803c-e0305b4b317b599d-01", + "Traceresponse": "00-17a3d0bdd7e9925f94f24503623d3aa7-4f82ebababe5e8cd-01", "Vary": "Accept", "Via": "1.1 varnish, 1.1 varnish", "X-Cache": "MISS, MISS", @@ -462586,15 +464998,15 @@ "X-Platform-Cluster": "tl34jw4qs4bu2-master-7rqtwti", "X-Platform-Processor": "gwzrtyfmq5bg3qickflrztm5jm", "X-Platform-Router": "nthylk4d6puxch5isukqy3sywa", - "X-Request-Id": "be9522db-5ab1-4664-a9ef-4baa8f495ef6", - "X-Runtime": "0.590505", - "X-Served-By": "cache-par-lfpg1960026-PAR, cache-pao-kpao1770066-PAO", + "X-Request-Id": "6bb19144-cdaf-4e0a-92ca-0449fea868ab", + "X-Runtime": "0.411940", + "X-Served-By": "cache-par-lfpg1960057-PAR, cache-sjc10052-SJC", "X-Xss-Protection": "1; mode=block", "transfer-encoding": "chunked" }, - "scan_id": 45560496, + "scan_id": 45769083, "score": 70, - "start_time": "Sun, 17 Dec 2023 17:59:07 GMT", + "start_time": "Sun, 24 Dec 2023 16:16:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -463145,8 +465557,8 @@ "id": "cert_expirationStatus", "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", - "severity": "OK", - "finding": "32 >= 30 days" + "severity": "MEDIUM", + "finding": "expires < 30 days (25)" }, { "id": "cert_notBefore", @@ -463159,7 +465571,7 @@ "id": "cert_notAfter", "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-01-19 06:35" }, { @@ -463349,7 +465761,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "1702836046" + "finding": "1703434695" }, { "id": "HSTS", @@ -463905,7 +466317,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "54" } ], "thirdparties": { @@ -463961,7 +466373,7 @@ "value": "1", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1702837785, + "expires": 1703436435, "size": 17, "httpOnly": false, "secure": false, @@ -463973,10 +466385,10 @@ }, { "name": "_pk_id.187.1dd6", - "value": "1b59e64d69e697d4.1702835985.", + "value": "2662e56c991c1c25.1703434636.", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1736791185, + "expires": 1737389836, "size": 43, "httpOnly": false, "secure": false, @@ -463988,11 +466400,11 @@ }, { "name": "_ellesfontlaphoto_session", - "value": "FPmb4T3oiMoLLE3n7kgncDFdZxb6zR7Eg07Vtf4UDHN1Fm1VDPHeN4SSnS%2FlKvKQnBFZBjFxIVBAgXMbBtq3my54yalUzkcexA4YApEk8zKODbpUQIi81GNjG%2FP%2Bpz2Am%2BtPuDkdaAsvLrzwllJ1klXG6dE82%2FCkFC4NYlv3NMUBwwvgQSELgKjnq%2Fkvo95gHbUxxXGk6oNRmSFcAs8zqU1sJgyBokQqV3PnN1AGbuT0VADdgap%2Bw3%2BMW5OrQo%2B7qbqYasyMaVQ2lrSa9tue5wQpgrrrRvH0LVtDRaK0NfDWkLqPFVWv6RJFu42yCcFOibhWUnNUhmsHIyJtUN4lCSSTTatXcNZsMmL9Tx1jWkWJLZK1dAE8TJPb1sDTokyyyE3yPxIG6YhLqreJ5EqSuk%2B9lCZNLXlMmI4GU%2FnehqWbbae%2BbtOtK6etPDYl397HbMec8bupO4QSHjFVJ8VkTWfCWYtCeZxOI7lOfExr4n%2FSJLcBUeLqae%2B0KngW--hpRZMmQWziZQuwmo--%2BR9LrZKHWzmNubGDmUpfHQ%3D%3D", + "value": "eMlDx43xZtG%2BuR%2BopPeDgQ3DajNseBzREKUsP9sllLjRe96ccg6a85uzfHMWHWw1phuASEAbsCgjXyXEvka6Nmm%2Ba7pgAUdwnCtltKGwriaKNhvFSV0UstM%2FXlhXYZGq3cY7Hg1SDiiY1uCY5LkAwj3r7v%2FXSjGu1s8ZqX8vA1M4V5cxEUV5qOj5R%2FL0LN4Jm7zn3EnuwlJaLFM4pPitMXfy6RYJLKFlnKmocOxY4S7NT1y9T3dyIYWyZmqhxvxnEIiQpoD1vxlhTf6%2BB%2FIao50Ynw5WXyd85BQu%2BW5aUGoyuwdkecy%2FKhFISDyVHrf4yWKwv%2BZaVbMhFfKbxagU0j60S45Z2tx9aEvoUumweaqyGCquQ5NSDyJPm%2Bnu4T7HeGPYsnvRO2WzvWauKUjnAu1%2B0mVbnBFxH8N1Gn0xqPcB15x5hcd7Glu1u%2Bfk%2BhgYlmPOiptCBJ2Pal5KRmY4rzYUdMnta56MCkuzpJQvfwZkuPnwnTCFR5WxmfiE--zL7mg9Eg5bDwFIdU--mofEjLb%2FV5RjGL4VsHnuXg%3D%3D", "domain": "ellesfontla.culture.gouv.fr", "path": "/", "expires": -1, - "size": 611, + "size": 613, "httpOnly": true, "secure": true, "session": true, @@ -464006,13 +466418,13 @@ "accept-ranges": "bytes", "cache-control": "max-age=0, private, must-revalidate", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 17:59:44 GMT", - "etag": "W/\"fe7e8ba2330d6b87752bf19716abecb8\"", + "date": "Sun, 24 Dec 2023 16:17:15 GMT", + "etag": "W/\"0ed2eb07f1cca924d36e6952a6060a5d\"", "link": "; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_ellesfontlaphoto_session=FPmb4T3oiMoLLE3n7kgncDFdZxb6zR7Eg07Vtf4UDHN1Fm1VDPHeN4SSnS%2FlKvKQnBFZBjFxIVBAgXMbBtq3my54yalUzkcexA4YApEk8zKODbpUQIi81GNjG%2FP%2Bpz2Am%2BtPuDkdaAsvLrzwllJ1klXG6dE82%2FCkFC4NYlv3NMUBwwvgQSELgKjnq%2Fkvo95gHbUxxXGk6oNRmSFcAs8zqU1sJgyBokQqV3PnN1AGbuT0VADdgap%2Bw3%2BMW5OrQo%2B7qbqYasyMaVQ2lrSa9tue5wQpgrrrRvH0LVtDRaK0NfDWkLqPFVWv6RJFu42yCcFOibhWUnNUhmsHIyJtUN4lCSSTTatXcNZsMmL9Tx1jWkWJLZK1dAE8TJPb1sDTokyyyE3yPxIG6YhLqreJ5EqSuk%2B9lCZNLXlMmI4GU%2FnehqWbbae%2BbtOtK6etPDYl397HbMec8bupO4QSHjFVJ8VkTWfCWYtCeZxOI7lOfExr4n%2FSJLcBUeLqae%2B0KngW--hpRZMmQWziZQuwmo--%2BR9LrZKHWzmNubGDmUpfHQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_ellesfontlaphoto_session=eMlDx43xZtG%2BuR%2BopPeDgQ3DajNseBzREKUsP9sllLjRe96ccg6a85uzfHMWHWw1phuASEAbsCgjXyXEvka6Nmm%2Ba7pgAUdwnCtltKGwriaKNhvFSV0UstM%2FXlhXYZGq3cY7Hg1SDiiY1uCY5LkAwj3r7v%2FXSjGu1s8ZqX8vA1M4V5cxEUV5qOj5R%2FL0LN4Jm7zn3EnuwlJaLFM4pPitMXfy6RYJLKFlnKmocOxY4S7NT1y9T3dyIYWyZmqhxvxnEIiQpoD1vxlhTf6%2BB%2FIao50Ynw5WXyd85BQu%2BW5aUGoyuwdkecy%2FKhFISDyVHrf4yWKwv%2BZaVbMhFfKbxagU0j60S45Z2tx9aEvoUumweaqyGCquQ5NSDyJPm%2Bnu4T7HeGPYsnvRO2WzvWauKUjnAu1%2B0mVbnBFxH8N1Gn0xqPcB15x5hcd7Glu1u%2Bfk%2BhgYlmPOiptCBJ2Pal5KRmY4rzYUdMnta56MCkuzpJQvfwZkuPnwnTCFR5WxmfiE--zL7mg9Eg5bDwFIdU--mofEjLb%2FV5RjGL4VsHnuXg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31557600", - "traceresponse": "00-17a1b04e2c50f599b508775c6f30610d-11bb8a4940be5c51-01", + "traceresponse": "00-17a3d0c6743c0e4da03cb7f830d57b2b-2192b4a25687dd6d-01", "via": "1.1 varnish, 1.1 varnish", "x-cache": "MISS, MISS", "x-cache-hits": "0, 0", @@ -464025,9 +466437,9 @@ "x-platform-cluster": "tl34jw4qs4bu2-master-7rqtwti", "x-platform-processor": "gwzrtyfmq5bg3qickflrztm5jm", "x-platform-router": "nthylk4d6puxch5isukqy3sywa", - "x-request-id": "b53a7c7c-978d-4110-b7b8-c45cf77b7d64", - "x-runtime": "0.631367", - "x-served-by": "cache-par-lfpg1960047-PAR, cache-iad-kcgs7200149-IAD", + "x-request-id": "e0941fea-6088-4aa2-80ad-42e4f147b654", + "x-runtime": "0.503674", + "x-served-by": "cache-par-lfpg1960022-PAR, cache-iad-kiad7000049-IAD", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -464089,7 +466501,7 @@ }, { "hostname": "res.cloudinary.com", - "ip": "23.39.184.46", + "ip": "23.220.128.40", "geoip": { "city": { "geoname_id": 4744870, @@ -464199,7 +466611,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 17:58:34", + "@generated": "Sun, 24 Dec 2023 16:15:45", "site": [ { "@name": "https://ellesfontlaculture.beta.gouv.fr", @@ -464307,7 +466719,7 @@ { "requestedUrl": "https://ellesfontlaculture.beta.gouv.fr/", "finalUrl": "https://ellesfontla.culture.gouv.fr/", - "fetchTime": "2023-12-17T17:58:49.535Z", + "fetchTime": "2023-12-24T16:15:59.786Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://ellesfontlaculture.beta.gouv.fr/) was redirected to https://ellesfontla.culture.gouv.fr/. Try testing the second URL directly." ], @@ -464331,7 +466743,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.81 + "score": 0.8 }, "best-practices": { "title": "Best Practices", @@ -464372,53 +466784,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8231, + "numericValue": 8671, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2673, - "firstMeaningfulPaint": 3206, - "largestContentfulPaint": 4525, - "interactive": 8231, - "speedIndex": 5153, - "totalBlockingTime": 146, - "maxPotentialFID": 216, - "cumulativeLayoutShift": 0.006154681735568577, - "cumulativeLayoutShiftMainFrame": 0.006154681735568577, - "totalCumulativeLayoutShift": 0.006154681735568577, + "firstContentfulPaint": 2620, + "firstMeaningfulPaint": 2620, + "largestContentfulPaint": 6121, + "interactive": 8671, + "speedIndex": 3207, + "totalBlockingTime": 152, + "maxPotentialFID": 201, + "cumulativeLayoutShift": 0.009821980158487956, + "cumulativeLayoutShiftMainFrame": 0.009821980158487956, + "totalCumulativeLayoutShift": 0.009821980158487956, "observedTimeOrigin": 0, - "observedTimeOriginTs": 322223193, + "observedTimeOriginTs": 259133405, "observedNavigationStart": 0, - "observedNavigationStartTs": 322223193, - "observedFirstPaint": 1523, - "observedFirstPaintTs": 323745740, - "observedFirstContentfulPaint": 1523, - "observedFirstContentfulPaintTs": 323745740, - "observedFirstContentfulPaintAllFrames": 1523, - "observedFirstContentfulPaintAllFramesTs": 323745740, - "observedFirstMeaningfulPaint": 1523, - "observedFirstMeaningfulPaintTs": 323745740, - "observedLargestContentfulPaint": 1523, - "observedLargestContentfulPaintTs": 323745740, - "observedLargestContentfulPaintAllFrames": 1523, - "observedLargestContentfulPaintAllFramesTs": 323745740, - "observedTraceEnd": 4427, - "observedTraceEndTs": 326650362, - "observedLoad": 2119, - "observedLoadTs": 324341776, - "observedDomContentLoaded": 1439, - "observedDomContentLoadedTs": 323662344, - "observedCumulativeLayoutShift": 0.006154681735568577, - "observedCumulativeLayoutShiftMainFrame": 0.006154681735568577, - "observedTotalCumulativeLayoutShift": 0.006154681735568577, - "observedFirstVisualChange": 1530, - "observedFirstVisualChangeTs": 323753193, - "observedLastVisualChange": 1980, - "observedLastVisualChangeTs": 324203193, - "observedSpeedIndex": 1538, - "observedSpeedIndexTs": 323761216 + "observedNavigationStartTs": 259133405, + "observedFirstPaint": 1171, + "observedFirstPaintTs": 260304110, + "observedFirstContentfulPaint": 1171, + "observedFirstContentfulPaintTs": 260304110, + "observedFirstContentfulPaintAllFrames": 1171, + "observedFirstContentfulPaintAllFramesTs": 260304110, + "observedFirstMeaningfulPaint": 1171, + "observedFirstMeaningfulPaintTs": 260304110, + "observedLargestContentfulPaint": 1312, + "observedLargestContentfulPaintTs": 260445154, + "observedLargestContentfulPaintAllFrames": 1312, + "observedLargestContentfulPaintAllFramesTs": 260445154, + "observedTraceEnd": 3814, + "observedTraceEndTs": 262947443, + "observedLoad": 1506, + "observedLoadTs": 260639384, + "observedDomContentLoaded": 1266, + "observedDomContentLoadedTs": 260398975, + "observedCumulativeLayoutShift": 0.009821980158487956, + "observedCumulativeLayoutShiftMainFrame": 0.009821980158487956, + "observedTotalCumulativeLayoutShift": 0.009821980158487956, + "observedFirstVisualChange": 1172, + "observedFirstVisualChangeTs": 260305405, + "observedLastVisualChange": 1772, + "observedLastVisualChangeTs": 260905405, + "observedSpeedIndex": 1253, + "observedSpeedIndexTs": 260386417 }, { "lcpInvalidated": false @@ -464440,19 +466852,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 5, - "numTasks": 1363, - "numTasksOver10ms": 9, - "numTasksOver25ms": 4, + "numTasks": 1046, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.215, - "throughput": 397764859.4139627, - "maxRtt": 84.984, - "maxServerLatency": 316.794, - "totalByteWeight": 19278482, - "totalTaskTime": 363.2899999999984, - "mainDocumentTransferSize": 60892 + "rtt": 5.216, + "throughput": 578142153.1701695, + "maxRtt": 87.72200000000001, + "maxServerLatency": 125.72000000000004, + "totalByteWeight": 19284983, + "totalTaskTime": 301.9759999999963, + "mainDocumentTransferSize": 61006 } ] } @@ -464558,7 +466970,7 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-01-19T06:35:00.000Z", "testsslGrade": "A", "cookiesGrade": "C", @@ -464567,7 +466979,7 @@ "trackersCount": 11, "lighthouse_performance": 0, "lighthouse_performanceGrade": "F", - "lighthouse_accessibility": 0.81, + "lighthouse_accessibility": 0.8, "lighthouse_accessibilityGrade": "B", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", @@ -464591,30 +467003,30 @@ "http": { "url": "https://moana.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 18:09:32 GMT", + "end_time": "Sun, 24 Dec 2023 16:28:15 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:", + "Content-Security-Policy": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 18:09:30 GMT", + "Date": "Sun, 24 Dec 2023 16:28:13 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=Xrq3lxsl3UxoJsW7f1pNDg3VvcajmPV5; expires=Sun, 15 Dec 2024 18:09:30 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Set-Cookie": "csrftoken=oRvAeCjf2640efVZHzq4Lu1ZuR5u0TJT; expires=Sun, 22 Dec 2024 16:28:13 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie, origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "395edb7a-e8df-430e-8d11-29e8a0c10631" + "X-Request-ID": "a84f1d85-26d2-4858-bf20-d66c27f35a37" }, - "scan_id": 45560706, + "scan_id": 45769186, "score": 60, - "start_time": "Sun, 17 Dec 2023 18:09:26 GMT", + "start_time": "Sun, 24 Dec 2023 16:28:09 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -464636,135 +467048,135 @@ "'self'" ], "font-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "img-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "script-src": [ - "'self'", "'sha256-va8o2hadoob288epstrgll7z3qikbwu9wwoebo/qayk='", - "'sha256-tqjf8gvb2roomapixfvfaybeuj0v1hcbocsmdnxgtdo='", "'sha256-+5xkzfazzjo8n0iop4ti/clcmuudtf//mzkb7xnpxic='", - "'sha256-ms6/3fcg4wjp9gwgabgwlprcy6fzbgwmhvcdrprnf3e='" + "'sha256-tqjf8gvb2roomapixfvfaybeuj0v1hcbocsmdnxgtdo='", + "'sha256-ms6/3fcg4wjp9gwgabgwlprcy6fzbgwmhvcdrprnf3e='", + "'self'" ], "style-src": [ - "'sha256-chwc5oexj6dvsycryomucnqfnoeklrvret6ynlljqxi='", - "'sha256-flztlfbs6ixzt0o3sdlbfdfokpo9cmobz42ljfuscsq='", + "'sha256-u9ui7xlt1hz7gqk9ny0tgijg/pejzqa9ucc3mpyrwxa='", + "'sha256-wnoydjdskc5ycjflr6xs0tqofdncaywftpwndflskne='", + "'sha256-dccw5nv6mbjlymaokukjqglfc/a+kkg9j2dwru4q+ny='", + "'sha256-ywmldhlf3ckhiety5fjl3w3uygs0vw9ykgeds1mcupo='", + "'sha256-1bufbtd2izxorrihjdrz3l/qpliggcjfbiz8igsmnxo='", + "'sha256-iavwiyddxxl+4slddpfwfk4jpg6yldaanhpyl8a3bxk='", "'sha256-cyucsofsxm8qloawvb06lp57ny5y8csnonethzqswu8='", - "'sha256-bw8nydpk+rv9lpnlglux1ta/nihg2tpa6q6krc//k5c='", - "'sha256-m8pz0zl8bitdmgvcpftn+auddgw43ewflnusjfark3i='", - "'sha256-7ldzebg4/ceoldnp+rb5jfmiy1zbicmyd0tl8uxd1v4='", - "'sha256-dsgp181iqxg75b+r9if1siihpnvtsvx0bjxdfaoqlq4='", - "'sha256-rtwq9v8zz41mmjrsx8o521mwdlxwvrxjfsq+sbkyrcy='", - "'sha256-k+1nxhi6s6f1vp/1ztoyprjo1wtn3hjjajsosixmby8='", - "'sha256-v4xcljlldzbwudhljgjk+tkwiiixl7euvxxepdbqrbk='", - "'sha256-sit7nj5pmocjrq4h8hvffwycpnb7qrqizqh13ykbkgw='", - "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", - "'sha256-i4ounwrcnri/we/crj7jhfvnprtr/evv+cqrt3hzynq='", "'sha256-sj9d7rfdgtde5k7whxbjtbhwtsctimwnaopkvp3wdjy='", - "'sha256-tnywmpfcbu/6ikkkhny1wn5yfu8shc88qi8xmc0b268='", - "'sha256-iavwiyddxxl+4slddpfwfk4jpg6yldaanhpyl8a3bxk='", - "'sha256-mgwwy+yxynoaikswttskzjwts4nnnpqlkqud3qg+l4s='", - "'sha256-7x7ie/ulkmsrmjuhqj7agdzcpz1jjciftbpmxfyodk4='", - "'sha256-quhxl4+3eu8ln6ofqnoyz/zj7ff6r5iljedw+qpa5tm='", - "'sha256-zsrdziedwx1qa9lt/j/af+gtwxhs2kx571dcj7n5k9a='", - "'sha256-f+vbomevdiejq8zl6sqylfb/p+nibldv2r+q6mhwefq='", - "'sha256-bnfeflzwppwjdbwfj1leigw5n6jbqtkiglum0krfezc='", - "'sha256-uyaguaaqsfbj087bmziv3grfysdvcepxqgy8vyz46vq='", - "'sha256-mlu1tugtcf+zidinbm1yhyq8fdvxtce5z3npyq4wk/q='", - "'sha256-nlz7ptlq0fifhwezpcszozxkrkrcdzebr47kwpzbv3a='", - "'sha256-s3s6q3wph450ibueuk1wn6eqgfz4zgk8q6nkhif+g+8='", - "'sha256-eegdkdnvfnibntanbkayu0ptmw9/czx2z6tqlrapjuk='", - "'sha256-lliuenaz5rtgdwopim7lgllwnra43wgsiv4awr+nwlo='", "'sha256-3hbkpandps37ct7utxfq1f8pnjphh9r+afm3lwm3a8o='", - "'sha256-byw81thv2wuhbfdu9cnmm4pcsq3fgxz1enetmq9bors='", - "'sha256-/2osyhkfci6xlicc6rcyxrsk+ejo09+0cpsmo9ldpnq='", + "'sha256-kt9flchxu3u0mod0zc6nt6fkz6vcjjcpvqq6grpuvha='", + "'sha256-lt4ljhksxoo2lm/kuj2ydky8budajmuyfceqgngcuo0='", + "'unsafe-hashes'", + "'sha256-+gh0stzzmrespf8ernpb7r2s6h71qtgnbxzuyeq2pg4='", + "'sha256-iahmzreyj+btitr61f8cnxpz3ur9s82q+7m1w6eeq18='", + "'sha256-zsrdziedwx1qa9lt/j/af+gtwxhs2kx571dcj7n5k9a='", + "'self'", "'sha256-h581/pfv9df3qp0j2olzizuyyficrnfxb5iw6x1kgh4='", + "'sha256-chwwylxwzkgcmijlslubuvobtsqhfvvn0xi/1ag3c4a='", + "'sha256-xqkfq5oogxnaxwk+31z5024vtss9sjtz0uko1tt1oj4='", + "'sha256-ubn9ynzdpp/wnyay9xcxoramljvmmbykq2tqwauflmu='", + "'sha256-7ldzebg4/ceoldnp+rb5jfmiy1zbicmyd0tl8uxd1v4='", + "'sha256-mgwwy+yxynoaikswttskzjwts4nnnpqlkqud3qg+l4s='", + "'sha256-9h/cvox/ed6p+zyu7vuxoqirtpqdy8qnakf4/nuqcow='", + "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", + "'sha256-bnfeflzwppwjdbwfj1leigw5n6jbqtkiglum0krfezc='", + "'sha256-gfndhwxwxzs7l57esozmvzm9swnl+9bpswtfywdwz/o='", + "'sha256-sit7nj5pmocjrq4h8hvffwycpnb7qrqizqh13ykbkgw='", + "'sha256-dsgp181iqxg75b+r9if1siihpnvtsvx0bjxdfaoqlq4='", + "'sha256-rgyc1krjngrxlgshizezew79ig8ssqt2xc0vj1mzxvg='", "'sha256-wha+rov+mfoasflkmzsyrkip7uscpsnoj8zztcgbho4='", - "'sha256-jgswinrbqgds0zkbfhjeurzqgdttbpxdgbux9id1yc8='", - "'sha256-kt9flchxu3u0mod0zc6nt6fkz6vcjjcpvqq6grpuvha='", - "'sha256-qzs8iu6d/fpyuisgxhwfrttydmrwrv2jdu9akop9if0='", - "'sha256-s8eilbg9keltqx4tsu8ughdkbpbl+viz9mvjl2anua4='", + "'sha256-uy2z2zhkbrmg+btiw2avvxdrh9ryhltc/3ugc0nol1k='", + "'sha256-zbw9gd7cyrl99uoi0rkd79jf5kneqwfpbcc/d41kr4w='", + "'sha256-bw8nydpk+rv9lpnlglux1ta/nihg2tpa6q6krc//k5c='", + "'sha256-f+vbomevdiejq8zl6sqylfb/p+nibldv2r+q6mhwefq='", + "'sha256-m/5ktbizrxzkqpxenhndx31u2ungis0npeggamdxtig='", "'sha256-b3uqknn570igqerztgkxv0nrp68zm/et1xx3+avwk4w='", - "'sha256-bvfn1ojq9n4ob5baslkeuvw2v72qx/z2f92u6ff5flm='", - "'sha256-eji6efasn0qjq9/iqgeqfl40nsadoesg8uhomep111o='", + "'sha256-s3s6q3wph450ibueuk1wn6eqgfz4zgk8q6nkhif+g+8='", + "'sha256-nlz7ptlq0fifhwezpcszozxkrkrcdzebr47kwpzbv3a='", + "'sha256-+u37rdy+ekwoqkvujvztxsta1zqytvwz9iattjwuulq='", + "'sha256-v+wzhw7g+kearsnuhnj/jk7cfyy+o/ml+2dnig1e3lo='", + "'sha256-k5kcysxt3hvbu3jkz7bn+yt7jvhmtl5m6i9wgv3jxko='", + "'sha256-ukxi9y6c7zkxawdltu3x3eijw8+mjgqptrnsoca7cdq='", + "'sha256-j3cmteukgzhmijbte4jphgwyixpiwbtdgvmsv1izsz8='", + "'sha256-qkou26uj4mma/lnspt1/69nlpyu27xjkouo7n13g5yk='", "'sha256-qoacpu4uxiwbkgwmpeyksu96btxbcineicgalfdnoy4='", - "'sha256-d+l7qjtw1/cvbwpmgugqz6/colwtbplkfda4csxusrc='", - "'sha256-ywmldhlf3ckhiety5fjl3w3uygs0vw9ykgeds1mcupo='", - "'sha256-fekcetqvrr7vhxje+i6173duflbwzhh6kjcxnmzrtry='", + "'sha256-eji6efasn0qjq9/iqgeqfl40nsadoesg8uhomep111o='", "'sha256-mhyy31gjrimlb9iufsctm+xksmjzz4szufpog+tww30='", - "'sha256-1bufbtd2izxorrihjdrz3l/qpliggcjfbiz8igsmnxo='", - "'sha256-dccw5nv6mbjlymaokukjqglfc/a+kkg9j2dwru4q+ny='", - "'sha256-flusdq3g3faigkha7c9+wyo+1rp0kqn7u3poedd4sxw='", - "'sha256-ob2r4ppnvjy2shrdl+ll47lzgqet0drimdmc/gn+bls='", - "'sha256-sescy+ekhe+c0mkpr7xt6q8luqk9t7bbti/hqdnhcx4='", - "'sha256-zezsbxgclvljuhwelfy+zbm3yc0wx0brz5xib6kk9yi='", - "'sha256-o2xazass3aoe9jlttgsf0uy8pli7ft7zml8p29rbjlm='", - "'sha256-iahmzreyj+btitr61f8cnxpz3ur9s82q+7m1w6eeq18='", - "'sha256-pmwu0eudcn34zayfzv8u9kkspqorshraqi0xr5rp+fc='", - "'sha256-gfndhwxwxzs7l57esozmvzm9swnl+9bpswtfywdwz/o='", + "'sha256-89mgg98zzwu//gme9rh+u/bkp3skczhw01xtpcv7fzs='", + "'sha256-zkb6nakempyf4toefwxj2jpy270upe2bvdz3sd2uklm='", + "'sha256-byw81thv2wuhbfdu9cnmm4pcsq3fgxz1enetmq9bors='", + "'sha256-jgswinrbqgds0zkbfhjeurzqgdttbpxdgbux9id1yc8='", "'sha256-kcco/sxfprq516gw+929z4+/8xprguxoo5qp+ej1iry='", - "'sha256-cqgdnlnz4rn4lqeu0cxxsl3xqqk7etfhm3ag0uq514i='", - "'sha256-qkou26uj4mma/lnspt1/69nlpyu27xjkouo7n13g5yk='", "'sha256-vryfnqfy5qsqd5/litnzr+c+rpjvaie9i0asm2vt5na='", - "'sha256-uy2z2zhkbrmg+btiw2avvxdrh9ryhltc/3ugc0nol1k='", - "'sha256-g2a9yurrodnkmxgyhxhx+fvxpc3yoqoitbqg/29+hb0='", - "'sha256-+u37rdy+ekwoqkvujvztxsta1zqytvwz9iattjwuulq='", - "'sha256-xw42dn3lurcktnnpeg3kqs7opmbbrwlnnivrsckshjq='", - "'sha256-oicwcnge9lkedhbwfylwph4apwuajr+x8i4fuvq/xg4='", - "'sha256-ukxi9y6c7zkxawdltu3x3eijw8+mjgqptrnsoca7cdq='", - "'sha256-+gh0stzzmrespf8ernpb7r2s6h71qtgnbxzuyeq2pg4='", - "'sha256-v+wzhw7g+kearsnuhnj/jk7cfyy+o/ml+2dnig1e3lo='", - "'sha256-pd5kgjz8mcfwxvr8unagsqhrm99+/tbwyormcwaudy8='", - "'sha256-v/kbhwpjnzfptfxfvwwo42jfibcmei6+uxcgiew+dh8='", + "'sha256-ie6fhid8v0lrasoploxixxwuy8obuwpoejs6pcrjyca='", + "'sha256-uyaguaaqsfbj087bmziv3grfysdvcepxqgy8vyz46vq='", + "'sha256-rkropjzfj639eock8whmgs0cv/xg1jqld4niry1lw1u='", "'sha256-qah3wbhsfpjwhrk9vmcea4bisdckf4rr8687dkyk4iq='", - "'sha256-chwwylxwzkgcmijlslubuvobtsqhfvvn0xi/1ag3c4a='", - "'sha256-in+sfjweytx0emhe8r08izue6xkeanyl/p/r7rtk5rg='", - "'sha256-sxtj1vafnmn1c0aujjwcirgogqf3m4didejjwaac3wo='", - "'sha256-jha9cayyqtcbbh9eu+hcshxdro3slwgi78xcuxbjocu='", - "'sha256-khf7uclfiky2nvjckcqpckqqbxhu75lubhb8kx2tzii='", - "'sha256-j3cmteukgzhmijbte4jphgwyixpiwbtdgvmsv1izsz8='", - "'sha256-y9v1mzrln1n8apby5lmpxykwfkcp/nybmmenn7wfjuw='", - "'self'", + "'sha256-jafxdxh5ozhdlsctr9j9euuhkmmaemzftomk/3asnck='", "'sha256-p5vs7ljnpqphmqiptwpih4pudfhttqaqgcouoljrzqe='", - "'sha256-c8ye1fs0s17iuhqrxizvpypug6ruxaxri2uxy8dfpoc='", - "'sha256-zkb6nakempyf4toefwxj2jpy270upe2bvdz3sd2uklm='", - "'unsafe-hashes'", + "'sha256-dsrukmvjseubq/cf7svp418u0fpec25gfw8cwvs9zpg='", + "'sha256-xw42dn3lurcktnnpeg3kqs7opmbbrwlnnivrsckshjq='", "'sha256-mbemj+foyhuencunssaxg3tv8atqt9z0eylalgxu74c='", - "'sha256-9h/cvox/ed6p+zyu7vuxoqirtpqdy8qnakf4/nuqcow='", + "'sha256-ygkksqv6nvmku6rg9akm8vdac/ov2i1uoxfe81alrge='", + "'sha256-qzs8iu6d/fpyuisgxhwfrttydmrwrv2jdu9akop9if0='", + "'sha256-s8eilbg9keltqx4tsu8ughdkbpbl+viz9mvjl2anua4='", + "'sha256-eegdkdnvfnibntanbkayu0ptmw9/czx2z6tqlrapjuk='", + "'sha256-zh2for77zlse4xdkg8x6ix5v1c2fk55atvud06rht94='", + "'sha256-jha9cayyqtcbbh9eu+hcshxdro3slwgi78xcuxbjocu='", + "'sha256-/2osyhkfci6xlicc6rcyxrsk+ejo09+0cpsmo9ldpnq='", + "'sha256-cgv9bubjavtnuivykouyszbde/sc0q3u3ayxd3u/yby='", + "'sha256-khf7uclfiky2nvjckcqpckqqbxhu75lubhb8kx2tzii='", + "'sha256-g1mpftcjhxuquy8pamarzigf+jrtwdfmtlcnj/focae='", "'sha256-nneo4gmmtuj+qc58pg6ccrc7hixtqpuvbeuxw7fkjja='", + "'sha256-d+l7qjtw1/cvbwpmgugqz6/colwtbplkfda4csxusrc='", + "'sha256-fekcetqvrr7vhxje+i6173duflbwzhh6kjcxnmzrtry='", + "'sha256-cqgdnlnz4rn4lqeu0cxxsl3xqqk7etfhm3ag0uq514i='", + "'sha256-sxtj1vafnmn1c0aujjwcirgogqf3m4didejjwaac3wo='", + "'sha256-c/p3gddcho6mggd18owrcudv2yg8r7ykwmrnadqdxek='", + "'sha256-i4ounwrcnri/we/crj7jhfvnprtr/evv+cqrt3hzynq='", + "'sha256-o2xazass3aoe9jlttgsf0uy8pli7ft7zml8p29rbjlm='", + "'sha256-sescy+ekhe+c0mkpr7xt6q8luqk9t7bbti/hqdnhcx4='", + "'sha256-lliuenaz5rtgdwopim7lgllwnra43wgsiv4awr+nwlo='", + "'sha256-v/kbhwpjnzfptfxfvwwo42jfibcmei6+uxcgiew+dh8='", + "'sha256-11pn3zgb9q3rqj0rf8sug6uaufjzytv6dymsyqss2xm='", + "'sha256-in+sfjweytx0emhe8r08izue6xkeanyl/p/r7rtk5rg='", + "'sha256-quhxl4+3eu8ln6ofqnoyz/zj7ff6r5iljedw+qpa5tm='", + "'sha256-rtwq9v8zz41mmjrsx8o521mwdlxwvrxjfsq+sbkyrcy='", + "'sha256-flztlfbs6ixzt0o3sdlbfdfokpo9cmobz42ljfuscsq='", "'sha256-7ktjjzcammmhxoclakm18v6y5lxz59nvnsbzn7sohu8='", - "'sha256-jafxdxh5ozhdlsctr9j9euuhkmmaemzftomk/3asnck='", - "'sha256-89mgg98zzwu//gme9rh+u/bkp3skczhw01xtpcv7fzs='", "'sha256-mklqpdozpvjbv84ygi+xqjqdsat+uopmoqi1zgx6qye='", - "'sha256-k5kcysxt3hvbu3jkz7bn+yt7jvhmtl5m6i9wgv3jxko='", - "'sha256-lt4ljhksxoo2lm/kuj2ydky8budajmuyfceqgngcuo0='", - "'sha256-rgyc1krjngrxlgshizezew79ig8ssqt2xc0vj1mzxvg='", - "'sha256-ygkksqv6nvmku6rg9akm8vdac/ov2i1uoxfe81alrge='", - "'sha256-ubn9ynzdpp/wnyay9xcxoramljvmmbykq2tqwauflmu='", - "'sha256-7eothjlas2jil1suw9qgufa4yp8kuoweycyfbvqlpie='", - "'sha256-tpnbcwnnoa5p0wt5btfq2ph+jbcpn0m1r5wj9n0qaig='", - "'sha256-xqkfq5oogxnaxwk+31z5024vtss9sjtz0uko1tt1oj4='", + "'sha256-3mzeajtiq8bwks38wk4sxfgozgoeoolic5ld4uliyhk='", + "'sha256-ob2r4ppnvjy2shrdl+ll47lzgqet0drimdmc/gn+bls='", + "'sha256-g2a9yurrodnkmxgyhxhx+fvxpc3yoqoitbqg/29+hb0='", + "'sha256-flusdq3g3faigkha7c9+wyo+1rp0kqn7u3poedd4sxw='", + "'sha256-c8ye1fs0s17iuhqrxizvpypug6ruxaxri2uxy8dfpoc='", + "'sha256-k+1nxhi6s6f1vp/1ztoyprjo1wtn3hjjajsosixmby8='", "'sha256-su/ekz4isnnyuay162begtrgjbo9zmpufu6at5rpc1o='", - "'sha256-psxxae5l5brzqkd1hxrxh1k0zcc5zfysoyqrquihqvk='", - "'sha256-zh2for77zlse4xdkg8x6ix5v1c2fk55atvud06rht94='", - "'sha256-ie6fhid8v0lrasoploxixxwuy8obuwpoejs6pcrjyca='", "'sha256-jigvxk4pm1cnzkfgj8tts6x+peszdawzg4oikc6lftq='", + "'sha256-bvfn1ojq9n4ob5baslkeuvw2v72qx/z2f92u6ff5flm='", + "'sha256-oicwcnge9lkedhbwfylwph4apwuajr+x8i4fuvq/xg4='", + "'sha256-m8pz0zl8bitdmgvcpftn+auddgw43ewflnusjfark3i='", + "'sha256-zezsbxgclvljuhwelfy+zbm3yc0wx0brz5xib6kk9yi='", + "'sha256-y9v1mzrln1n8apby5lmpxykwfkcp/nybmmenn7wfjuw='", + "'sha256-chwc5oexj6dvsycryomucnqfnoeklrvret6ynlljqxi='", + "'sha256-7x7ie/ulkmsrmjuhqj7agdzcpz1jjciftbpmxfyodk4='", "'sha256-otlfih1wntwsjrrpnzn1ac/9gblgknqdr/on/sf67es='", - "'sha256-g1mpftcjhxuquy8pamarzigf+jrtwdfmtlcnj/focae='", - "'sha256-m/5ktbizrxzkqpxenhndx31u2ungis0npeggamdxtig='", - "'sha256-rkropjzfj639eock8whmgs0cv/xg1jqld4niry1lw1u='", - "'sha256-dsrukmvjseubq/cf7svp418u0fpec25gfw8cwvs9zpg='", - "'sha256-3mzeajtiq8bwks38wk4sxfgozgoeoolic5ld4uliyhk='", - "'sha256-u9ui7xlt1hz7gqk9ny0tgijg/pejzqa9ucc3mpyrwxa='", - "'sha256-zbw9gd7cyrl99uoi0rkd79jf5kneqwfpbcc/d41kr4w='", - "'sha256-cgv9bubjavtnuivykouyszbde/sc0q3u3ayxd3u/yby='", - "'sha256-11pn3zgb9q3rqj0rf8sug6uaufjzytv6dymsyqss2xm='", - "'sha256-wnoydjdskc5ycjflr6xs0tqofdncaywftpwndflskne='", - "'sha256-c/p3gddcho6mggd18owrcudv2yg8r7ykwmrnadqdxek='" + "'sha256-psxxae5l5brzqkd1hxrxh1k0zcc5zfysoyqrquihqvk='", + "'sha256-tnywmpfcbu/6ikkkhny1wn5yfu8shc88qi8xmc0b268='", + "'sha256-tpnbcwnnoa5p0wt5btfq2ph+jbcpn0m1r5wj9n0qaig='", + "'sha256-v4xcljlldzbwudhljgjk+tkwiiixl7euvxxepdbqrbk='", + "'sha256-pd5kgjz8mcfwxvr8unagsqhrm99+/tbwyormcwaudy8='", + "'sha256-pmwu0eudcn34zayfzv8u9kkspqorshraqi0xr5rp+fc='", + "'sha256-mlu1tugtcf+zidinbm1yhyq8fdvxtce5z3npyq4wk/q='", + "'sha256-7eothjlas2jil1suw9qgufa4yp8kuoweycyfbvqlpie='" ] }, "http": true, @@ -464807,7 +467219,7 @@ "data": { "csrftoken": { "domain": "moana.beta.gouv.fr", - "expires": 1734286171, + "expires": 1734884895, "httponly": false, "max-age": null, "path": "/", @@ -464969,77 +467381,77 @@ "testssl": [ { "id": "service", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -465047,7 +467459,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -465055,7 +467467,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -465063,7 +467475,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -465071,7 +467483,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -465079,7 +467491,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -465087,434 +467499,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "157 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702836678" + "finding": "1703435401" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:" + "finding": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -465522,7 +467934,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -465531,7 +467943,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -465540,7 +467952,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -465549,7 +467961,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -465558,7 +467970,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -465566,7 +467978,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -465575,7 +467987,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -465584,7 +467996,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -465593,7 +468005,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -465602,14 +468014,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -465618,7 +468030,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -465627,7 +468039,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -465636,7 +468048,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -465645,7 +468057,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -465654,7 +468066,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -465663,7 +468075,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -465672,7 +468084,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -465681,7 +468093,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -465690,7 +468102,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -465699,399 +468111,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/80.247.12.255", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "service", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466099,7 +468511,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466107,7 +468519,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466115,7 +468527,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466123,7 +468535,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -466131,7 +468543,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -466139,434 +468551,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "157 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702836773" + "finding": "1703435495" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:" + "finding": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -466574,7 +468986,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -466583,7 +468995,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -466592,7 +469004,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -466601,7 +469013,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -466610,7 +469022,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -466618,7 +469030,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -466627,7 +469039,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -466636,7 +469048,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -466645,7 +469057,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -466654,14 +469066,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -466670,7 +469082,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -466679,7 +469091,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -466688,7 +469100,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -466697,7 +469109,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466706,7 +469118,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466715,7 +469127,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -466724,7 +469136,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -466733,7 +469145,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -466742,7 +469154,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -466751,322 +469163,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" @@ -467271,7 +469683,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -467418,7 +469830,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "164 >= 60 days" + "finding": "157 >= 60 days" }, { "id": "cert_notBefore", @@ -467537,7 +469949,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702836867" + "finding": "1703435589" }, { "id": "HSTS_time", @@ -467600,7 +470012,7 @@ "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:" + "finding": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", @@ -468125,77 +470537,77 @@ }, { "id": "service", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468203,7 +470615,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468211,7 +470623,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468219,7 +470631,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468227,7 +470639,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468235,7 +470647,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468243,434 +470655,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "157 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702836961" + "finding": "1703435683" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:" + "finding": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -468678,7 +471090,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -468687,7 +471099,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -468696,7 +471108,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -468705,7 +471117,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -468714,7 +471126,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -468722,7 +471134,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -468731,7 +471143,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -468740,7 +471152,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -468749,7 +471161,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -468758,14 +471170,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -468774,7 +471186,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -468783,7 +471195,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -468792,7 +471204,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -468801,7 +471213,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -468810,7 +471222,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -468819,7 +471231,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -468828,7 +471240,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -468837,7 +471249,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -468846,7 +471258,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -468855,332 +471267,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "381" + "finding": "380" } ], "thirdparties": { @@ -469188,10 +471600,10 @@ "cookies": [ { "name": "csrftoken", - "value": "BYLBOzUyuiD7DYDgK7CZtudgiXH13foJ", + "value": "9b93EBX3573uwj1wmkKjcEeViYHM5uvc", "domain": "moana.beta.gouv.fr", "path": "/", - "expires": 1734286201.622981, + "expires": 1734884925.811777, "size": 41, "httpOnly": false, "secure": true, @@ -469204,18 +471616,18 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; base-uri 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; connect-src 'self'; img-src 'self' data:", + "content-security-policy": "base-uri 'self'; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; default-src 'self'; font-src 'self' data:; img-src 'self' data:; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 18:10:01 GMT", + "date": "Sun, 24 Dec 2023 16:28:45 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=BYLBOzUyuiD7DYDgK7CZtudgiXH13foJ; expires=Sun, 15 Dec 2024 18:10:01 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=9b93EBX3573uwj1wmkKjcEeViYHM5uvc; expires=Sun, 22 Dec 2024 16:28:45 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "a709a021-cca1-4cb7-9add-318480787106" + "x-request-id": "b0447cde-da6b-459d-b7d5-a6a5944007a6" }, "endpoints": [ { @@ -469365,7 +471777,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:09:00", + "@generated": "Sun, 24 Dec 2023 16:27:43", "site": [ { "@name": "https://moana.beta.gouv.fr", @@ -469373,6 +471785,13 @@ "@port": "443", "@ssl": "true", "alerts": [ + { + "name": "Absence of Anti-CSRF Tokens", + "riskcode": "2", + "confidence": "1", + "riskdesc": "Medium (Low)", + "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" + }, { "name": "CSP: Wildcard Directive", "riskcode": "2", @@ -469408,6 +471827,13 @@ "riskdesc": "Low (Medium)", "desc": "

A cookie has been set without the HttpOnly flag, which means that the cookie can be accessed by JavaScript. If a malicious script can be run on this page then the cookie will be accessible and can be transmitted to another site. If this is a session cookie then session hijacking may be possible.

" }, + { + "name": "Cookie with SameSite Attribute None", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

A cookie has been set with its SameSite attribute set to \"none\", which means that the cookie can be sent as a result of a 'cross-site' request. The SameSite attribute is an effective counter measure to cross-site request forgery, cross-site script inclusion, and timing attacks.

" + }, { "name": "Base64 Disclosure", "riskcode": "0", @@ -469415,6 +471841,13 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, { "name": "Non-Storable Content", "riskcode": "0", @@ -469470,13 +471903,6 @@ "confidence": "2", "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, - { - "name": "User Controllable HTML Element Attribute (Potential XSS)", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" } ] } @@ -469484,22 +471910,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -469509,33 +471936,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "moana.beta.gouv.fr.", - "matched-at": "moana.beta.gouv.fr", - "timestamp": "2023-12-17T18:17:49.470612823Z", + "matched-at": "_dmarc.moana.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2023-12-24T16:36:30.505726079Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -469545,17 +471975,13 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "moana.beta.gouv.fr.", - "matched-at": "_dmarc.moana.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2023-12-17T18:17:49.47614054Z", + "matched-at": "moana.beta.gouv.fr", + "timestamp": "2023-12-24T16:36:30.779435119Z", "matcher-status": true }, { @@ -469595,27 +472021,24 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T18:17:49.496050576Z", + "timestamp": "2023-12-24T16:36:30.785996415Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -469631,27 +472054,30 @@ "host": "moana.beta.gouv.fr.", "matched-at": "moana.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.sendinblue.com include:_spf.alwaysdata.com mx ~all\"", - "\"Sendinblue-code:d18c3ccb3a328daab46126af468f87ab\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T18:17:50.3353635Z", + "timestamp": "2023-12-24T16:36:31.503205036Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -469667,10 +472093,10 @@ "host": "moana.beta.gouv.fr.", "matched-at": "moana.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=spf1 include:spf.sendinblue.com include:_spf.alwaysdata.com mx ~all\"", + "\"Sendinblue-code:d18c3ccb3a328daab46126af468f87ab\"" ], - "timestamp": "2023-12-17T18:17:50.617039752Z", + "timestamp": "2023-12-24T16:36:31.503492019Z", "matcher-status": true }, { @@ -469706,8 +472132,8 @@ "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:18:49.137361072Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:30.527701422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469733,8 +472159,8 @@ "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:18:49.154914579Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:30.544993696Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469766,12 +472192,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:19:08.532290331Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:49.829175111Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469803,12 +472229,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:19:08.532339944Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:49.829223853Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469840,12 +472266,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:19:08.532353159Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:49.829242097Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469877,58 +472303,61 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:19:08.532367956Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:37:49.829257826Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "TLS Version - Detect", "author": [ - "lingtren" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "DHIMYOTIS" + "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:25:46.282616876Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:44:29.077239919Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -469938,43 +472367,43 @@ "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "moana.beta.gouv.fr", - "www.stats.moana.beta.gouv.fr", - "www.moana.beta.gouv.fr", - "stats.moana.beta.gouv.fr" + "DHIMYOTIS" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:25:46.282751177Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:44:29.094062655Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "tls12" + "www.moana.beta.gouv.fr", + "stats.moana.beta.gouv.fr", + "moana.beta.gouv.fr", + "www.stats.moana.beta.gouv.fr" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:25:46.639044742Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:44:29.094174124Z", "matcher-status": true }, { @@ -469989,7 +472418,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -470003,8 +472433,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:25:48.200891093Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T16:44:30.630853088Z", "matcher-status": true } ], @@ -470012,7 +472442,7 @@ { "requestedUrl": "https://moana.beta.gouv.fr/", "finalUrl": "https://moana.beta.gouv.fr/login/?next=/", - "fetchTime": "2023-12-17T18:09:14.320Z", + "fetchTime": "2023-12-24T16:27:57.421Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://moana.beta.gouv.fr/) was redirected to https://moana.beta.gouv.fr/login/?next=/. Try testing the second URL directly." ], @@ -470077,53 +472507,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1354, + "numericValue": 1356, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1354, - "firstMeaningfulPaint": 1354, - "largestContentfulPaint": 1579, - "interactive": 1354, - "speedIndex": 1382, + "firstContentfulPaint": 1356, + "firstMeaningfulPaint": 1356, + "largestContentfulPaint": 1581, + "interactive": 1356, + "speedIndex": 1416, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.003495730929904514, "cumulativeLayoutShiftMainFrame": 0.003495730929904514, "totalCumulativeLayoutShift": 0.003495730929904514, "observedTimeOrigin": 0, - "observedTimeOriginTs": 300159096, + "observedTimeOriginTs": 474844845, "observedNavigationStart": 0, - "observedNavigationStartTs": 300159096, - "observedFirstPaint": 527, - "observedFirstPaintTs": 300685970, - "observedFirstContentfulPaint": 527, - "observedFirstContentfulPaintTs": 300685970, - "observedFirstContentfulPaintAllFrames": 527, - "observedFirstContentfulPaintAllFramesTs": 300685970, - "observedFirstMeaningfulPaint": 542, - "observedFirstMeaningfulPaintTs": 300700918, - "observedLargestContentfulPaint": 527, - "observedLargestContentfulPaintTs": 300685970, - "observedLargestContentfulPaintAllFrames": 527, - "observedLargestContentfulPaintAllFramesTs": 300685970, - "observedTraceEnd": 3127, - "observedTraceEndTs": 303286124, - "observedLoad": 811, - "observedLoadTs": 300970375, + "observedNavigationStartTs": 474844845, + "observedFirstPaint": 571, + "observedFirstPaintTs": 475416316, + "observedFirstContentfulPaint": 571, + "observedFirstContentfulPaintTs": 475416316, + "observedFirstContentfulPaintAllFrames": 571, + "observedFirstContentfulPaintAllFramesTs": 475416316, + "observedFirstMeaningfulPaint": 581, + "observedFirstMeaningfulPaintTs": 475425557, + "observedLargestContentfulPaint": 571, + "observedLargestContentfulPaintTs": 475416316, + "observedLargestContentfulPaintAllFrames": 571, + "observedLargestContentfulPaintAllFramesTs": 475416316, + "observedTraceEnd": 3147, + "observedTraceEndTs": 477992155, + "observedLoad": 828, + "observedLoadTs": 475672538, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 300159633, + "observedDomContentLoadedTs": 474845492, "observedCumulativeLayoutShift": 0.003495730929904514, "observedCumulativeLayoutShiftMainFrame": 0.003495730929904514, "observedTotalCumulativeLayoutShift": 0.003495730929904514, - "observedFirstVisualChange": 512, - "observedFirstVisualChangeTs": 300671096, - "observedLastVisualChange": 1128, - "observedLastVisualChangeTs": 301287096, - "observedSpeedIndex": 537, - "observedSpeedIndexTs": 300695972 + "observedFirstVisualChange": 536, + "observedFirstVisualChangeTs": 475380845, + "observedLastVisualChange": 1152, + "observedLastVisualChangeTs": 475996845, + "observedSpeedIndex": 560, + "observedSpeedIndexTs": 475404983 }, { "lcpInvalidated": false @@ -470145,19 +472575,19 @@ "numScripts": 1, "numStylesheets": 2, "numFonts": 4, - "numTasks": 18, + "numTasks": 19, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.011, - "throughput": 6315085.772519634, - "maxRtt": 150.011, - "maxServerLatency": 3.929000000000002, - "totalByteWeight": 354594, - "totalTaskTime": 3.9279999999999995, - "mainDocumentTransferSize": 8374 + "rtt": 150.029, + "throughput": 6152501.831470116, + "maxRtt": 150.029, + "maxServerLatency": 5.947000000000003, + "totalByteWeight": 354550, + "totalTaskTime": 4.123, + "mainDocumentTransferSize": 8386 } ] } @@ -470287,7 +472717,7 @@ "http": { "url": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 18:19:37 GMT", + "end_time": "Sun, 24 Dec 2023 16:43:24 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -470295,18 +472725,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 18:19:36 GMT", + "Date": "Sun, 24 Dec 2023 16:43:23 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "a7107daa-d16b-471f-aa9d-004b31c682ec", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-zRm01Iem9CjZCiVmm795Lg=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"5w0uuq\"", - "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.c8f4bc0c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.9583a093.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.8d98b67a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.e457ffdb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.2152ffab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.fd9a1840.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4468c792.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.c97bea9f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.a67c0063.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.0d7c50f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.5c7bbbc0.js>; rel=\"modulepreload\"; nopush", + "X-Request-ID": "719bbd6f-1ed8-4551-a156-661eb1daff53", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-A5L34QyCHmwr9t2X5dJZrQ=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"ocse5z\"", + "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.394ad635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.b790e2e2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33a128f5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.fb0abc31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.a27a20fe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.d1265a8d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.e93c269d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.4b70ea63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.50187b5e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.4c45342a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.901241c0.js>; rel=\"modulepreload\"; nopush", "x-sveltekit-page": "true" }, - "scan_id": 45560850, + "scan_id": 45769296, "score": 65, - "start_time": "Sun, 17 Dec 2023 18:19:32 GMT", + "start_time": "Sun, 24 Dec 2023 16:39:54 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -470322,24 +472752,24 @@ "'self'" ], "connect-src": [ - "wss://client.relay.crisp.chat/", + "https://matomo.inclusion.beta.gouv.fr", + "https://client.crisp.chat/static/", "https://sentry.gip-inclusion.cloud-ed.fr", "'self'", - "https://client.crisp.chat/static/", - "https://matomo.inclusion.beta.gouv.fr" + "wss://client.relay.crisp.chat/" ], "default-src": [ - "'self'", - "https://matomo.inclusion.beta.gouv.fr" + "https://matomo.inclusion.beta.gouv.fr", + "'self'" ], "font-src": [ - "'self'", "https://client.crisp.chat/static/", - "data:" + "data:", + "'self'" ], "img-src": [ - "'self'", "data:", + "'self'", "https://*.crisp.chat/" ], "media-src": [ @@ -470347,15 +472777,15 @@ "'self'" ], "script-src": [ - "'nonce-zrm01iem9cjzcivmm795lg=='", + "'nonce-a5l34qychmwr9t2x5djzrq=='", "'self'", "https://client.crisp.chat/", "https://matomo.inclusion.beta.gouv.fr" ], "style-src": [ + "'unsafe-inline'", "*.crisp.chat", - "'self'", - "'unsafe-inline'" + "'self'" ] }, "http": true, @@ -470898,7 +473328,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -471101,7 +473531,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702837304" + "finding": "1703436292" }, { "id": "HSTS", @@ -471999,7 +474429,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -472202,7 +474632,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702837401" + "finding": "1703436343" }, { "id": "HSTS", @@ -472755,77 +475185,77 @@ }, { "id": "service", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472833,7 +475263,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472841,7 +475271,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472849,7 +475279,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -472857,7 +475287,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -472865,7 +475295,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -472873,483 +475303,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-13 14:29" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-12 14:29" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702837500" + "finding": "1703436395" }, { "id": "HSTS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -473357,7 +475787,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -473366,7 +475796,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -473375,7 +475805,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -473384,7 +475814,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -473393,7 +475823,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -473401,7 +475831,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -473410,7 +475840,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -473419,7 +475849,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -473428,7 +475858,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -473437,14 +475867,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -473453,7 +475883,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -473462,7 +475892,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -473471,7 +475901,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -473480,7 +475910,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -473489,7 +475919,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -473498,7 +475928,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -473507,7 +475937,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -473516,7 +475946,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -473525,7 +475955,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -473534,399 +475964,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473934,7 +476364,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473942,7 +476372,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473950,7 +476380,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -473958,7 +476388,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -473966,7 +476396,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -473974,483 +476404,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-13 14:29" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-12 14:29" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702837596" + "finding": "1703436446" }, { "id": "HSTS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -474458,7 +476888,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -474467,7 +476897,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -474476,7 +476906,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -474485,7 +476915,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -474494,7 +476924,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -474502,7 +476932,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -474511,7 +476941,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -474520,7 +476950,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -474529,7 +476959,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -474538,14 +476968,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -474554,7 +476984,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -474563,7 +476993,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -474572,7 +477002,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -474581,7 +477011,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -474590,7 +477020,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -474599,7 +477029,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -474608,7 +477038,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -474617,7 +477047,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -474626,7 +477056,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -474635,332 +477065,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", + "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "392" + "finding": "207" } ], "thirdparties": { @@ -474968,13 +477398,13 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-uN2hzXGfao7pg/GlUdr/Pg=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-uAGHbkEceROcRFQaG06XTA=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 18:20:08 GMT", - "etag": "W/\"uvi5u\"", - "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.c8f4bc0c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.9583a093.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.8d98b67a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.e457ffdb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.2152ffab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.fd9a1840.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4468c792.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.c97bea9f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.a67c0063.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.0d7c50f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.5c7bbbc0.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 24 Dec 2023 16:43:53 GMT", + "etag": "W/\"to62rb\"", + "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.394ad635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.b790e2e2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33a128f5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.fb0abc31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.a27a20fe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.d1265a8d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.e93c269d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.4b70ea63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.50187b5e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.4c45342a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.901241c0.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000", - "x-request-id": "090b5061-bfcd-450a-b605-dc6c7b8fdca4", + "x-request-id": "eef356ef-63d9-4041-9c62-1db1db86bb7a", "x-sveltekit-page": "true" }, "endpoints": [ @@ -475048,7 +477478,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:19:06", + "@generated": "Sun, 24 Dec 2023 16:39:28", "site": [ { "@name": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", @@ -475167,73 +477597,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", - "extracted-results": [ - "cdb-app-preprod.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T18:28:24.090103345Z", + "timestamp": "2023-12-24T16:48:46.139833656Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", - "timestamp": "2023-12-17T18:28:24.432298191Z", + "extracted-results": [ + "cdb-app-preprod.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T16:48:47.213060605Z", "matcher-status": true }, { @@ -475247,7 +477677,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -475261,8 +477692,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T18:36:07.155893042Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T16:55:30.178521853Z", "matcher-status": true }, { @@ -475276,7 +477707,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -475290,8 +477722,8 @@ "extracted-results": [ "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T18:36:07.156004119Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T16:55:30.178640603Z", "matcher-status": true }, { @@ -475306,7 +477738,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -475320,8 +477753,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T18:36:09.5912193Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T16:55:31.44647123Z", "matcher-status": true }, { @@ -475336,7 +477769,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -475350,8 +477784,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2023-12-17T18:36:09.906966052Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T16:55:31.619726661Z", "matcher-status": true } ], @@ -475359,7 +477793,7 @@ { "requestedUrl": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/", "finalUrl": "https://demo.carnetdebord.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T18:19:20.962Z", + "fetchTime": "2023-12-24T16:39:42.316Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/) was redirected to https://demo.carnetdebord.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -475424,53 +477858,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6081, + "numericValue": 6039, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3476, - "firstMeaningfulPaint": 3476, - "largestContentfulPaint": 4311, - "interactive": 6081, - "speedIndex": 5297, - "totalBlockingTime": 92, + "firstContentfulPaint": 3480, + "firstMeaningfulPaint": 3555, + "largestContentfulPaint": 4455, + "interactive": 6039, + "speedIndex": 5626, + "totalBlockingTime": 116, "maxPotentialFID": 217, "cumulativeLayoutShift": 0.02169012451171875, "cumulativeLayoutShiftMainFrame": 0.02169012451171875, "totalCumulativeLayoutShift": 0.02169012451171875, "observedTimeOrigin": 0, - "observedTimeOriginTs": 256910635, + "observedTimeOriginTs": 195879560, "observedNavigationStart": 0, - "observedNavigationStartTs": 256910635, - "observedFirstPaint": 1644, - "observedFirstPaintTs": 258554675, - "observedFirstContentfulPaint": 1644, - "observedFirstContentfulPaintTs": 258554675, - "observedFirstContentfulPaintAllFrames": 1644, - "observedFirstContentfulPaintAllFramesTs": 258554675, - "observedFirstMeaningfulPaint": 1644, - "observedFirstMeaningfulPaintTs": 258554675, - "observedLargestContentfulPaint": 1990, - "observedLargestContentfulPaintTs": 258900451, - "observedLargestContentfulPaintAllFrames": 1990, - "observedLargestContentfulPaintAllFramesTs": 258900451, - "observedTraceEnd": 4438, - "observedTraceEndTs": 261348289, - "observedLoad": 1944, - "observedLoadTs": 258854826, - "observedDomContentLoaded": 1634, - "observedDomContentLoadedTs": 258544948, + "observedNavigationStartTs": 195879560, + "observedFirstPaint": 1899, + "observedFirstPaintTs": 197778328, + "observedFirstContentfulPaint": 1899, + "observedFirstContentfulPaintTs": 197778328, + "observedFirstContentfulPaintAllFrames": 1899, + "observedFirstContentfulPaintAllFramesTs": 197778328, + "observedFirstMeaningfulPaint": 1899, + "observedFirstMeaningfulPaintTs": 197778328, + "observedLargestContentfulPaint": 2372, + "observedLargestContentfulPaintTs": 198251417, + "observedLargestContentfulPaintAllFrames": 2372, + "observedLargestContentfulPaintAllFramesTs": 198251417, + "observedTraceEnd": 5433, + "observedTraceEndTs": 201312513, + "observedLoad": 2286, + "observedLoadTs": 198165287, + "observedDomContentLoaded": 1863, + "observedDomContentLoadedTs": 197742272, "observedCumulativeLayoutShift": 0.02169012451171875, "observedCumulativeLayoutShiftMainFrame": 0.02169012451171875, "observedTotalCumulativeLayoutShift": 0.02169012451171875, - "observedFirstVisualChange": 1645, - "observedFirstVisualChangeTs": 258555635, - "observedLastVisualChange": 2562, - "observedLastVisualChangeTs": 259472635, - "observedSpeedIndex": 2141, - "observedSpeedIndexTs": 259051304 + "observedFirstVisualChange": 1895, + "observedFirstVisualChangeTs": 197774560, + "observedLastVisualChange": 2929, + "observedLastVisualChangeTs": 198808560, + "observedSpeedIndex": 2407, + "observedSpeedIndexTs": 198286068 }, { "lcpInvalidated": false @@ -475492,19 +477926,19 @@ "numScripts": 43, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1274, - "numTasksOver10ms": 9, - "numTasksOver25ms": 4, + "numTasks": 1362, + "numTasksOver10ms": 8, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.002, - "throughput": 5522324.599719018, - "maxRtt": 151.737, - "maxServerLatency": 296.13200000000006, - "totalByteWeight": 541404, - "totalTaskTime": 341.799999999999, - "mainDocumentTransferSize": 10116 + "rtt": 80.572, + "throughput": 3557575.0258116797, + "maxRtt": 80.779, + "maxServerLatency": 478.721, + "totalByteWeight": 541533, + "totalTaskTime": 332.20699999999925, + "mainDocumentTransferSize": 10115 } ] } @@ -475643,7 +478077,7 @@ "http": { "url": "https://carnet-de-bord.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:53:18 GMT", + "end_time": "Sun, 24 Dec 2023 01:45:37 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -475651,18 +478085,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 01:53:17 GMT", + "Date": "Sun, 24 Dec 2023 01:45:36 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "b96c3c60-6eb0-457e-9f60-9b82208d51ed", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-x0N2LfgGP+wkKLhpw8pQmw=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"1fgls8w\"", - "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.30349441.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.82cb4b19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.098b00ea.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.0a60a580.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.96ede98b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.e1a646cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.89f7376a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.2b1cfb83.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.3c11a5aa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.e324bc9d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.6ecd212c.js>; rel=\"modulepreload\"; nopush", + "X-Request-ID": "256c542f-897d-45b1-a65f-2333a3e50fb9", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-tfa9wKg9Q56aBbUO+2AgBg=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"17eemtb\"", + "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.358c8082.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.80e7cb6b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.0496c451.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.7d519e3f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5182cb0d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.0a97f7be.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4796fa19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.3ed40098.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.59dcd376.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.7b706e10.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.714a6c64.js>; rel=\"modulepreload\"; nopush", "x-sveltekit-page": "true" }, - "scan_id": 45537089, + "scan_id": 45752427, "score": 65, - "start_time": "Sun, 17 Dec 2023 01:53:13 GMT", + "start_time": "Sun, 24 Dec 2023 01:45:32 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -475678,10 +478112,10 @@ "'self'" ], "connect-src": [ - "https://client.crisp.chat/static/", + "'self'", "https://sentry.gip-inclusion.cloud-ed.fr", + "https://client.crisp.chat/static/", "wss://client.relay.crisp.chat/", - "'self'", "https://matomo.inclusion.beta.gouv.fr" ], "default-src": [ @@ -475689,14 +478123,14 @@ "https://matomo.inclusion.beta.gouv.fr" ], "font-src": [ - "https://client.crisp.chat/static/", "'self'", + "https://client.crisp.chat/static/", "data:" ], "img-src": [ "'self'", - "data:", - "https://*.crisp.chat/" + "https://*.crisp.chat/", + "data:" ], "media-src": [ "'self'", @@ -475704,13 +478138,13 @@ ], "script-src": [ "'self'", - "'nonce-x0n2lfggp+wkklhpw8pqmw=='", - "https://client.crisp.chat/", - "https://matomo.inclusion.beta.gouv.fr" + "'nonce-tfa9wkg9q56abbuo+2agbg=='", + "https://matomo.inclusion.beta.gouv.fr", + "https://client.crisp.chat/" ], "style-src": [ - "'unsafe-inline'", "'self'", + "'unsafe-inline'", "*.crisp.chat" ] }, @@ -475909,77 +478343,77 @@ "testssl": [ { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475987,7 +478421,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475995,7 +478429,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476003,7 +478437,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476011,7 +478445,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476019,7 +478453,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476027,483 +478461,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "79 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702837478" + "finding": "1703436482" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -476511,7 +478945,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -476520,7 +478954,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -476529,7 +478963,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -476538,7 +478972,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -476547,7 +478981,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -476555,7 +478989,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -476564,7 +478998,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -476573,7 +479007,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -476582,7 +479016,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -476591,14 +479025,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -476607,7 +479041,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -476616,7 +479050,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -476625,7 +479059,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -476634,7 +479068,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476643,7 +479077,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476652,7 +479086,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -476661,7 +479095,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -476670,7 +479104,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -476679,7 +479113,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -476688,399 +479122,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477088,7 +479522,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477096,7 +479530,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477104,7 +479538,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477112,7 +479546,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477120,7 +479554,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477128,483 +479562,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "79 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702837572" + "finding": "1703436536" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -477612,7 +480046,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -477621,7 +480055,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -477630,7 +480064,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -477639,7 +480073,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -477648,7 +480082,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -477656,7 +480090,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -477665,7 +480099,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -477674,7 +480108,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -477683,7 +480117,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -477692,14 +480126,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -477708,7 +480142,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -477717,7 +480151,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -477726,7 +480160,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -477735,7 +480169,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477744,7 +480178,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477753,7 +480187,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -477762,7 +480196,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -477771,7 +480205,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -477780,7 +480214,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -477789,322 +480223,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -478309,7 +480743,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -478456,7 +480890,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "86 >= 30 days" + "finding": "79 >= 30 days" }, { "id": "cert_notBefore", @@ -478659,7 +481093,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702837665" + "finding": "1703436591" }, { "id": "HSTS", @@ -479212,77 +481646,77 @@ }, { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479290,7 +481724,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479298,7 +481732,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479306,7 +481740,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -479314,7 +481748,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -479322,7 +481756,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -479330,483 +481764,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "79 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702837759" + "finding": "1703436647" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -479814,7 +482248,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -479823,7 +482257,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -479832,7 +482266,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -479841,7 +482275,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -479850,7 +482284,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -479858,7 +482292,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -479867,7 +482301,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -479876,7 +482310,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -479885,7 +482319,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -479894,14 +482328,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -479910,7 +482344,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -479919,7 +482353,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -479928,7 +482362,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -479937,7 +482371,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -479946,7 +482380,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -479955,7 +482389,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -479964,7 +482398,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -479973,7 +482407,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -479982,7 +482416,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -479991,332 +482425,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "378" + "finding": "223" } ], "thirdparties": { @@ -480324,19 +482758,19 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-crvucCjaxtlQYW+OOBME6w=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-eneMlT7xonOgjbikdo2W7A=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 18:23:04 GMT", - "etag": "W/\"1vbg2f4\"", - "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.30349441.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.82cb4b19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.098b00ea.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.0a60a580.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.96ede98b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.e1a646cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.89f7376a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.2b1cfb83.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.3c11a5aa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.e324bc9d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.6ecd212c.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 24 Dec 2023 16:46:58 GMT", + "etag": "W/\"1a6bnjz\"", + "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.358c8082.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.80e7cb6b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.0496c451.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.7d519e3f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5182cb0d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.0a97f7be.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4796fa19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.3ed40098.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.59dcd376.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.7b706e10.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.714a6c64.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000", - "x-request-id": "30bb0c38-dada-44a0-9c32-8711c1ea7f9c", + "x-request-id": "fe4f4a6e-eab7-48e0-8988-8a37f91b194a", "x-sveltekit-page": "true" }, "endpoints": [ { "hostname": "carnet-de-bord.fabrique.social.gouv.fr", - "ip": "185.21.194.105", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -480404,7 +482838,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:22:21", + "@generated": "Sun, 24 Dec 2023 16:46:16", "site": [ { "@name": "https://carnet-de-bord.fabrique.social.gouv.fr", @@ -480523,73 +482957,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "carnet-de-bord.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord.fabrique.social.gouv.fr", - "timestamp": "2023-12-17T18:31:03.011829535Z", + "extracted-results": [ + "cdb-app-production.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T16:52:13.010987051Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "carnet-de-bord.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord.fabrique.social.gouv.fr", - "extracted-results": [ - "cdb-app-production.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T18:31:04.003635503Z", + "timestamp": "2023-12-24T16:52:13.163864841Z", "matcher-status": true }, { @@ -480603,7 +483037,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -480618,7 +483053,7 @@ "Let's Encrypt" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:38:30.956120837Z", + "timestamp": "2023-12-24T16:59:13.451789792Z", "matcher-status": true }, { @@ -480632,7 +483067,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -480647,7 +483083,7 @@ "carnet-de-bord.fabrique.social.gouv.fr" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:38:30.956244958Z", + "timestamp": "2023-12-24T16:59:13.451913473Z", "matcher-status": true }, { @@ -480662,7 +483098,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -480677,7 +483114,7 @@ "tls12" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:38:32.90905153Z", + "timestamp": "2023-12-24T16:59:14.909529389Z", "matcher-status": true }, { @@ -480692,7 +483129,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -480707,7 +483145,7 @@ "tls13" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T18:38:33.316041941Z", + "timestamp": "2023-12-24T16:59:15.12261903Z", "matcher-status": true } ], @@ -480715,7 +483153,7 @@ { "requestedUrl": "https://carnet-de-bord.fabrique.social.gouv.fr/", "finalUrl": "https://carnetdebord.inclusion.beta.gouv.fr/", - "fetchTime": "2023-12-17T18:22:36.620Z", + "fetchTime": "2023-12-24T16:46:30.140Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://carnet-de-bord.fabrique.social.gouv.fr/) was redirected to https://carnetdebord.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -480780,53 +483218,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6253, + "numericValue": 5902, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3272, - "firstMeaningfulPaint": 3347, - "largestContentfulPaint": 4098, - "interactive": 6253, - "speedIndex": 5306, - "totalBlockingTime": 513, - "maxPotentialFID": 523, - "cumulativeLayoutShift": 0.021529296875, - "cumulativeLayoutShiftMainFrame": 0.021529296875, - "totalCumulativeLayoutShift": 0.021529296875, + "firstContentfulPaint": 3197, + "firstMeaningfulPaint": 3272, + "largestContentfulPaint": 4022, + "interactive": 5902, + "speedIndex": 4144, + "totalBlockingTime": 137, + "maxPotentialFID": 253, + "cumulativeLayoutShift": 0.007981014251708985, + "cumulativeLayoutShiftMainFrame": 0.007981014251708985, + "totalCumulativeLayoutShift": 0.007981014251708985, "observedTimeOrigin": 0, - "observedTimeOriginTs": 287125688, + "observedTimeOriginTs": 280759150, "observedNavigationStart": 0, - "observedNavigationStartTs": 287125688, - "observedFirstPaint": 1843, - "observedFirstPaintTs": 288968228, - "observedFirstContentfulPaint": 1843, - "observedFirstContentfulPaintTs": 288968228, - "observedFirstContentfulPaintAllFrames": 1843, - "observedFirstContentfulPaintAllFramesTs": 288968228, - "observedFirstMeaningfulPaint": 1843, - "observedFirstMeaningfulPaintTs": 288968228, - "observedLargestContentfulPaint": 2100, - "observedLargestContentfulPaintTs": 289226126, - "observedLargestContentfulPaintAllFrames": 2100, - "observedLargestContentfulPaintAllFramesTs": 289226126, - "observedTraceEnd": 4632, - "observedTraceEndTs": 291757474, - "observedLoad": 2059, - "observedLoadTs": 289184898, - "observedDomContentLoaded": 1816, - "observedDomContentLoadedTs": 288941302, - "observedCumulativeLayoutShift": 0.021529296875, - "observedCumulativeLayoutShiftMainFrame": 0.021529296875, - "observedTotalCumulativeLayoutShift": 0.021529296875, - "observedFirstVisualChange": 1829, - "observedFirstVisualChangeTs": 288954688, - "observedLastVisualChange": 2696, - "observedLastVisualChangeTs": 289821688, - "observedSpeedIndex": 2253, - "observedSpeedIndexTs": 289378258 + "observedNavigationStartTs": 280759150, + "observedFirstPaint": 1176, + "observedFirstPaintTs": 281935579, + "observedFirstContentfulPaint": 1176, + "observedFirstContentfulPaintTs": 281935579, + "observedFirstContentfulPaintAllFrames": 1176, + "observedFirstContentfulPaintAllFramesTs": 281935579, + "observedFirstMeaningfulPaint": 1176, + "observedFirstMeaningfulPaintTs": 281935579, + "observedLargestContentfulPaint": 1340, + "observedLargestContentfulPaintTs": 282099153, + "observedLargestContentfulPaintAllFrames": 1340, + "observedLargestContentfulPaintAllFramesTs": 282099153, + "observedTraceEnd": 4543, + "observedTraceEndTs": 285301679, + "observedLoad": 1299, + "observedLoadTs": 282058293, + "observedDomContentLoaded": 1128, + "observedDomContentLoadedTs": 281887498, + "observedCumulativeLayoutShift": 0.007981014251708985, + "observedCumulativeLayoutShiftMainFrame": 0.007981014251708985, + "observedTotalCumulativeLayoutShift": 0.007981014251708985, + "observedFirstVisualChange": 1146, + "observedFirstVisualChangeTs": 281905150, + "observedLastVisualChange": 1929, + "observedLastVisualChangeTs": 282688150, + "observedSpeedIndex": 1449, + "observedSpeedIndexTs": 282208545 }, { "lcpInvalidated": false @@ -480848,19 +483286,19 @@ "numScripts": 43, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1424, - "numTasksOver10ms": 9, - "numTasksOver25ms": 6, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasks": 1330, + "numTasksOver10ms": 8, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 136.065, - "throughput": 6347233.316574239, - "maxRtt": 137.444, - "maxServerLatency": 270.59400000000005, - "totalByteWeight": 541442, - "totalTaskTime": 600.2410000000019, - "mainDocumentTransferSize": 10137 + "rtt": 101.03, + "throughput": 10226824.96534108, + "maxRtt": 101.141, + "maxServerLatency": 196.39400000000003, + "totalByteWeight": 541399, + "totalTaskTime": 364.58899999999835, + "mainDocumentTransferSize": 10119 } ] } @@ -480995,7 +483433,7 @@ "http": { "url": "https://collectif-objets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 18:39:42 GMT", + "end_time": "Sun, 24 Dec 2023 17:00:09 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -481003,13 +483441,13 @@ "Cache-Control": "max-age=0, private, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy-Report-Only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-/5emVCDmJv72B51YzjHplg=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-/5emVCDmJv72B51YzjHplg=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", + "Content-Security-Policy-Report-Only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-YZvic52y7lR+/raEmac3iQ=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-YZvic52y7lR+/raEmac3iQ=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 18:39:41 GMT", - "ETag": "W/\"24ca71df3bc2f37ee6610a78820685cd\"", - "Link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", + "Date": "Sun, 24 Dec 2023 17:00:08 GMT", + "ETag": "W/\"31dd48ce54f0f07ed2350a6ef0a56709\"", + "Link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_collectif_objets_session=81OiJkvZ0tYC38t5VvdZd1RB0fWIlBm%2FokSpC0%2FH0B82qNBh4XM3GdCC3%2BuPM9lUsqH1bGaM2qUG4OE5B3tSfdZmZ705x7JxPfTbG59teHXLJkRfTlOh8rlrF6G9vO39rzHmn16PGirah6o53nXdn2QsHL5I3DDE%2FmghgZT5XjdENwowgItup4ppTw4OeszULYBkaWqglolNQahF3P3xseJZOH98c3IRkVNfjJMMvznZZDHQhgByEu%2F1ZujKw6SxyD8wbpj8Y5qd04og0Ro8RtsJtohbNORfuqMylPDC5cc%2B--kbvMKf8EZ1g4WTRO--cojStTU73n5DWlMwYdrQmA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_collectif_objets_session=iH%2FFQKFa8UsC8GSw6IbEnbjC3H9wWjh1b9NV77DMBRE5gLtWZczMYaTEBk3T5P2K1ODeXB4REOhVJR8KSDfLhHD4vWaVVfJzsf3zWUE6%2FrCKkj9UTD5SAboDEY532o6py%2FCaFyUU5770VfQkmVfemBdpYDNwgGIRVvZ9GISkswoYnB9eBh9QOGJmU4ZYKNYYGUCVSJaxup2hpT2tbHtW%2FfZQO855Ato70yGhyLNJ1AlVUPgIvZLwSzbvd5czTgVBrUJSmuri%2B6KUsSClwjFL9ua9KllTRP%2Fgwvo%2FoHsrog07--iJV%2B%2FHl7kNQ5ARqp--Ribxp4DOtCrXXJre44DTHA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -481017,13 +483455,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "23230998-9fbe-4baf-bb42-ced29957e667, 23230998-9fbe-4baf-bb42-ced29957e667", - "X-Runtime": "0.009231", + "X-Request-ID": "6daffe88-e0ef-4732-afec-be5b9ef4ac06, 6daffe88-e0ef-4732-afec-be5b9ef4ac06", + "X-Runtime": "0.009373", "X-XSS-Protection": "0" }, - "scan_id": 45561241, + "scan_id": 45769636, "score": 45, - "start_time": "Sun, 17 Dec 2023 18:39:37 GMT", + "start_time": "Sun, 24 Dec 2023 17:00:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -481228,77 +483666,77 @@ "testssl": [ { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481306,7 +483744,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481314,7 +483752,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481322,7 +483760,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481330,7 +483768,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -481338,7 +483776,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -481346,553 +483784,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702838517" + "finding": "1703437343" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-Wl618ptJFMZAzvXsEqZyIA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-Wl618ptJFMZAzvXsEqZyIA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-7GhG94Ysiu+K9zL2E8lEJA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-7GhG94Ysiu+K9zL2E8lEJA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -481900,7 +484338,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -481909,7 +484347,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -481918,7 +484356,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -481927,7 +484365,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -481936,7 +484374,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -481944,7 +484382,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -481953,7 +484391,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -481962,7 +484400,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -481971,7 +484409,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -481980,14 +484418,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -481996,7 +484434,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -482005,7 +484443,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -482014,7 +484452,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -482023,7 +484461,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482032,7 +484470,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482041,7 +484479,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -482050,7 +484488,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -482059,7 +484497,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -482068,7 +484506,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -482077,392 +484515,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482470,7 +484908,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482478,7 +484916,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482486,7 +484924,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482494,7 +484932,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482502,7 +484940,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482510,553 +484948,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702838617" + "finding": "1703437442" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-c0/YVdywmuGxrHzDS5AAzg=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-c0/YVdywmuGxrHzDS5AAzg=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-5eD873/SN7biDdmApztswA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-5eD873/SN7biDdmApztswA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -483064,7 +485502,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -483073,7 +485511,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -483082,7 +485520,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -483091,7 +485529,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -483100,7 +485538,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -483108,7 +485546,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -483117,7 +485555,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -483126,7 +485564,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -483135,7 +485573,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -483144,14 +485582,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -483160,7 +485598,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -483169,7 +485607,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -483178,7 +485616,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -483187,7 +485625,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -483196,7 +485634,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -483205,7 +485643,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -483214,7 +485652,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -483223,7 +485661,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -483232,7 +485670,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -483241,392 +485679,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", + "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483634,7 +486072,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483642,7 +486080,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483650,7 +486088,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -483658,7 +486096,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -483666,7 +486104,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -483674,553 +486112,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702838717" + "finding": "1703437542" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-oUderX960uJh6Sdy5EIRzg=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-oUderX960uJh6Sdy5EIRzg=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-K1n3hZzZEFfFzOTuuCf8lA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-K1n3hZzZEFfFzOTuuCf8lA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -484228,7 +486666,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -484237,7 +486675,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -484246,7 +486684,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -484255,7 +486693,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -484264,7 +486702,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -484272,7 +486710,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -484281,7 +486719,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -484290,7 +486728,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -484299,7 +486737,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -484308,14 +486746,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -484324,7 +486762,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -484333,7 +486771,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -484342,7 +486780,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -484351,7 +486789,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -484360,7 +486798,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -484369,7 +486807,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -484378,7 +486816,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -484387,7 +486825,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -484396,7 +486834,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -484405,392 +486843,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484798,7 +487236,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484806,7 +487244,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484814,7 +487252,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -484822,7 +487260,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -484830,7 +487268,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -484838,553 +487276,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702838818" + "finding": "1703437642" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-5gXXu+5Bwac7dpbjJRqm/A=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-5gXXu+5Bwac7dpbjJRqm/A=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-PBB7TjIhenNeJyVF47jXqg=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-PBB7TjIhenNeJyVF47jXqg=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -485392,7 +487830,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -485401,7 +487839,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -485410,7 +487848,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -485419,7 +487857,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -485428,7 +487866,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -485436,7 +487874,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -485445,7 +487883,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -485454,7 +487892,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -485463,7 +487901,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -485472,14 +487910,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -485488,7 +487926,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -485497,7 +487935,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -485506,7 +487944,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -485515,7 +487953,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -485524,7 +487962,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -485533,7 +487971,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -485542,7 +487980,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -485551,7 +487989,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -485560,7 +487998,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -485569,333 +488007,338 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "405" + "finding": "404" } ], "thirdparties": { - "trackers": [], + "trackers": [ + { + "type": "unknown", + "url": "https://sentry.incubateur.net/api/41/envelope/?sentry_key=99d2b66bbb984049aeaa1ec14866be65&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.35.0" + } + ], "cookies": [ { "name": "_collectif_objets_session", - "value": "OcM%2FqJhYgjKL%2BObeakBfjyI7oGpHeOII2rCwGtnj7CktpfpH6QKVhkjrDTeQSppve0X1jSBSQvbw%2Fny7wpEIjJu2bpZok7JC77s5lq12YU%2BfIqOVgXIfYxOn2T%2F3IZaEN9no6jGEbuUE8kK1Q%2BNrg9KRz86Cp1D4LEDaaj3aaBI7dmROkiMcjMIYtzQXN7GU32F99VjKcztreBTPK1wlgNxaYNtTn4oVUKotWhPP4RLHaFUpDUrmqkwumym7G3ILF85eUzDCrqAsUUKfmsvBY%2FlZOen6ymY4hZtbf41%2B%2BXMO--%2F1MH4KgiKSmrorjM--%2FNPSc9KQ9aMAwrW1f%2FrfXg%3D%3D", + "value": "3ExwvlVnUKNrVyPjFWqowaOJTQd3Z%2F7jKaU1dP8GY91xwpryFffNunhEQXHzbO3wDrTN7%2BNd0QQcOD19FaSxAQCl%2FkgfrmP7ohmo%2F%2BHHF7EaAFsC3PqX%2FKTg6MaAzscE1sV8lDkj7Ag05206f49eOXli1LiBF%2BuICb5qN96ub7lA205lX5wkjcWM8PokdrpfZkg%2FxE2yNMSZPn187uMT%2F0Bq7PGwi6OFfAi2UFiptw2CXqX5ybhLkofv9B0Hp5MYGOYSEUuSiICbd5mFiH8AhiQcvmv4IyG8oZWRaHDm%2Fd%2Fh--Ty%2B5lKT2vRhQ8GdZ--HrltiQ4dc9WUmXVAKq9G5w%3D%3D", "domain": "collectif-objets.beta.gouv.fr", "path": "/", "expires": -1, @@ -485912,20 +488355,20 @@ "headers": { "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-0lxQ7DTeFvR1Zb+OI5ZstA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-0lxQ7DTeFvR1Zb+OI5ZstA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", + "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-FDWgPvdgBK0ZqUA2Jm6duA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-FDWgPvdgBK0ZqUA2Jm6duA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 18:40:13 GMT", - "etag": "W/\"391dd4ce3bc26f223bb6a3c6d733605a\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", + "date": "Sun, 24 Dec 2023 17:00:41 GMT", + "etag": "W/\"163d0dc7333eb469ef0dac42b0dfc08c\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_collectif_objets_session=OcM%2FqJhYgjKL%2BObeakBfjyI7oGpHeOII2rCwGtnj7CktpfpH6QKVhkjrDTeQSppve0X1jSBSQvbw%2Fny7wpEIjJu2bpZok7JC77s5lq12YU%2BfIqOVgXIfYxOn2T%2F3IZaEN9no6jGEbuUE8kK1Q%2BNrg9KRz86Cp1D4LEDaaj3aaBI7dmROkiMcjMIYtzQXN7GU32F99VjKcztreBTPK1wlgNxaYNtTn4oVUKotWhPP4RLHaFUpDUrmqkwumym7G3ILF85eUzDCrqAsUUKfmsvBY%2FlZOen6ymY4hZtbf41%2B%2BXMO--%2F1MH4KgiKSmrorjM--%2FNPSc9KQ9aMAwrW1f%2FrfXg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_collectif_objets_session=3ExwvlVnUKNrVyPjFWqowaOJTQd3Z%2F7jKaU1dP8GY91xwpryFffNunhEQXHzbO3wDrTN7%2BNd0QQcOD19FaSxAQCl%2FkgfrmP7ohmo%2F%2BHHF7EaAFsC3PqX%2FKTg6MaAzscE1sV8lDkj7Ag05206f49eOXli1LiBF%2BuICb5qN96ub7lA205lX5wkjcWM8PokdrpfZkg%2FxE2yNMSZPn187uMT%2F0Bq7PGwi6OFfAi2UFiptw2CXqX5ybhLkofv9B0Hp5MYGOYSEUuSiICbd5mFiH8AhiQcvmv4IyG8oZWRaHDm%2Fd%2Fh--Ty%2B5lKT2vRhQ8GdZ--HrltiQ4dc9WUmXVAKq9G5w%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "280ed378-6918-4d58-82e7-b3c73683f880\n280ed378-6918-4d58-82e7-b3c73683f880", - "x-runtime": "0.009108", + "x-request-id": "cb12ef35-5e63-4ab6-9fe7-ef4f67f72b64\ncb12ef35-5e63-4ab6-9fe7-ef4f67f72b64", + "x-runtime": "0.024032", "x-xss-protection": "0" }, "endpoints": [ @@ -485984,6 +488427,96 @@ } } } + }, + { + "hostname": "sentry.incubateur.net", + "ip": "154.41.70.13", + "geoip": { + "city": { + "geoname_id": 2972191, + "names": { + "de": "Tours", + "en": "Tours", + "es": "Tours", + "fr": "Tours", + "ja": "トゥール", + "pt-BR": "Tours", + "ru": "Тур", + "zh-CN": "图尔" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 47.3983, + "longitude": 0.7037, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 3027939, + "iso_code": "CVL", + "names": { + "de": "Centre-Val de Loire", + "en": "Centre-Val de Loire", + "es": "Centro-Valle de Loira", + "fr": "Centre-Val de Loire" + } + }, + { + "geoname_id": 3012804, + "iso_code": "37", + "names": { + "de": "Indre-et-Loire", + "en": "Indre-et-Loire", + "es": "Indre y Loira", + "fr": "Indre-et-Loire" + } + } + ] + } } ] }, @@ -486159,7 +488692,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:39:10", + "@generated": "Sun, 24 Dec 2023 16:59:35", "site": [ { "@name": "https://collectif-objets.beta.gouv.fr", @@ -486327,23 +488860,20 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -486358,27 +488888,30 @@ "type": "dns", "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", - "timestamp": "2023-12-17T18:48:49.171903234Z", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2023-12-24T17:09:13.73075596Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -486388,36 +488921,33 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "collectif-objets.beta.gouv.fr.", - "matched-at": "_dmarc.collectif-objets.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1;p=none;\"" - ], - "timestamp": "2023-12-17T18:48:49.178581586Z", + "matched-at": "collectif-objets.beta.gouv.fr", + "timestamp": "2023-12-24T17:09:13.735978881Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -486434,27 +488964,30 @@ "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:cbd861ef1a2aacf4030653ea082d45a8\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T18:48:49.305267025Z", + "timestamp": "2023-12-24T17:09:13.76908959Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -486470,30 +489003,30 @@ "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"brevo-code:cbd861ef1a2aacf4030653ea082d45a8\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T18:48:50.304927654Z", + "timestamp": "2023-12-24T17:09:14.574603731Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -486503,17 +489036,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "collectif-objets.beta.gouv.fr.", - "matched-at": "collectif-objets.beta.gouv.fr", + "matched-at": "_dmarc.collectif-objets.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T18:48:50.458049528Z", + "timestamp": "2023-12-24T17:09:14.861472247Z", "matcher-status": true }, { @@ -486550,8 +489083,8 @@ "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:49:08.641713656Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:09:33.066241009Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486583,12 +489116,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:01.619892445Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:26.359563594Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486620,12 +489153,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:01.619932409Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:26.359622093Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486657,12 +489190,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:01.619942809Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:26.359634576Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486694,12 +489227,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:01.619956394Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:26.359646369Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486731,12 +489264,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:01.619974027Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:26.359659092Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486763,8 +489296,8 @@ "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr/robots.txt", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:18.180554481Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:10:43.110573358Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -486803,8 +489336,8 @@ "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:50:40.068772324Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:11:05.365175934Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: collectif-objets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr/'", "matcher-status": true }, @@ -486819,7 +489352,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -486833,8 +489367,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:56:32.384020806Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:16:57.870720603Z", "matcher-status": true }, { @@ -486848,7 +489382,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -486862,8 +489397,8 @@ "extracted-results": [ "collectif-objets.beta.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:56:32.384161288Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:16:57.870839564Z", "matcher-status": true }, { @@ -486878,7 +489413,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -486892,8 +489428,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:56:35.107646493Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:17:00.646873124Z", "matcher-status": true }, { @@ -486908,7 +489444,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -486922,8 +489459,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T18:56:35.419127469Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T17:17:00.958376728Z", "matcher-status": true } ], @@ -486931,7 +489468,7 @@ { "requestedUrl": "https://collectif-objets.beta.gouv.fr/", "finalUrl": "https://collectif-objets.beta.gouv.fr/", - "fetchTime": "2023-12-17T18:39:25.005Z", + "fetchTime": "2023-12-24T16:59:51.872Z", "runWarnings": [], "categories": { "performance": { @@ -486942,7 +489479,7 @@ "snapshot" ], "id": "performance", - "score": 0.49598121643066406 + "score": 0.4973968505859375 }, "accessibility": { "title": "Accessibility", @@ -486994,53 +489531,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5007, + "numericValue": 4782, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2910, - "firstMeaningfulPaint": 2910, - "largestContentfulPaint": 3214, - "interactive": 5007, - "speedIndex": 3400, - "totalBlockingTime": 315, - "maxPotentialFID": 347, + "firstContentfulPaint": 2757, + "firstMeaningfulPaint": 2757, + "largestContentfulPaint": 3060, + "interactive": 4782, + "speedIndex": 3331, + "totalBlockingTime": 238, + "maxPotentialFID": 237, "cumulativeLayoutShift": 0.13047739919026694, "cumulativeLayoutShiftMainFrame": 0.13047739919026694, "totalCumulativeLayoutShift": 0.13047739919026694, "observedTimeOrigin": 0, - "observedTimeOriginTs": 309760910, + "observedTimeOriginTs": 351680592, "observedNavigationStart": 0, - "observedNavigationStartTs": 309760910, - "observedFirstPaint": 1204, - "observedFirstPaintTs": 310964977, - "observedFirstContentfulPaint": 1204, - "observedFirstContentfulPaintTs": 310964977, - "observedFirstContentfulPaintAllFrames": 1204, - "observedFirstContentfulPaintAllFramesTs": 310964977, - "observedFirstMeaningfulPaint": 1204, - "observedFirstMeaningfulPaintTs": 310964977, - "observedLargestContentfulPaint": 1204, - "observedLargestContentfulPaintTs": 310964977, - "observedLargestContentfulPaintAllFrames": 1204, - "observedLargestContentfulPaintAllFramesTs": 310964977, - "observedTraceEnd": 4702, - "observedTraceEndTs": 314463178, - "observedLoad": 2394, - "observedLoadTs": 312154568, - "observedDomContentLoaded": 1214, - "observedDomContentLoadedTs": 310974418, + "observedNavigationStartTs": 351680592, + "observedFirstPaint": 1176, + "observedFirstPaintTs": 352857083, + "observedFirstContentfulPaint": 1176, + "observedFirstContentfulPaintTs": 352857083, + "observedFirstContentfulPaintAllFrames": 1176, + "observedFirstContentfulPaintAllFramesTs": 352857083, + "observedFirstMeaningfulPaint": 1176, + "observedFirstMeaningfulPaintTs": 352857083, + "observedLargestContentfulPaint": 1176, + "observedLargestContentfulPaintTs": 352857083, + "observedLargestContentfulPaintAllFrames": 1176, + "observedLargestContentfulPaintAllFramesTs": 352857083, + "observedTraceEnd": 4682, + "observedTraceEndTs": 356362329, + "observedLoad": 2372, + "observedLoadTs": 354053070, + "observedDomContentLoaded": 1212, + "observedDomContentLoadedTs": 352892506, "observedCumulativeLayoutShift": 0.13047739919026694, "observedCumulativeLayoutShiftMainFrame": 0.13047739919026694, "observedTotalCumulativeLayoutShift": 0.13047739919026694, - "observedFirstVisualChange": 1176, - "observedFirstVisualChangeTs": 310936910, - "observedLastVisualChange": 1576, - "observedLastVisualChangeTs": 311336910, - "observedSpeedIndex": 1189, - "observedSpeedIndexTs": 310949562 + "observedFirstVisualChange": 1171, + "observedFirstVisualChangeTs": 352851592, + "observedLastVisualChange": 1438, + "observedLastVisualChangeTs": 353118592, + "observedSpeedIndex": 1180, + "observedSpeedIndexTs": 352860552 }, { "lcpInvalidated": false @@ -487058,23 +489595,23 @@ "type": "debugdata", "items": [ { - "numRequests": 60, - "numScripts": 8, - "numStylesheets": 5, + "numRequests": 62, + "numScripts": 9, + "numStylesheets": 6, "numFonts": 4, - "numTasks": 1511, + "numTasks": 1533, "numTasksOver10ms": 6, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.44899999999998, - "throughput": 8127414.693264961, - "maxRtt": 150.441, - "maxServerLatency": 26.400000000000006, - "totalByteWeight": 1069646, - "totalTaskTime": 497.73399999999594, - "mainDocumentTransferSize": 8187 + "rtt": 148.79, + "throughput": 9274645.589198243, + "maxRtt": 150.555, + "maxServerLatency": 28.661999999999978, + "totalByteWeight": 1062224, + "totalTaskTime": 427.59799999999643, + "mainDocumentTransferSize": 8292 } ] } @@ -487169,9 +489706,9 @@ "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, - "trackersGrade": "A", - "trackersCount": 0, - "lighthouse_performance": 0.49598121643066406, + "trackersGrade": "B", + "trackersCount": 1, + "lighthouse_performance": 0.4973968505859375, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -487200,7 +489737,7 @@ "http": { "url": "https://rdv-insertion.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 18:48:59 GMT", + "end_time": "Sun, 24 Dec 2023 17:07:35 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -487209,24 +489746,24 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 18:48:58 GMT", - "ETag": "W/\"0ada1fbc75909f5baeab60677610fe54\"", + "Date": "Sun, 24 Dec 2023 17:07:34 GMT", + "ETag": "W/\"27a7c68b679daa3f052b0fbd890f881c\"", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_rdv_insertion_session=zywa9g0PQXHD3nw1UjEjbYY1h094wSrRJ0VUL30%2BSXK8XAm76hgb29kjNQmCgPBWie1Kr5NxutrPMDfMbxW7rWGadIsWOhMdZxhiFBWXCyZwOhy5ZuvMNlIOXQZUiZpt8vOsnkwPN9%2BNvgQ6YjdmtZ4qcJy4fp4Nt9Nwd%2B1wZrMpJFFXJa5XbChqrM%2FuQi7hxQP%2F%2BM6t7aLb8M1GKLia2Iuo9udVQqvid2fgrmuYTOv0nu8j%2F7ij4s%2FRuBYguEM0XKcFNGRhHLz64cdQRZUFMZB%2BHLwfff7kmYq7O7Vd--Z56NXtYdG1rLyNMY--ShkQk0jqOZ9Ix7O6OKxSwg%3D%3D; path=/; HttpOnly", + "Set-Cookie": "_rdv_insertion_session=floFqFDJBF6PpgitBrbym87ACkRpFgqek9Y6ysyC%2Br80Vll5vqq7YxcjukNq9sgI39GAlLpMP8gRSZwruzZdCBSo9kYODQhvpqaQrRQhRS%2Brbtut3nZzY%2BAET5LbettpOhbKcOGaRA%2BveRvG3D%2FeO9l%2FXE5WpwPDvK3%2B53%2FEjUTMTE4Iy1wXb2nQfSKdDV3%2Bd35WNzSBTZyc3vuUUxqMsWD0h3lrlouJu6MXxgt3bzL1dJD%2FM5QB7JcWzPtZrmy6kOSK3nAOkXQkBviBQsoA%2FQzq5H5F1ynlBAZk4wd6--AHz4sBKuv16%2FwbPq--OpfNd7tBXZBnIsnuLrizsg%3D%3D; path=/; HttpOnly", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "8aa471ed-c126-4e8d-ad6b-4a6f426d6759, 8aa471ed-c126-4e8d-ad6b-4a6f426d6759", - "X-Runtime": "0.011966", + "X-Request-ID": "4030a3eb-b6c6-46a8-9399-20954ca06af1, 4030a3eb-b6c6-46a8-9399-20954ca06af1", + "X-Runtime": "0.011363", "X-XSS-Protection": "1; mode=block", "vary": "Accept, Origin" }, - "scan_id": 45561406, + "scan_id": 45769957, "score": 65, - "start_time": "Sun, 17 Dec 2023 18:48:54 GMT", + "start_time": "Sun, 24 Dec 2023 17:07:31 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -487431,77 +489968,77 @@ "testssl": [ { "id": "service", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487509,7 +490046,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487517,7 +490054,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487525,7 +490062,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487533,7 +490070,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -487541,7 +490078,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -487549,539 +490086,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-19 10:17" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-17 10:17" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702839035" + "finding": "1703437748" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -488089,7 +490626,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -488098,7 +490635,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -488107,7 +490644,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -488116,7 +490653,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -488125,7 +490662,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -488133,7 +490670,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -488142,7 +490679,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -488151,7 +490688,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -488160,7 +490697,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -488169,14 +490706,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -488185,7 +490722,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -488194,7 +490731,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -488203,7 +490740,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -488212,7 +490749,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -488221,7 +490758,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -488230,7 +490767,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -488239,7 +490776,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -488248,7 +490785,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -488257,7 +490794,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -488266,392 +490803,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488659,7 +491196,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488667,7 +491204,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488675,7 +491212,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488683,7 +491220,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -488691,7 +491228,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -488699,539 +491236,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-19 10:17" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-17 10:17" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702839089" + "finding": "1703437802" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -489239,7 +491776,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -489248,7 +491785,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -489257,7 +491794,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -489266,7 +491803,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -489275,7 +491812,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -489283,7 +491820,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -489292,7 +491829,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -489301,7 +491838,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -489310,7 +491847,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -489319,14 +491856,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -489335,7 +491872,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -489344,7 +491881,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -489353,7 +491890,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -489362,7 +491899,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -489371,7 +491908,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -489380,7 +491917,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -489389,7 +491926,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -489398,7 +491935,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -489407,7 +491944,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -489416,332 +491953,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "112" + "finding": "110" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://www.rdv-insertion.fr/packs/css/application-0ae42efc.css" + "url": "https://www.rdv-insertion.fr/packs/css/application-6c4c3c76.css" }, { "type": "unknown", @@ -489801,7 +492338,7 @@ }, { "type": "unknown", - "url": "https://www.rdv-insertion.fr/packs/css/application-0ae42efc.css" + "url": "https://www.rdv-insertion.fr/packs/css/application-6c4c3c76.css" }, { "type": "unknown", @@ -489814,7 +492351,7 @@ "value": "1", "domain": "rdv-insertion.fr", "path": "/", - "expires": 1702840773, + "expires": 1703439489, "size": 17, "httpOnly": false, "secure": false, @@ -489826,10 +492363,10 @@ }, { "name": "_pk_id.214.9398", - "value": "0361065eac8ed127.1702838973.", + "value": "1754238c2e533c87.1703437690.", "domain": "rdv-insertion.fr", "path": "/", - "expires": 1736794173, + "expires": 1737392890, "size": 43, "httpOnly": false, "secure": false, @@ -489841,11 +492378,11 @@ }, { "name": "_rdv_insertion_session", - "value": "ppY%2FRutS2zwex7WIKtyM%2BSxrjN8RzBCuyQoI6iTbCYHtq%2FO47nPQgZBhoMI7yCOiN3WvRxkz%2Bxs4r9PI36BV3ngIeujJfbQ4UAcW3ck3BAg1Dc5DmGbiIAFKFZcB%2FwLNlfjYujNFoOHDm7A5grHIqCk%2B3GHSSb5ENaqjZbwiFAaUh7FDDAdKHQneSfpvRlFged486ETlswbYQTFj3%2F7DKx5Ysjwqmxwn2ODnoRRGVUGfAhL%2FCkRihLPJ%2F69nCxAt8%2BNUqx0AMKxeaCyJucsD9H7Ocj0npDidYYhyORT5--o7pE5oXKhQ2tCk5p--nCMAAInjcYhnssCr00teQQ%3D%3D", + "value": "4DzyB3F43YwFPKoYY6GIIf1vQD5fjGRGwRh77XU5YAiPJIzZfTDXwIY1F66J9eLU1SohE6%2BcEOrFKWbS5J1tIeq9B7eNtUledXFGQqaMQjjrqIkU5hX759uGq2eMsRtHG%2B9awjx5Y4BlBTphYlWJoIKFn5x6k7MzggZhC65swfck4Venq3OTC011ZiwQ7ZCVkccMDT%2FL1qWW7nkBkIjgpBzofZ5%2BI3G6h0RLxmOPNpPB16%2ByRLFE66KFaHcPgArcd%2FoziRc4JX2zwRGaGLHnetZ6Vg87scLCwXmyKbdR--kiSzGr2Ls7GHk2o6--WMyca5t0LFcKhC1lfZG7yQ%3D%3D", "domain": "rdv-insertion.fr", "path": "/", "expires": -1, - "size": 386, + "size": 378, "httpOnly": true, "secure": false, "session": true, @@ -489858,18 +492395,18 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 18:49:31 GMT", - "etag": "W/\"16c5559902da782acb50afec37b4f1ae\"", + "date": "Sun, 24 Dec 2023 17:08:07 GMT", + "etag": "W/\"353d93baafc904a6ad88045089cd119b\"", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_rdv_insertion_session=ppY%2FRutS2zwex7WIKtyM%2BSxrjN8RzBCuyQoI6iTbCYHtq%2FO47nPQgZBhoMI7yCOiN3WvRxkz%2Bxs4r9PI36BV3ngIeujJfbQ4UAcW3ck3BAg1Dc5DmGbiIAFKFZcB%2FwLNlfjYujNFoOHDm7A5grHIqCk%2B3GHSSb5ENaqjZbwiFAaUh7FDDAdKHQneSfpvRlFged486ETlswbYQTFj3%2F7DKx5Ysjwqmxwn2ODnoRRGVUGfAhL%2FCkRihLPJ%2F69nCxAt8%2BNUqx0AMKxeaCyJucsD9H7Ocj0npDidYYhyORT5--o7pE5oXKhQ2tCk5p--nCMAAInjcYhnssCr00teQQ%3D%3D; path=/; HttpOnly", + "set-cookie": "_rdv_insertion_session=4DzyB3F43YwFPKoYY6GIIf1vQD5fjGRGwRh77XU5YAiPJIzZfTDXwIY1F66J9eLU1SohE6%2BcEOrFKWbS5J1tIeq9B7eNtUledXFGQqaMQjjrqIkU5hX759uGq2eMsRtHG%2B9awjx5Y4BlBTphYlWJoIKFn5x6k7MzggZhC65swfck4Venq3OTC011ZiwQ7ZCVkccMDT%2FL1qWW7nkBkIjgpBzofZ5%2BI3G6h0RLxmOPNpPB16%2ByRLFE66KFaHcPgArcd%2FoziRc4JX2zwRGaGLHnetZ6Vg87scLCwXmyKbdR--kiSzGr2Ls7GHk2o6--WMyca5t0LFcKhC1lfZG7yQ%3D%3D; path=/; HttpOnly", "strict-transport-security": "max-age=31536000", "vary": "Origin", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "fa219409-abc5-42d5-94d4-a15acff11fb7\nfa219409-abc5-42d5-94d4-a15acff11fb7", - "x-runtime": "0.011276", + "x-request-id": "b7df02ba-d37d-451e-a6f2-57c11d0f0175\nb7df02ba-d37d-451e-a6f2-57c11d0f0175", + "x-runtime": "0.012863", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -489987,7 +492524,7 @@ }, { "hostname": "github-production-user-asset-6210df.s3.amazonaws.com", - "ip": "52.217.125.209", + "ip": "52.216.186.203", "geoip": { "city": { "geoname_id": 4744870, @@ -490415,7 +492952,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:48:28", + "@generated": "Sun, 24 Dec 2023 17:07:05", "site": [ { "@name": "https://rdv-insertion.fr", @@ -490601,7 +493138,42 @@ "type": "dns", "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", - "timestamp": "2023-12-17T18:52:53.320409886Z", + "timestamp": "2023-12-24T17:11:25.784617452Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "rdv-insertion.fr.", + "matched-at": "rdv-insertion.fr", + "timestamp": "2023-12-24T17:11:25.950074658Z", "matcher-status": true }, { @@ -490637,7 +493209,7 @@ "ns106.ovh.net.", "dns106.ovh.net." ], - "timestamp": "2023-12-17T18:52:53.47612748Z", + "timestamp": "2023-12-24T17:11:26.863209782Z", "matcher-status": true }, { @@ -490673,13 +493245,13 @@ "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", "extracted-results": [ + "\"4|https://www.rdv-insertion.fr\"", "\"v=spf1 include:mx.ovh.com ~all\"", "\"v=spf1 mx include:spf.sendinblue.com ~all\"", - "\"4|https://www.rdv-insertion.fr\"", - "\"google-site-verification=5c-bH2RgJsjwcmF5pPbaIRvRN2BDuxzRyxvfIjO4LIo\"", - "\"Sendinblue-code:8a7575490e676f56fad614fdf8a16cda\"" + "\"Sendinblue-code:8a7575490e676f56fad614fdf8a16cda\"", + "\"google-site-verification=5c-bH2RgJsjwcmF5pPbaIRvRN2BDuxzRyxvfIjO4LIo\"" ], - "timestamp": "2023-12-17T18:52:53.493041086Z", + "timestamp": "2023-12-24T17:11:26.948774825Z", "matcher-status": true }, { @@ -490716,46 +493288,11 @@ "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", "extracted-results": [ - "5 mx2.mail.ovh.net.", "100 mx3.mail.ovh.net.", + "5 mx2.mail.ovh.net.", "1 mx1.mail.ovh.net." ], - "timestamp": "2023-12-17T18:52:53.497432809Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "rdv-insertion.fr.", - "matched-at": "rdv-insertion.fr", - "timestamp": "2023-12-17T18:52:53.559869704Z", + "timestamp": "2023-12-24T17:11:26.952502645Z", "matcher-status": true }, { @@ -490793,7 +493330,7 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:05.978300555Z", + "timestamp": "2023-12-24T17:11:37.283827751Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490834,7 +493371,7 @@ "1; mode=block" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:05.987131746Z", + "timestamp": "2023-12-24T17:11:37.291989946Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490867,12 +493404,12 @@ ] } }, - "matcher-name": "openfire", + "matcher-name": "gitbook", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:32.390139195Z", + "timestamp": "2023-12-24T17:12:00.208724013Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490905,12 +493442,12 @@ ] } }, - "matcher-name": "gitbook", + "matcher-name": "openfire", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:32.39019038Z", + "timestamp": "2023-12-24T17:12:00.208769197Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490942,12 +493479,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580582825Z", + "timestamp": "2023-12-24T17:12:08.900002586Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490979,12 +493516,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580625705Z", + "timestamp": "2023-12-24T17:12:08.900038853Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491016,12 +493553,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580642877Z", + "timestamp": "2023-12-24T17:12:08.900054141Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491053,12 +493590,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580658326Z", + "timestamp": "2023-12-24T17:12:08.900069269Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491090,12 +493627,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580671641Z", + "timestamp": "2023-12-24T17:12:08.900082434Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491127,12 +493664,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:41.580684254Z", + "timestamp": "2023-12-24T17:12:08.900095408Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491170,199 +493707,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://rdv-insertion.fr", - "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", - "extracted-results": [ - "true" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650335539Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://rdv-insertion.fr", - "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", - "extracted-results": [ - "active" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650378089Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://rdv-insertion.fr", - "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", - "extracted-results": [ - "2025-07-06T15:47:47Z" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650388889Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://rdv-insertion.fr", - "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", - "extracted-results": [ - "Ano Nymous" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650402344Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "" + "2023-05-27T20:47:10.173177Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650420348Z", + "timestamp": "2023-12-24T17:12:19.051970933Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491400,15 +493753,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "nameServers", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "" + "ns106.ovh.net", + "dns106.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650436007Z", + "timestamp": "2023-12-24T17:12:19.05201754Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491446,16 +493800,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "secureDNS", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "dns106.ovh.net", - "ns106.ovh.net" + "true" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650449913Z", + "timestamp": "2023-12-24T17:12:19.052034141Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491501,7 +493854,7 @@ "2021-07-06T15:47:47Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.65046415Z", + "timestamp": "2023-12-24T17:12:19.052051513Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491539,15 +493892,199 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "expirationDate", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "2023-05-27T20:47:10.173177Z" + "2025-07-06T15:47:47Z" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T17:12:19.052067643Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantName", + "type": "http", + "host": "https://rdv-insertion.fr", + "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", + "extracted-results": [ + "Ano Nymous" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T17:12:19.052083963Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://rdv-insertion.fr", + "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", + "extracted-results": [ + "" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T17:12:19.05209877Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", + "type": "http", + "host": "https://rdv-insertion.fr", + "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", + "extracted-results": [ + "" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T17:12:19.052112847Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://rdv-insertion.fr", + "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", + "extracted-results": [ + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T18:53:52.650476613Z", + "timestamp": "2023-12-24T17:12:19.052125911Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491584,7 +494121,7 @@ "https://www.rdv-insertion.fr/packs/js/application-95c78a8e39a828f1af9b.js" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:53:58.125202482Z", + "timestamp": "2023-12-24T17:12:24.164936113Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: rdv-insertion.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr/'", "matcher-status": true }, @@ -491624,7 +494161,7 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr/", "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:54:05.867594846Z", + "timestamp": "2023-12-24T17:12:31.33985645Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: rdv-insertion.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr/'", "matcher-status": true }, @@ -491639,7 +494176,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -491654,7 +494192,7 @@ "Let's Encrypt" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:57:06.804913633Z", + "timestamp": "2023-12-24T17:15:30.817136056Z", "matcher-status": true }, { @@ -491668,7 +494206,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -491683,7 +494222,7 @@ "rdv-insertion.fr" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:57:06.805033838Z", + "timestamp": "2023-12-24T17:15:30.817252552Z", "matcher-status": true }, { @@ -491698,7 +494237,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -491713,7 +494253,7 @@ "tls12" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:57:08.316921138Z", + "timestamp": "2023-12-24T17:15:32.175938618Z", "matcher-status": true }, { @@ -491728,7 +494268,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -491743,7 +494284,7 @@ "tls13" ], "ip": "148.253.96.193", - "timestamp": "2023-12-17T18:57:08.509791535Z", + "timestamp": "2023-12-24T17:15:32.349261253Z", "matcher-status": true } ], @@ -491751,7 +494292,7 @@ { "requestedUrl": "https://rdv-insertion.fr/", "finalUrl": "https://rdv-insertion.fr/", - "fetchTime": "2023-12-17T18:48:42.893Z", + "fetchTime": "2023-12-24T17:07:19.424Z", "runWarnings": [], "categories": { "performance": { @@ -491814,53 +494355,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6085, + "numericValue": 6442, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4204, - "firstMeaningfulPaint": 4963, - "largestContentfulPaint": 6423, - "interactive": 6085, - "speedIndex": 4539, - "totalBlockingTime": 492, - "maxPotentialFID": 441, + "firstContentfulPaint": 4276, + "firstMeaningfulPaint": 4585, + "largestContentfulPaint": 6213, + "interactive": 6442, + "speedIndex": 4337, + "totalBlockingTime": 229, + "maxPotentialFID": 171, "cumulativeLayoutShift": 0.0009560190836588542, "cumulativeLayoutShiftMainFrame": 0.0009560190836588542, "totalCumulativeLayoutShift": 0.0009560190836588542, "observedTimeOrigin": 0, - "observedTimeOriginTs": 376078226, + "observedTimeOriginTs": 417681509, "observedNavigationStart": 0, - "observedNavigationStartTs": 376078226, - "observedFirstPaint": 1137, - "observedFirstPaintTs": 377215148, - "observedFirstContentfulPaint": 1137, - "observedFirstContentfulPaintTs": 377215148, - "observedFirstContentfulPaintAllFrames": 1137, - "observedFirstContentfulPaintAllFramesTs": 377215148, - "observedFirstMeaningfulPaint": 1634, - "observedFirstMeaningfulPaintTs": 377712553, - "observedLargestContentfulPaint": 1634, - "observedLargestContentfulPaintTs": 377712553, - "observedLargestContentfulPaintAllFrames": 1634, - "observedLargestContentfulPaintAllFramesTs": 377712553, - "observedTraceEnd": 4622, - "observedTraceEndTs": 380700642, - "observedLoad": 1698, - "observedLoadTs": 377776712, - "observedDomContentLoaded": 1147, - "observedDomContentLoadedTs": 377225616, + "observedNavigationStartTs": 417681509, + "observedFirstPaint": 1077, + "observedFirstPaintTs": 418758560, + "observedFirstContentfulPaint": 1077, + "observedFirstContentfulPaintTs": 418758560, + "observedFirstContentfulPaintAllFrames": 1077, + "observedFirstContentfulPaintAllFramesTs": 418758560, + "observedFirstMeaningfulPaint": 1480, + "observedFirstMeaningfulPaintTs": 419161042, + "observedLargestContentfulPaint": 1480, + "observedLargestContentfulPaintTs": 419161042, + "observedLargestContentfulPaintAllFrames": 1480, + "observedLargestContentfulPaintAllFramesTs": 419161042, + "observedTraceEnd": 4648, + "observedTraceEndTs": 422329085, + "observedLoad": 1616, + "observedLoadTs": 419297709, + "observedDomContentLoaded": 1056, + "observedDomContentLoadedTs": 418737781, "observedCumulativeLayoutShift": 0.0009560190836588542, "observedCumulativeLayoutShiftMainFrame": 0.0009560190836588542, "observedTotalCumulativeLayoutShift": 0.0009560190836588542, - "observedFirstVisualChange": 1140, - "observedFirstVisualChangeTs": 377218226, - "observedLastVisualChange": 1673, - "observedLastVisualChangeTs": 377751226, - "observedSpeedIndex": 1285, - "observedSpeedIndexTs": 377363572 + "observedFirstVisualChange": 1051, + "observedFirstVisualChangeTs": 418732509, + "observedLastVisualChange": 1668, + "observedLastVisualChangeTs": 419349509, + "observedSpeedIndex": 1179, + "observedSpeedIndexTs": 418860745 }, { "lcpInvalidated": false @@ -491882,19 +494423,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 2, - "numTasks": 776, - "numTasksOver10ms": 5, + "numTasks": 796, + "numTasksOver10ms": 8, "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.329999999999998, - "throughput": 10683189.655173814, - "maxRtt": 85.568, - "maxServerLatency": 80.91900000000001, - "totalByteWeight": 945803, - "totalTaskTime": 314.4559999999986, - "mainDocumentTransferSize": 4316 + "rtt": 2.089000000000002, + "throughput": 10640609.94205657, + "maxRtt": 83.45100000000001, + "maxServerLatency": 85.726, + "totalByteWeight": 945657, + "totalTaskTime": 284.52399999999744, + "mainDocumentTransferSize": 4304 } ] } @@ -491987,7 +494528,7 @@ "http": { "url": "https://metiers.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 18:52:14 GMT", + "end_time": "Sun, 24 Dec 2023 17:12:21 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -491996,19 +494537,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 18:52:12 GMT", + "Date": "Sun, 24 Dec 2023 17:12:19 GMT", "ETag": "\"ad04-45PolNXOe/X0AWkUe+kqtWoLfso\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Frame-Options": "DENY", "X-Powered-By": "Next.js", - "X-Request-ID": "2f67ddee-9049-41ef-b9a4-29004b119615", + "X-Request-ID": "4779fa21-e69f-4a9b-af9a-d636f5980242", "x-nextjs-cache": "HIT" }, - "scan_id": 45561472, + "scan_id": 45770167, "score": 60, - "start_time": "Sun, 17 Dec 2023 18:52:08 GMT", + "start_time": "Sun, 24 Dec 2023 17:12:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -492193,15 +494734,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T18:42:21Z", - "next_check_at": "2023-12-17T19:41:52Z", + "last_check_at": "2023-12-24T16:55:42Z", + "next_check_at": "2023-12-24T17:55:38Z", "mute_until": null, "favicon_url": "https://metiers.numerique.gouv.fr/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T12:44:20Z", + "tested_at": "2023-12-24T13:56:26Z", "expires_at": "2024-02-22T06:36:10Z", "valid": true, "error": null @@ -492236,77 +494777,77 @@ "testssl": [ { "id": "service", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492314,7 +494855,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492322,7 +494863,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492330,7 +494871,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492338,7 +494879,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -492346,7 +494887,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -492354,504 +494895,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702839270" + "finding": "1703438035" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -492859,7 +495400,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -492868,7 +495409,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -492877,7 +495418,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -492886,7 +495427,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -492895,7 +495436,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -492903,7 +495444,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -492912,7 +495453,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -492921,7 +495462,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -492930,7 +495471,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -492939,14 +495480,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -492955,7 +495496,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -492964,7 +495505,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -492973,7 +495514,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -492982,7 +495523,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -492991,7 +495532,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -493000,7 +495541,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -493009,7 +495550,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -493018,7 +495559,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -493027,7 +495568,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -493036,392 +495577,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/148.253.96.193", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493429,7 +495970,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493437,7 +495978,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493445,7 +495986,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -493453,7 +495994,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -493461,7 +496002,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -493469,504 +496010,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702839370" + "finding": "1703438089" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -493974,7 +496515,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -493983,7 +496524,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -493992,7 +496533,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -494001,7 +496542,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -494010,7 +496551,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -494018,7 +496559,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -494027,7 +496568,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -494036,7 +496577,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -494045,7 +496586,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -494054,14 +496595,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -494070,7 +496611,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -494079,7 +496620,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -494088,7 +496629,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -494097,7 +496638,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -494106,7 +496647,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -494115,7 +496656,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -494124,7 +496665,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -494133,7 +496674,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -494142,7 +496683,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -494151,392 +496692,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494544,7 +497085,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494552,7 +497093,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494560,7 +497101,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494568,7 +497109,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -494576,7 +497117,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -494584,504 +497125,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702839471" + "finding": "1703438144" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -495089,7 +497630,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -495098,7 +497639,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -495107,7 +497648,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -495116,7 +497657,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -495125,7 +497666,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -495133,7 +497674,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -495142,7 +497683,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -495151,7 +497692,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -495160,7 +497701,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -495169,14 +497710,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -495185,7 +497726,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -495194,7 +497735,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -495203,7 +497744,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -495212,7 +497753,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -495221,7 +497762,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -495230,7 +497771,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -495239,7 +497780,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -495248,7 +497789,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -495257,7 +497798,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -495266,392 +497807,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495659,7 +498200,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495667,7 +498208,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495675,7 +498216,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495683,7 +498224,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -495691,7 +498232,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -495699,504 +498240,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702839571" + "finding": "1703438199" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -496204,7 +498745,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -496213,7 +498754,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -496222,7 +498763,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -496231,7 +498772,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -496240,7 +498781,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -496248,7 +498789,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -496257,7 +498798,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -496266,7 +498807,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -496275,7 +498816,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -496284,14 +498825,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -496300,7 +498841,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -496309,7 +498850,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -496318,7 +498859,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -496327,7 +498868,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -496336,7 +498877,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -496345,7 +498886,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -496354,7 +498895,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -496363,7 +498904,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -496372,7 +498913,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -496381,325 +498922,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "406" + "finding": "222" } ], "thirdparties": { @@ -496734,7 +499275,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/3fbfa45d-3642-49fd-8fe8-4f11ae3539bb/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-18-52" + "url": "https://client.crisp.chat/settings/website/3fbfa45d-3642-49fd-8fe8-4f11ae3539bb/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-17-12" }, { "type": "unknown", @@ -496747,27 +499288,42 @@ ], "cookies": [ { - "name": "_pk_id.191.4581", - "value": "85e9aca1bc5dc93e.1702839166.", + "name": "__Host-next-auth.csrf-token", + "value": "a31369b9e053845a48de712bd7d9d033b33e33566e266a4302a4be47fb90f2df%7Cbae290d9c70cd59e7493883f7e23de5d5e58160cedb4265b59db0f323eb7fb9f", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": 1736794366, - "size": 43, - "httpOnly": false, - "secure": false, - "session": false, + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "_pk_ses.191.4581", - "value": "1", + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Fmetiers.numerique.gouv.fr", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": 1702840965, - "size": 17, + "expires": -1, + "size": 70, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "crisp-client%2Fsession%2F3fbfa45d-3642-49fd-8fe8-4f11ae3539bb", + "value": "session_b6db31bc-83b3-4b9d-861d-9457d1da0895", + "domain": ".numerique.gouv.fr", + "path": "/", + "expires": 1719205974, + "size": 105, "httpOnly": false, "secure": false, "session": false, @@ -496777,30 +499333,30 @@ "sourcePort": 443 }, { - "name": "__Secure-next-auth.callback-url", - "value": "https%3A%2F%2Fmetiers.numerique.gouv.fr", + "name": "_pk_ses.191.4581", + "value": "1", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": -1, - "size": 70, - "httpOnly": true, - "secure": true, - "session": true, + "expires": 1703439773, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "__Host-next-auth.csrf-token", - "value": "9e83fd633bb1ce3bc3a8dbd47dc9d6daf6bdb7f9c0116ed034e92fcefce433be%7C49aade6607dd46083175f435eb9377a12215dc6021b4cfb22a7d902d172ecc28", + "name": "_pk_id.191.4581", + "value": "2555ada786d53356.1703437974.", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": -1, - "size": 158, - "httpOnly": true, - "secure": true, - "session": true, + "expires": 1737393174, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", @@ -496811,19 +499367,19 @@ "cache-control": "s-maxage=300, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 18:52:44 GMT", + "date": "Sun, 24 Dec 2023 17:12:52 GMT", "etag": "\"ad04-45PolNXOe/X0AWkUe+kqtWoLfso\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-frame-options": "DENY", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "15270aac-8ac0-464a-894c-d45db93ec9f6" + "x-request-id": "c714f2b3-7bdd-434d-861c-aebdd7c1df9a" }, "endpoints": [ { "hostname": "metiers.numerique.gouv.fr", - "ip": "185.21.194.105", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -496879,7 +499435,7 @@ }, { "hostname": "betagouv-metiers-numeriques.s3.eu-west-3.amazonaws.com", - "ip": "3.5.225.182", + "ip": "16.12.18.34", "geoip": { "city": { "geoname_id": 2988507, @@ -497328,7 +499884,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 18:51:41", + "@generated": "Sun, 24 Dec 2023 17:11:51", "site": [ { "@name": "https://metiers.numerique.gouv.fr", @@ -497489,22 +500045,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -497520,28 +500076,27 @@ "type": "dns", "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", - "timestamp": "2023-12-17T19:01:23.349272206Z", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2023-12-24T17:18:02.961429561Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -497557,10 +500112,10 @@ "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2023-12-17T19:01:23.502813522Z", + "timestamp": "2023-12-24T17:18:02.974647521Z", "matcher-status": true }, { @@ -497600,26 +500155,26 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T19:01:23.508615667Z", + "timestamp": "2023-12-24T17:18:02.976635652Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -497635,27 +500190,28 @@ "type": "dns", "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" - ], - "timestamp": "2023-12-17T19:01:24.349523482Z", + "timestamp": "2023-12-24T17:18:03.280011134Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -497671,10 +500227,10 @@ "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T19:01:24.349843567Z", + "timestamp": "2023-12-24T17:18:04.047998382Z", "matcher-status": true }, { @@ -497703,8 +500259,8 @@ "GET", "HEAD" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:01:34.988265934Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:09.899560887Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497734,8 +500290,8 @@ "extracted-results": [ "tim.berners-lee@w3c.org" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:01:43.073975436Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:14.473583774Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497761,8 +500317,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:21.998862112Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:38.467809636Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497788,8 +500344,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:21.998916824Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:38.46787633Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497821,12 +500377,123 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389157594Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914825239Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914879069Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914896411Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914909906Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497862,8 +500529,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389221002Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914923101Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497895,12 +500562,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.38924169Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914936586Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497932,12 +500599,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389258712Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914950832Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497973,119 +500640,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389278188Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389293978Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389311751Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389329654Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914963696Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -498117,12 +500673,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:36.389346565Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:45.914978013Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -498156,9 +500712,9 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:59.632190219Z", - "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n lknkn1:__typename \\n lknkn2:__typename \\n lknkn3:__typename \\n lknkn4:__typename \\n lknkn5:__typename \\n lknkn6:__typename \\n }\"}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:59.063824187Z", + "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n uuxmq1:__typename \\n uuxmq2:__typename \\n uuxmq3:__typename \\n uuxmq4:__typename \\n uuxmq5:__typename \\n uuxmq6:__typename \\n }\"}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", "matcher-status": true }, { @@ -498190,8 +500746,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:59.7237809Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:59.117573997Z", "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n __schema {\\n directive\\n }\\n}\",\"variables\":null}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", "matcher-status": true }, @@ -498224,8 +500780,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql?query={__typename}", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:02:59.837527222Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:18:59.157024506Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql?query={__typename}'", "matcher-status": true }, @@ -498240,7 +500796,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -498254,8 +500811,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:09:08.071845289Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:24:47.675907996Z", "matcher-status": true }, { @@ -498269,7 +500826,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -498283,8 +500841,8 @@ "extracted-results": [ "metiers.numerique.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:09:08.071967266Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:24:47.676035813Z", "matcher-status": true }, { @@ -498299,7 +500857,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -498313,8 +500872,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:09:10.87761018Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:24:49.108918773Z", "matcher-status": true }, { @@ -498329,7 +500888,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -498343,8 +500903,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:09:11.195583804Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T17:24:49.299903037Z", "matcher-status": true } ], @@ -498352,7 +500912,7 @@ { "requestedUrl": "https://metiers.numerique.gouv.fr/", "finalUrl": "https://metiers.numerique.gouv.fr/", - "fetchTime": "2023-12-17T18:51:55.526Z", + "fetchTime": "2023-12-24T17:12:05.555Z", "runWarnings": [], "categories": { "performance": { @@ -498415,53 +500975,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7736, + "numericValue": 21014, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1897, - "firstMeaningfulPaint": 1897, - "largestContentfulPaint": 3090, - "interactive": 7736, - "speedIndex": 4466, - "totalBlockingTime": 424, - "maxPotentialFID": 708, - "cumulativeLayoutShift": 0.01059366840786404, - "cumulativeLayoutShiftMainFrame": 0.01059366840786404, - "totalCumulativeLayoutShift": 0.01059366840786404, + "firstContentfulPaint": 1744, + "firstMeaningfulPaint": 1744, + "largestContentfulPaint": 1860, + "interactive": 21014, + "speedIndex": 1744, + "totalBlockingTime": 162, + "maxPotentialFID": 648, + "cumulativeLayoutShift": 0.008099200354682074, + "cumulativeLayoutShiftMainFrame": 0.008099200354682074, + "totalCumulativeLayoutShift": 0.008099200354682074, "observedTimeOrigin": 0, - "observedTimeOriginTs": 420329085, + "observedTimeOriginTs": 314607872, "observedNavigationStart": 0, - "observedNavigationStartTs": 420329085, - "observedFirstPaint": 1134, - "observedFirstPaintTs": 421462854, - "observedFirstContentfulPaint": 1134, - "observedFirstContentfulPaintTs": 421462854, - "observedFirstContentfulPaintAllFrames": 1134, - "observedFirstContentfulPaintAllFramesTs": 421462854, - "observedFirstMeaningfulPaint": 1134, - "observedFirstMeaningfulPaintTs": 421462854, - "observedLargestContentfulPaint": 1134, - "observedLargestContentfulPaintTs": 421462854, - "observedLargestContentfulPaintAllFrames": 1134, - "observedLargestContentfulPaintAllFramesTs": 421462854, - "observedTraceEnd": 4513, - "observedTraceEndTs": 424842165, - "observedLoad": 2188, - "observedLoadTs": 422517282, - "observedDomContentLoaded": 1524, - "observedDomContentLoadedTs": 421853357, - "observedCumulativeLayoutShift": 0.01059366840786404, - "observedCumulativeLayoutShiftMainFrame": 0.01059366840786404, - "observedTotalCumulativeLayoutShift": 0.01059366840786404, - "observedFirstVisualChange": 1137, - "observedFirstVisualChangeTs": 421466085, - "observedLastVisualChange": 1537, - "observedLastVisualChangeTs": 421866085, - "observedSpeedIndex": 1180, - "observedSpeedIndexTs": 421509139 + "observedNavigationStartTs": 314607872, + "observedFirstPaint": 572, + "observedFirstPaintTs": 315179401, + "observedFirstContentfulPaint": 572, + "observedFirstContentfulPaintTs": 315179401, + "observedFirstContentfulPaintAllFrames": 572, + "observedFirstContentfulPaintAllFramesTs": 315179401, + "observedFirstMeaningfulPaint": 572, + "observedFirstMeaningfulPaintTs": 315179401, + "observedLargestContentfulPaint": 572, + "observedLargestContentfulPaintTs": 315179401, + "observedLargestContentfulPaintAllFrames": 572, + "observedLargestContentfulPaintAllFramesTs": 315179401, + "observedTraceEnd": 3532, + "observedTraceEndTs": 318139970, + "observedLoad": 1222, + "observedLoadTs": 315829577, + "observedDomContentLoaded": 810, + "observedDomContentLoadedTs": 315418047, + "observedCumulativeLayoutShift": 0.008099200354682074, + "observedCumulativeLayoutShiftMainFrame": 0.008099200354682074, + "observedTotalCumulativeLayoutShift": 0.008099200354682074, + "observedFirstVisualChange": 579, + "observedFirstVisualChangeTs": 315186872, + "observedLastVisualChange": 846, + "observedLastVisualChangeTs": 315453872, + "observedSpeedIndex": 609, + "observedSpeedIndexTs": 315216724 }, { "lcpInvalidated": false @@ -498483,19 +501043,19 @@ "numScripts": 25, "numStylesheets": 3, "numFonts": 4, - "numTasks": 951, - "numTasksOver10ms": 6, + "numTasks": 807, + "numTasksOver10ms": 4, "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.362, - "throughput": 39025793.69862401, - "maxRtt": 152.704, - "maxServerLatency": 101.535, - "totalByteWeight": 6488640, - "totalTaskTime": 523.1640000000002, - "mainDocumentTransferSize": 11501 + "rtt": 5.248, + "throughput": 68989883.52133016, + "maxRtt": 84.657, + "maxServerLatency": 74.41, + "totalByteWeight": 6489032, + "totalTaskTime": 451.6770000000002, + "mainDocumentTransferSize": 11510 } ] } @@ -498599,7 +501159,7 @@ "testsslExpireDate": "2024-02-22T06:36:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", - "cookiesCount": 4, + "cookiesCount": 5, "trackersGrade": "C", "trackersCount": 10, "lighthouse_performance": 0.35, @@ -498636,33 +501196,33 @@ "http": { "url": "https://territoiresentransitions.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:59:48 GMT", + "end_time": "Sun, 24 Dec 2023 17:26:49 GMT", "grade": "A", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "836b918748edcf55-SJC", + "CF-RAY": "83aa8d19997b7aaa-SJC", "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:59:45 GMT", + "Date": "Sun, 24 Dec 2023 17:26:46 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-YzFkNTFlMGItMTlmMy00ZjFmLWJiMGItY2IxYjQyY2JhMzUy' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-ZGM1MTNjODYtNTllNy00ZTkzLTgwMjgtODA5MDdiOWRlNDdh' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-b3-traceid": "55919bd0fe1f97a9", - "x-envoy-upstream-service-time": "788", + "x-b3-traceid": "0d6e0da8b156e5ee", + "x-envoy-upstream-service-time": "606", "x-koyeb-backend": "par1", "x-koyeb-glb": "sfo1", "x-powered-by": "Next.js" }, - "scan_id": 45537176, + "scan_id": 45770376, "score": 95, - "start_time": "Sun, 17 Dec 2023 01:59:41 GMT", + "start_time": "Sun, 24 Dec 2023 17:26:43 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -498681,10 +501241,10 @@ "'none'" ], "connect-src": [ - "https://rlarzronkgoyvtdkltqy.supabase.co", + "https://phenomenal-trust-ee3da2c906.strapiapp.com", "'self'", - "ws://localhost:3000", - "https://phenomenal-trust-ee3da2c906.strapiapp.com" + "https://rlarzronkgoyvtdkltqy.supabase.co", + "ws://localhost:3000" ], "default-src": [ "'self'" @@ -498700,15 +501260,15 @@ ], "frame-src": [ "www.dailymotion.com", - "youtube.com", "www.youtube.com", - "dailymotion.com" + "dailymotion.com", + "youtube.com" ], "img-src": [ - "ytimg.com", - "https://phenomenal-trust-ee3da2c906.media.strapiapp.com", "'self'", "data:", + "https://phenomenal-trust-ee3da2c906.media.strapiapp.com", + "ytimg.com", "blob:" ], "object-src": [ @@ -498716,11 +501276,11 @@ ], "script-src": [ "'strict-dynamic'", - "'nonce-yzfkntflmgitmtlmmy00zjfmlwjimgity2ixyjqyy2jhmzuy'" + "'nonce-zgm1mtnjodytntllny00ztkzltgwmjgtoda5mddiowrlnddh'" ], "style-src": [ - "'unsafe-inline'", - "'self'" + "'self'", + "'unsafe-inline'" ], "upgrade-insecure-requests": [ "'none'" @@ -498938,77 +501498,77 @@ "testssl": [ { "id": "service", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499016,7 +501576,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499024,7 +501584,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499032,7 +501592,7 @@ }, { "id": "cipherlist_LOW", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -499040,7 +501600,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -499048,7 +501608,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -499056,476 +501616,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "84 >= 60 days" }, { "id": "cert_notBefore", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2023-03-19 00:00" }, { "id": "cert_notAfter", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "2024-03-17 23:59" }, { "id": "cert_extlifeSpan", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "1702840183" + "finding": "1703438891" }, { "id": "HSTS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -499533,7 +502093,7 @@ }, { "id": "heartbleed", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -499542,7 +502102,7 @@ }, { "id": "CCS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -499551,7 +502111,7 @@ }, { "id": "ticketbleed", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -499560,7 +502120,7 @@ }, { "id": "ROBOT", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -499569,7 +502129,7 @@ }, { "id": "secure_renego", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -499577,7 +502137,7 @@ }, { "id": "secure_client_renego", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -499586,7 +502146,7 @@ }, { "id": "CRIME_TLS", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -499595,7 +502155,7 @@ }, { "id": "BREACH", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -499604,7 +502164,7 @@ }, { "id": "POODLE_SSL", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -499613,14 +502173,14 @@ }, { "id": "fallback_SCSV", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -499629,7 +502189,7 @@ }, { "id": "FREAK", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -499638,7 +502198,7 @@ }, { "id": "DROWN", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -499647,7 +502207,7 @@ }, { "id": "DROWN_hint", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -499656,7 +502216,7 @@ }, { "id": "LOGJAM", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -499665,7 +502225,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -499674,7 +502234,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -499683,7 +502243,7 @@ }, { "id": "BEAST", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -499692,7 +502252,7 @@ }, { "id": "LUCKY13", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -499701,7 +502261,7 @@ }, { "id": "winshock", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -499710,7 +502270,7 @@ }, { "id": "RC4", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -499719,413 +502279,413 @@ }, { "id": "clientsimulation-android_60", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/104.22.78.190", + "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500133,7 +502693,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500141,7 +502701,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500149,7 +502709,7 @@ }, { "id": "cipherlist_LOW", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -500157,7 +502717,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -500165,7 +502725,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -500173,476 +502733,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "84 >= 60 days" }, { "id": "cert_notBefore", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "2023-03-19 00:00" }, { "id": "cert_notAfter", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "2024-03-17 23:59" }, { "id": "cert_extlifeSpan", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "1702840222" + "finding": "1703438930" }, { "id": "HSTS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -500650,7 +503210,7 @@ }, { "id": "heartbleed", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -500659,7 +503219,7 @@ }, { "id": "CCS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -500668,7 +503228,7 @@ }, { "id": "ticketbleed", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -500677,7 +503237,7 @@ }, { "id": "ROBOT", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -500686,7 +503246,7 @@ }, { "id": "secure_renego", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -500694,7 +503254,7 @@ }, { "id": "secure_client_renego", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -500703,7 +503263,7 @@ }, { "id": "CRIME_TLS", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -500712,7 +503272,7 @@ }, { "id": "BREACH", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -500721,7 +503281,7 @@ }, { "id": "POODLE_SSL", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -500730,14 +503290,14 @@ }, { "id": "fallback_SCSV", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -500746,7 +503306,7 @@ }, { "id": "FREAK", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -500755,7 +503315,7 @@ }, { "id": "DROWN", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -500764,7 +503324,7 @@ }, { "id": "DROWN_hint", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -500773,7 +503333,7 @@ }, { "id": "LOGJAM", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -500782,7 +503342,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -500791,7 +503351,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -500800,7 +503360,7 @@ }, { "id": "BEAST", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -500809,7 +503369,7 @@ }, { "id": "LUCKY13", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -500818,7 +503378,7 @@ }, { "id": "winshock", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -500827,7 +503387,7 @@ }, { "id": "RC4", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -500836,413 +503396,413 @@ }, { "id": "clientsimulation-android_60", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/172.67.24.44", + "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501250,7 +503810,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501258,7 +503818,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501266,7 +503826,7 @@ }, { "id": "cipherlist_LOW", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -501274,7 +503834,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -501282,7 +503842,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -501290,476 +503850,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "84 >= 60 days" }, { "id": "cert_notBefore", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2023-03-19 00:00" }, { "id": "cert_notAfter", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "2024-03-17 23:59" }, { "id": "cert_extlifeSpan", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1702840261" + "finding": "1703438968" }, { "id": "HSTS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "max-age=3600" }, { "id": "banner_reverseproxy", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -501767,7 +504327,7 @@ }, { "id": "heartbleed", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -501776,7 +504336,7 @@ }, { "id": "CCS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -501785,7 +504345,7 @@ }, { "id": "ticketbleed", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -501794,7 +504354,7 @@ }, { "id": "ROBOT", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -501803,7 +504363,7 @@ }, { "id": "secure_renego", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -501811,7 +504371,7 @@ }, { "id": "secure_client_renego", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -501820,7 +504380,7 @@ }, { "id": "CRIME_TLS", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -501829,7 +504389,7 @@ }, { "id": "BREACH", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -501838,7 +504398,7 @@ }, { "id": "POODLE_SSL", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -501847,14 +504407,14 @@ }, { "id": "fallback_SCSV", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -501863,7 +504423,7 @@ }, { "id": "FREAK", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -501872,7 +504432,7 @@ }, { "id": "DROWN", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -501881,7 +504441,7 @@ }, { "id": "DROWN_hint", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -501890,7 +504450,7 @@ }, { "id": "LOGJAM", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -501899,7 +504459,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -501908,7 +504468,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -501917,7 +504477,7 @@ }, { "id": "BEAST", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -501926,7 +504486,7 @@ }, { "id": "LUCKY13", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -501935,7 +504495,7 @@ }, { "id": "winshock", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -501944,7 +504504,7 @@ }, { "id": "RC4", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -501953,346 +504513,346 @@ }, { "id": "clientsimulation-android_60", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "territoiresentransitions.fr/104.22.79.190", + "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "118" + "finding": "117" } ], "thirdparties": { @@ -502303,19 +504863,19 @@ }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/9be617fd937898d3.css" + "url": "https://www.territoiresentransitions.fr/_next/static/css/6e03d5fca0b042af.css" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/0ad276f4ed02b8f5.css" + "url": "https://www.territoiresentransitions.fr/_next/static/css/7d6b9e43f2b3f13f.css" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/css/a941ba9874e5ed93.css" + "url": "https://www.territoiresentransitions.fr/_next/static/css/6c704f18f87c0894.css" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/webpack-ead1b155611f59b9.js" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/webpack-588b2c14645d18ce.js" }, { "type": "unknown", @@ -502353,30 +504913,6 @@ "type": "unknown", "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/engagement_03_a5549da9a9.jpg" }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/Photo_Guillaume_Briand_85d7dc5403.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/675_bis_1_c031a9c0a9.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/jm_portrait_rond_s1j11z_2_dafdf984ed.png" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/epinal_1_c6347b2df2.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/2022_PHOTO_JR_f230eefde5.jpg" - }, - { - "type": "unknown", - "url": "https://phenomenal-trust-ee3da2c906.media.strapiapp.com/WIN_20231214_08_22_00_Pro_2a993e1b5b.jpg" - }, { "type": "unknown", "url": "https://www.territoiresentransitions.fr/_next/static/media/menu-fill.b85985e2.svg" @@ -502443,47 +504979,47 @@ }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/116-74865374f4c82822.js" + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/452-73d10a5cc99bfb9e.js" + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/layout-3e4e396919a20ed8.js" + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/818-13bc3146c9056a01.js" + "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/921-a878b6ebb4311a9c.js" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/116-74865374f4c82822.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/62-0ef25bedb6cf7447.js" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/660-3434c4ee58bb70ce.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/page-a612b9f803c313de.js" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/layout-d099620daedc1b9f.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Bold.f0ef9bad.woff2" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/818-13bc3146c9056a01.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Medium.452138fa.woff2" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/921-a878b6ebb4311a9c.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular.119b3a3e.woff2" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/725-95d26862ba340aaf.js" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/_next/static/media/Marianne-Regular_Italic.db8a6f8b.woff2" + "url": "https://www.territoiresentransitions.fr/_next/static/chunks/app/page-2fda88121c17d848.js" }, { "type": "unknown", @@ -502511,36 +505047,67 @@ }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/stats?_rsc=acgkz" + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/site_labellisation?select=*&order=nom.asc&limit=10" }, { "type": "unknown", - "url": "https://www.territoiresentransitions.fr/contact?_rsc=acgkz" + "url": "https://www.territoiresentransitions.fr/stats?_rsc=acgkz" }, { "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/site_labellisation?select=*&order=nom.asc&limit=10" + "url": "https://www.territoiresentransitions.fr/contact?_rsc=acgkz" }, { "type": "unknown", "url": "https://www.territoiresentransitions.fr/api/amplitude" } ], - "cookies": [], + "cookies": [ + { + "name": "AMP_5e43e02764", + "value": "JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjI4MjMzNzY0Zi1mODAzLTQ4YmEtYmIxZS00MGVlODYwNWI3NDYlMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzAzNDM4ODQxNzg4JTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcwMzQzODg0MTgwOSUyQyUyMmxhc3RFdmVudElkJTIyJTNBMiU3RA==", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1734974841, + "size": 262, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "AMP_MKTG_5e43e02764", + "value": "JTdCJTdE", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1734974841, + "size": 27, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "cf-cache-status": "DYNAMIC", - "cf-ray": "8371750d38875934-IAD", + "cf-ray": "83aa8df2da23241b-IAD", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-N2VhN2MwOGUtMWYxNi00ZjU0LThkNzItNTQxZjJhNmRkY2Y4' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-N2ZlNzUxODUtNThlNi00NThkLWE1Y2MtMDhkMGNhYzg0MjBh' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 19:08:53 GMT", + "date": "Sun, 24 Dec 2023 17:27:21 GMT", "server": "cloudflare", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-b3-traceid": "03ed33f54c2df2c0", - "x-envoy-upstream-service-time": "376", + "x-b3-traceid": "b12bdc2f716cb07c", + "x-envoy-upstream-service-time": "493", "x-koyeb-backend": "par1", "x-koyeb-glb": "was1", "x-powered-by": "Next.js" @@ -502602,7 +505169,7 @@ }, { "hostname": "www.territoiresentransitions.fr", - "ip": "104.22.79.190", + "ip": "104.22.78.190", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -502642,8 +505209,42 @@ }, { "hostname": "rlarzronkgoyvtdkltqy.supabase.co", - "ip": "104.18.38.107", + "ip": "172.64.149.149", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -502945,7 +505546,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:08:11", + "@generated": "Sun, 24 Dec 2023 17:26:18", "site": [ { "@name": "https://territoiresentransitions.fr", @@ -502995,13 +505596,6 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, { "name": "Modern Web Application", "riskcode": "0", @@ -503057,22 +505651,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -503089,12 +505684,45 @@ "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", "extracted-results": [ - "\"Sendinblue-code:72a393fa3aa006d7e49e420aaadeac02\"", - "\"google-site-verification=j9Cg-2lZW0psadVPHIJP7f3qB8rAmS59jfQ1npXbay4\"", - "\"v=spf1 include:_mailcust.gandi.net ?all\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + "10 spool.mail.gandi.net.", + "50 fb.mail.gandi.net." ], - "timestamp": "2023-12-17T19:11:58.028253666Z", + "timestamp": "2023-12-24T17:30:25.700860466Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "territoiresentransitions.fr.", + "matched-at": "territoiresentransitions.fr", + "timestamp": "2023-12-24T17:30:25.703329182Z", "matcher-status": true }, { @@ -503134,30 +505762,28 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T19:11:58.028513982Z", + "timestamp": "2023-12-24T17:30:25.704436502Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-waf-detect", + "template-id": "dns-waf-detect", + "template-path": "/home/runner/nuclei-templates/dns/dns-waf-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS WAF Detection", "author": [ - "pdteam" + "lu4nx" ], "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "tech", + "waf", + "dns" ], + "description": "A DNS WAF was detected.", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 2 }, "classification": { "cve-id": null, @@ -503166,30 +505792,30 @@ ] } }, + "matcher-name": "cloudflare", "type": "dns", "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", - "timestamp": "2023-12-17T19:11:58.028864617Z", + "timestamp": "2023-12-24T17:30:26.697272127Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -503206,10 +505832,12 @@ "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", "extracted-results": [ - "10 spool.mail.gandi.net.", - "50 fb.mail.gandi.net." + "\"Sendinblue-code:72a393fa3aa006d7e49e420aaadeac02\"", + "\"google-site-verification=j9Cg-2lZW0psadVPHIJP7f3qB8rAmS59jfQ1npXbay4\"", + "\"v=spf1 include:_mailcust.gandi.net ?all\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2023-12-17T19:11:58.03045499Z", + "timestamp": "2023-12-24T17:30:26.701366826Z", "matcher-status": true }, { @@ -503245,41 +505873,7 @@ "camilo.ns.cloudflare.com.", "chelsea.ns.cloudflare.com." ], - "timestamp": "2023-12-17T19:11:58.031018047Z", - "matcher-status": true - }, - { - "template": "dns/dns-waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-waf-detect", - "template-id": "dns-waf-detect", - "template-path": "/home/runner/nuclei-templates/dns/dns-waf-detect.yaml", - "info": { - "name": "DNS WAF Detection", - "author": [ - "lu4nx" - ], - "tags": [ - "tech", - "waf", - "dns" - ], - "description": "A DNS WAF was detected.", - "severity": "info", - "metadata": { - "max-request": 2 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "cloudflare", - "type": "dns", - "host": "territoiresentransitions.fr.", - "matched-at": "territoiresentransitions.fr", - "timestamp": "2023-12-17T19:11:59.02875222Z", + "timestamp": "2023-12-24T17:30:26.781133822Z", "matcher-status": true }, { @@ -503304,8 +505898,8 @@ "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://territoiresentransitions.fr", - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:12:23.123698205Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:30:50.792211261Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://territoiresentransitions.fr'", "matcher-status": true }, @@ -503343,15 +505937,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "expirationDate", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "Ano Nymous" + "2024-12-18T16:38:51Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977385671Z", + "timestamp": "2023-12-24T17:31:02.634178759Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503389,16 +505983,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantName", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "chelsea.ns.cloudflare.com", - "camilo.ns.cloudflare.com" + "Ano Nymous" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977461272Z", + "timestamp": "2023-12-24T17:31:02.634234553Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503436,15 +506029,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "secureDNS", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977484025Z", + "timestamp": "2023-12-24T17:31:02.634257015Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503482,15 +506075,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "status", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977501077Z", + "timestamp": "2023-12-24T17:31:02.634273817Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503528,15 +506121,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrationDate", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "false" + "2020-12-18T16:38:51Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977517567Z", + "timestamp": "2023-12-24T17:31:02.634289546Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503574,15 +506167,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "active" + "2023-12-09T15:31:23.512729Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977530091Z", + "timestamp": "2023-12-24T17:31:02.634303322Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503620,15 +506213,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "2020-12-18T16:38:51Z" + "" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977542895Z", + "timestamp": "2023-12-24T17:31:02.634322548Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503666,15 +506259,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "2023-12-09T15:31:23.512729Z" + "" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977555017Z", + "timestamp": "2023-12-24T17:31:02.634335001Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503712,15 +506305,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "nameServers", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "2024-12-18T16:38:51Z" + "camilo.ns.cloudflare.com", + "chelsea.ns.cloudflare.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T19:12:34.977568042Z", + "timestamp": "2023-12-24T17:31:02.634347204Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503759,11 +506353,83 @@ "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://territoiresentransitions.fr/", - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:12:42.092641991Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:31:09.851626707Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://territoiresentransitions.fr/'", "matcher-status": true }, + { + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "info": { + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "author": [ + "righettod", + "forgedhallpass" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], + "severity": "info", + "metadata": { + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + }, + "type": "ssl", + "host": "territoiresentransitions.fr", + "matched-at": "territoiresentransitions.fr:443", + "extracted-results": [ + "tls10" + ], + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:13.99886716Z", + "matcher-status": true + }, + { + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "info": { + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "author": [ + "righettod", + "forgedhallpass" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], + "severity": "info", + "metadata": { + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + }, + "type": "ssl", + "host": "territoiresentransitions.fr", + "matched-at": "territoiresentransitions.fr:443", + "extracted-results": [ + "tls11" + ], + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.064788433Z", + "matcher-status": true + }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -503775,7 +506441,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -503789,8 +506456,8 @@ "extracted-results": [ "Cloudflare, Inc." ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:48.513867893Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.155948911Z", "matcher-status": true }, { @@ -503804,7 +506471,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -503820,8 +506488,8 @@ "sni.cloudflaressl.com", "territoiresentransitions.fr" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:48.514063749Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.15606607Z", "matcher-status": true }, { @@ -503855,78 +506523,8 @@ "CN: sni.cloudflaressl.com", " SAN: [*.territoiresentransitions.fr sni.cloudflaressl.com territoiresentransitions.fr]" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:48.514133961Z", - "matcher-status": true - }, - { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", - "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", - "author": [ - "righettod", - "forgedhallpass" - ], - "tags": [ - "ssl" - ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" - ], - "severity": "info", - "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" - }, - "type": "ssl", - "host": "territoiresentransitions.fr", - "matched-at": "territoiresentransitions.fr:443", - "extracted-results": [ - "tls10" - ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:48.608645083Z", - "matcher-status": true - }, - { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", - "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", - "author": [ - "righettod", - "forgedhallpass" - ], - "tags": [ - "ssl" - ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" - ], - "severity": "info", - "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" - }, - "type": "ssl", - "host": "territoiresentransitions.fr", - "matched-at": "territoiresentransitions.fr:443", - "extracted-results": [ - "tls11" - ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:48.673942674Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.156113158Z", "matcher-status": true }, { @@ -503941,7 +506539,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -503955,8 +506554,8 @@ "extracted-results": [ "tls10" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.009677421Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.222554591Z", "matcher-status": true }, { @@ -503971,7 +506570,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -503985,8 +506585,8 @@ "extracted-results": [ "tls11" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.077863589Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.291307603Z", "matcher-status": true }, { @@ -504001,7 +506601,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -504015,74 +506616,75 @@ "extracted-results": [ "tls12" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.143307151Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.353488817Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls13" + "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.204378346Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.385576347Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" + "tls13" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.271594242Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.412347006Z", "matcher-status": true }, { @@ -504117,8 +506719,8 @@ "extracted-results": [ "[tls11 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.79.190", - "timestamp": "2023-12-17T19:16:49.340154147Z", + "ip": "104.22.78.190", + "timestamp": "2023-12-24T17:35:14.450244311Z", "matcher-status": true } ], @@ -504126,7 +506728,7 @@ { "requestedUrl": "https://territoiresentransitions.fr/", "finalUrl": "https://www.territoiresentransitions.fr/", - "fetchTime": "2023-12-17T19:08:25.692Z", + "fetchTime": "2023-12-24T17:26:32.236Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://territoiresentransitions.fr/) was redirected to https://www.territoiresentransitions.fr/. Try testing the second URL directly." ], @@ -504139,7 +506741,7 @@ "snapshot" ], "id": "performance", - "score": 0.75 + "score": 1 }, "accessibility": { "title": "Accessibility", @@ -504191,53 +506793,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5660, + "numericValue": 5157, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3170, - "firstMeaningfulPaint": 3170, - "largestContentfulPaint": 5302, - "interactive": 5660, - "speedIndex": 3170, - "totalBlockingTime": 32, - "maxPotentialFID": 100, + "firstContentfulPaint": 2274, + "firstMeaningfulPaint": 2274, + "largestContentfulPaint": 3635, + "interactive": 5157, + "speedIndex": 2274, + "totalBlockingTime": 51, + "maxPotentialFID": 152, "cumulativeLayoutShift": 0.01275189717610677, "cumulativeLayoutShiftMainFrame": 0.01275189717610677, "totalCumulativeLayoutShift": 0.01275189717610677, "observedTimeOrigin": 0, - "observedTimeOriginTs": 380068513, + "observedTimeOriginTs": 223051216, "observedNavigationStart": 0, - "observedNavigationStartTs": 380068513, - "observedFirstPaint": 475, - "observedFirstPaintTs": 380543378, - "observedFirstContentfulPaint": 475, - "observedFirstContentfulPaintTs": 380543378, - "observedFirstContentfulPaintAllFrames": 475, - "observedFirstContentfulPaintAllFramesTs": 380543378, - "observedFirstMeaningfulPaint": 475, - "observedFirstMeaningfulPaintTs": 380543378, - "observedLargestContentfulPaint": 475, - "observedLargestContentfulPaintTs": 380543378, - "observedLargestContentfulPaintAllFrames": 475, - "observedLargestContentfulPaintAllFramesTs": 380543378, - "observedTraceEnd": 4087, - "observedTraceEndTs": 384155751, - "observedLoad": 749, - "observedLoadTs": 380817889, - "observedDomContentLoaded": 373, - "observedDomContentLoadedTs": 380441823, + "observedNavigationStartTs": 223051216, + "observedFirstPaint": 614, + "observedFirstPaintTs": 223665160, + "observedFirstContentfulPaint": 614, + "observedFirstContentfulPaintTs": 223665160, + "observedFirstContentfulPaintAllFrames": 614, + "observedFirstContentfulPaintAllFramesTs": 223665160, + "observedFirstMeaningfulPaint": 614, + "observedFirstMeaningfulPaintTs": 223665160, + "observedLargestContentfulPaint": 614, + "observedLargestContentfulPaintTs": 223665160, + "observedLargestContentfulPaintAllFrames": 614, + "observedLargestContentfulPaintAllFramesTs": 223665160, + "observedTraceEnd": 4235, + "observedTraceEndTs": 227286116, + "observedLoad": 699, + "observedLoadTs": 223749868, + "observedDomContentLoaded": 624, + "observedDomContentLoadedTs": 223675121, "observedCumulativeLayoutShift": 0.01275189717610677, "observedCumulativeLayoutShiftMainFrame": 0.01275189717610677, "observedTotalCumulativeLayoutShift": 0.01275189717610677, - "observedFirstVisualChange": 432, - "observedFirstVisualChangeTs": 380500513, - "observedLastVisualChange": 599, - "observedLastVisualChangeTs": 380667513, - "observedSpeedIndex": 456, - "observedSpeedIndexTs": 380524612 + "observedFirstVisualChange": 606, + "observedFirstVisualChangeTs": 223657216, + "observedLastVisualChange": 1023, + "observedLastVisualChangeTs": 224074216, + "observedSpeedIndex": 654, + "observedSpeedIndexTs": 223705218 }, { "lcpInvalidated": false @@ -504255,23 +506857,23 @@ "type": "debugdata", "items": [ { - "numRequests": 55, + "numRequests": 49, "numScripts": 11, "numStylesheets": 3, "numFonts": 4, - "numTasks": 708, - "numTasksOver10ms": 5, - "numTasksOver25ms": 1, + "numTasks": 699, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.247, - "throughput": 109255568.05476746, - "maxRtt": 5.808, - "maxServerLatency": 83.092, - "totalByteWeight": 972174, - "totalTaskTime": 248.02899999999963, - "mainDocumentTransferSize": 29090 + "rtt": 5.358, + "throughput": 47424261.86821076, + "maxRtt": 5.625, + "maxServerLatency": 80.598, + "totalByteWeight": 637909, + "totalTaskTime": 250.45699999999948, + "mainDocumentTransferSize": 26552 } ] } @@ -504371,12 +506973,12 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-03-17T23:59:00.000Z", "testsslGrade": "B", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "F", - "trackersCount": 57, - "lighthouse_performance": 0.75, - "lighthouse_performanceGrade": "B", + "trackersCount": 51, + "lighthouse_performance": 1, + "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -504409,32 +507011,32 @@ "http": { "url": "https://app.territoiresentransitions.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:00:22 GMT", + "end_time": "Sun, 24 Dec 2023 02:01:09 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "836b926889442524-SJC", + "CF-RAY": "83a54128dee87afd-SJC", "Cache-Control": "public, max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 02:00:21 GMT", + "Date": "Sun, 24 Dec 2023 02:01:07 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", - "etag": "W/\"690-18c453622e8\"", - "last-modified": "Thu, 07 Dec 2023 16:57:05 GMT", - "x-b3-traceid": "5061d0d21d7bd8e2", - "x-envoy-upstream-service-time": "618", + "etag": "W/\"a84-18c91d79168\"", + "last-modified": "Fri, 22 Dec 2023 14:04:33 GMT", + "x-b3-traceid": "3caa0d20c5016af8", + "x-envoy-upstream-service-time": "624", "x-koyeb-backend": "par1", "x-koyeb-glb": "sfo1", "x-powered-by": "Express" }, - "scan_id": 45537185, + "scan_id": 45752634, "score": 0, - "start_time": "Sun, 17 Dec 2023 02:00:18 GMT", + "start_time": "Sun, 24 Dec 2023 02:00:23 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -504645,77 +507247,77 @@ "testssl": [ { "id": "service", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -504723,7 +507325,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -504731,7 +507333,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -504739,7 +507341,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -504747,7 +507349,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -504755,7 +507357,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -504763,490 +507365,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "82 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2023-12-17 11:37" }, { "id": "cert_notAfter", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "2024-03-16 11:37" }, { "id": "cert_extlifeSpan", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http://crls.pki.goog/gts1p5/t0HKcOwWsXw.crl" }, { "id": "cert_ocspURL", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "http://ocsp.pki.goog/s/gts1p5/jTKSm8gsZOM" }, { "id": "OCSP_stapling", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 (Google Trust Services LLC from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1702840241" + "finding": "1703439102" }, { "id": "HSTS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "x-powered-by: Express" }, { "id": "cookie_count", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -505254,7 +507856,7 @@ }, { "id": "heartbleed", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -505263,7 +507865,7 @@ }, { "id": "CCS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -505272,7 +507874,7 @@ }, { "id": "ticketbleed", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -505281,7 +507883,7 @@ }, { "id": "ROBOT", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -505290,7 +507892,7 @@ }, { "id": "secure_renego", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -505298,7 +507900,7 @@ }, { "id": "secure_client_renego", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -505307,7 +507909,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -505316,7 +507918,7 @@ }, { "id": "BREACH", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -505325,7 +507927,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -505334,14 +507936,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -505350,7 +507952,7 @@ }, { "id": "FREAK", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -505359,7 +507961,7 @@ }, { "id": "DROWN", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -505368,7 +507970,7 @@ }, { "id": "DROWN_hint", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -505377,7 +507979,7 @@ }, { "id": "LOGJAM", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -505386,7 +507988,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -505395,7 +507997,7 @@ }, { "id": "BEAST", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -505404,7 +508006,7 @@ }, { "id": "LUCKY13", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -505413,7 +508015,7 @@ }, { "id": "winshock", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -505422,7 +508024,7 @@ }, { "id": "RC4", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -505431,399 +508033,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "app.territoiresentransitions.fr/172.67.24.44", + "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505831,7 +508433,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505839,7 +508441,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505847,7 +508449,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -505855,7 +508457,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -505863,7 +508465,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -505871,490 +508473,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (= 60 days" + "finding": "82 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2023-12-17 11:37" }, { "id": "cert_notAfter", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "2024-03-16 11:37" }, { "id": "cert_extlifeSpan", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http://crls.pki.goog/gts1p5/t0HKcOwWsXw.crl" }, { "id": "cert_ocspURL", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "http://ocsp.pki.goog/s/gts1p5/jTKSm8gsZOM" }, { "id": "OCSP_stapling", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 (Google Trust Services LLC from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "1702840298" + "finding": "1703439160" }, { "id": "HSTS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "x-powered-by: Express" }, { "id": "cookie_count", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -506362,7 +508964,7 @@ }, { "id": "heartbleed", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -506371,7 +508973,7 @@ }, { "id": "CCS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -506380,7 +508982,7 @@ }, { "id": "ticketbleed", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -506389,7 +508991,7 @@ }, { "id": "ROBOT", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -506398,7 +509000,7 @@ }, { "id": "secure_renego", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -506406,7 +509008,7 @@ }, { "id": "secure_client_renego", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -506415,7 +509017,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -506424,7 +509026,7 @@ }, { "id": "BREACH", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -506433,7 +509035,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -506442,14 +509044,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -506458,7 +509060,7 @@ }, { "id": "FREAK", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -506467,7 +509069,7 @@ }, { "id": "DROWN", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -506476,7 +509078,7 @@ }, { "id": "DROWN_hint", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -506485,7 +509087,7 @@ }, { "id": "LOGJAM", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -506494,7 +509096,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -506503,7 +509105,7 @@ }, { "id": "BEAST", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -506512,7 +509114,7 @@ }, { "id": "LUCKY13", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -506521,7 +509123,7 @@ }, { "id": "winshock", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -506530,7 +509132,7 @@ }, { "id": "RC4", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -506539,322 +509141,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "app.territoiresentransitions.fr/104.22.78.190", + "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -507059,14 +509661,14 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -507206,7 +509808,7 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "89 >= 60 days" + "finding": "82 >= 60 days" }, { "id": "cert_notBefore", @@ -507416,7 +510018,7 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "1702840356" + "finding": "1703439218" }, { "id": "HSTS", @@ -507972,7 +510574,7 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "174" + "finding": "176" } ], "thirdparties": { @@ -507995,7 +510597,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/582ff50a-5ac4-4f38-a8bc-62f51beeef89/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-19-9" + "url": "https://client.crisp.chat/settings/website/582ff50a-5ac4-4f38-a8bc-62f51beeef89/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-17-30" }, { "type": "unknown", @@ -508018,22 +510620,38 @@ "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?2940d8d" } ], - "cookies": [], + "cookies": [ + { + "name": "crisp-client%2Fsession%2F582ff50a-5ac4-4f38-a8bc-62f51beeef89", + "value": "session_edfa9e60-06c4-4916-b1e1-fdc6190b1a6a", + "domain": ".territoiresentransitions.fr", + "path": "/", + "expires": 1719207042, + "size": 105, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "public, max-age=0", "cf-cache-status": "DYNAMIC", - "cf-ray": "8371765c2eb82304-ORD", + "cf-ray": "83aa92d21e45293b-LAX", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 19:09:46 GMT", - "etag": "W/\"690-18c453622e8\"", - "last-modified": "Thu, 07 Dec 2023 16:57:05 GMT", + "date": "Sun, 24 Dec 2023 17:30:41 GMT", + "etag": "W/\"a84-18c91d79168\"", + "last-modified": "Fri, 22 Dec 2023 14:04:33 GMT", "server": "cloudflare", - "x-b3-traceid": "cb0e9c24dc7eb615", - "x-envoy-upstream-service-time": "84", + "x-b3-traceid": "6b62cb535cc62c84", + "x-envoy-upstream-service-time": "629", "x-koyeb-backend": "par1", - "x-koyeb-glb": "was1", + "x-koyeb-glb": "sfo1", "x-powered-by": "Express" }, "endpoints": [ @@ -508113,8 +510731,42 @@ }, { "hostname": "static.userguiding.com", - "ip": "104.26.4.5", + "ip": "172.67.70.147", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -508342,6 +510994,24 @@ } ] }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, { "slug": "module-federation", "name": "Module Federation", @@ -508382,7 +511052,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:09:03", + "@generated": "Sun, 24 Dec 2023 17:29:57", "site": [ { "@name": "https://app.territoiresentransitions.fr", @@ -508546,7 +511216,7 @@ "type": "dns", "host": "app.territoiresentransitions.fr.", "matched-at": "app.territoiresentransitions.fr", - "timestamp": "2023-12-17T19:13:53.056997087Z", + "timestamp": "2023-12-24T17:34:57.321910267Z", "matcher-status": true }, { @@ -508581,7 +511251,7 @@ "extracted-results": [ "7ff11ac5-c270-4fe6-8358-2a72b4749851.cname.koyeb.app." ], - "timestamp": "2023-12-17T19:13:54.015283539Z", + "timestamp": "2023-12-24T17:34:57.476101846Z", "matcher-status": true }, { @@ -508610,7 +511280,7 @@ "GET,HEAD" ], "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:13:58.111269272Z", + "timestamp": "2023-12-24T17:35:03.743902257Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508632,12 +511302,12 @@ "max-request": 1 } }, - "matcher-name": "express", + "matcher-name": "cloudflare", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:18.326710147Z", + "timestamp": "2023-12-24T17:35:27.735054345Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508659,12 +511329,12 @@ "max-request": 1 } }, - "matcher-name": "cloudflare", + "matcher-name": "express", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:18.326748008Z", + "timestamp": "2023-12-24T17:35:27.735094851Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508696,12 +511366,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.787934134Z", + "timestamp": "2023-12-24T17:35:35.397294115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508733,12 +511403,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.787982084Z", + "timestamp": "2023-12-24T17:35:35.39735036Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508770,12 +511440,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.787997072Z", + "timestamp": "2023-12-24T17:35:35.397365448Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508807,12 +511477,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788010467Z", + "timestamp": "2023-12-24T17:35:35.3975165Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508844,12 +511514,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788026196Z", + "timestamp": "2023-12-24T17:35:35.39754315Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508881,12 +511551,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788059959Z", + "timestamp": "2023-12-24T17:35:35.397738024Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508918,12 +511588,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788075157Z", + "timestamp": "2023-12-24T17:35:35.39775768Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508955,12 +511625,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788088081Z", + "timestamp": "2023-12-24T17:35:35.397861284Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508992,12 +511662,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.78810304Z", + "timestamp": "2023-12-24T17:35:35.397984424Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509029,12 +511699,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788113469Z", + "timestamp": "2023-12-24T17:35:35.398046799Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509066,12 +511736,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:23.788122316Z", + "timestamp": "2023-12-24T17:35:35.398063601Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509099,7 +511769,7 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/robots.txt", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:29.702068543Z", + "timestamp": "2023-12-24T17:35:43.493692456Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/robots.txt'", "matcher-status": true }, @@ -509134,12 +511804,12 @@ ] } }, - "matcher-name": "securesphere", + "matcher-name": "cloudflare", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:37.354756014Z", + "timestamp": "2023-12-24T17:35:54.103739596Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/'", "matcher-status": true }, @@ -509174,12 +511844,12 @@ ] } }, - "matcher-name": "cloudflare", + "matcher-name": "securesphere", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/", "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:14:37.354799716Z", + "timestamp": "2023-12-24T17:35:54.103791132Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/'", "matcher-status": true }, @@ -509195,7 +511865,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -509210,7 +511881,7 @@ "tls12" ], "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:18:51.505979947Z", + "timestamp": "2023-12-24T17:40:11.429451913Z", "matcher-status": true }, { @@ -509224,7 +511895,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -509239,7 +511911,7 @@ "Google Trust Services LLC" ], "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:18:51.506199469Z", + "timestamp": "2023-12-24T17:40:11.429773555Z", "matcher-status": true }, { @@ -509253,7 +511925,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -509268,7 +511941,7 @@ "app.territoiresentransitions.fr" ], "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:18:51.5063713Z", + "timestamp": "2023-12-24T17:40:11.429902606Z", "matcher-status": true }, { @@ -509283,7 +511956,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -509298,7 +511972,7 @@ "tls13" ], "ip": "104.22.78.190", - "timestamp": "2023-12-17T19:18:51.530937016Z", + "timestamp": "2023-12-24T17:40:11.481462763Z", "matcher-status": true } ], @@ -509306,7 +511980,7 @@ { "requestedUrl": "https://app.territoiresentransitions.fr/", "finalUrl": "https://app.territoiresentransitions.fr/", - "fetchTime": "2023-12-17T19:09:18.641Z", + "fetchTime": "2023-12-24T17:30:10.874Z", "runWarnings": [], "categories": { "performance": { @@ -509317,7 +511991,7 @@ "snapshot" ], "id": "performance", - "score": 0.9946657180786133 + "score": 0.9945627212524414 }, "accessibility": { "title": "Accessibility", @@ -509369,53 +512043,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7577, + "numericValue": 7821, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1994, - "firstMeaningfulPaint": 2791, - "largestContentfulPaint": 6752, - "interactive": 7577, - "speedIndex": 5130, - "totalBlockingTime": 592, - "maxPotentialFID": 253, + "firstContentfulPaint": 2312, + "firstMeaningfulPaint": 3110, + "largestContentfulPaint": 7071, + "interactive": 7821, + "speedIndex": 5953, + "totalBlockingTime": 584, + "maxPotentialFID": 357, "cumulativeLayoutShift": 0.021147488911946614, "cumulativeLayoutShiftMainFrame": 0.021147488911946614, "totalCumulativeLayoutShift": 0.021147488911946614, "observedTimeOrigin": 0, - "observedTimeOriginTs": 259192081, + "observedTimeOriginTs": 230454981, "observedNavigationStart": 0, - "observedNavigationStartTs": 259192081, - "observedFirstPaint": 1184, - "observedFirstPaintTs": 260376388, - "observedFirstContentfulPaint": 1184, - "observedFirstContentfulPaintTs": 260376388, - "observedFirstContentfulPaintAllFrames": 1184, - "observedFirstContentfulPaintAllFramesTs": 260376388, - "observedFirstMeaningfulPaint": 1184, - "observedFirstMeaningfulPaintTs": 260376388, - "observedLargestContentfulPaint": 1184, - "observedLargestContentfulPaintTs": 260376388, - "observedLargestContentfulPaintAllFrames": 1184, - "observedLargestContentfulPaintAllFramesTs": 260376388, - "observedTraceEnd": 3948, - "observedTraceEndTs": 263140117, - "observedLoad": 1062, - "observedLoadTs": 260254437, - "observedDomContentLoaded": 1058, - "observedDomContentLoadedTs": 260249882, + "observedNavigationStartTs": 230454981, + "observedFirstPaint": 2026, + "observedFirstPaintTs": 232480928, + "observedFirstContentfulPaint": 2026, + "observedFirstContentfulPaintTs": 232480928, + "observedFirstContentfulPaintAllFrames": 2026, + "observedFirstContentfulPaintAllFramesTs": 232480928, + "observedFirstMeaningfulPaint": 2026, + "observedFirstMeaningfulPaintTs": 232480928, + "observedLargestContentfulPaint": 2026, + "observedLargestContentfulPaintTs": 232480928, + "observedLargestContentfulPaintAllFrames": 2026, + "observedLargestContentfulPaintAllFramesTs": 232480928, + "observedTraceEnd": 5310, + "observedTraceEndTs": 235765053, + "observedLoad": 1877, + "observedLoadTs": 232331916, + "observedDomContentLoaded": 1877, + "observedDomContentLoadedTs": 232331861, "observedCumulativeLayoutShift": 0.021147488911946614, "observedCumulativeLayoutShiftMainFrame": 0.021147488911946614, "observedTotalCumulativeLayoutShift": 0.021147488911946614, - "observedFirstVisualChange": 1197, - "observedFirstVisualChangeTs": 260389081, - "observedLastVisualChange": 1580, - "observedLastVisualChangeTs": 260772081, - "observedSpeedIndex": 1245, - "observedSpeedIndexTs": 260437249 + "observedFirstVisualChange": 2035, + "observedFirstVisualChangeTs": 232489981, + "observedLastVisualChange": 3019, + "observedLastVisualChangeTs": 233473981, + "observedSpeedIndex": 2128, + "observedSpeedIndexTs": 232582863 }, { "lcpInvalidated": false @@ -509437,19 +512111,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 727, - "numTasksOver10ms": 5, + "numTasks": 779, + "numTasksOver10ms": 4, "numTasksOver25ms": 4, - "numTasksOver50ms": 3, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.5789999999999997, - "throughput": 21651894.087951913, - "maxRtt": 1.986, - "maxServerLatency": 193.92000000000002, - "totalByteWeight": 1076543, - "totalTaskTime": 345.1049999999996, - "mainDocumentTransferSize": 1260 + "rtt": 8.741, + "throughput": 13047920.458640523, + "maxRtt": 9.655999999999999, + "maxServerLatency": 510.4630000000001, + "totalByteWeight": 1077083, + "totalTaskTime": 342.65499999999827, + "mainDocumentTransferSize": 1449 } ] } @@ -509549,11 +512223,11 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-03-16T11:37:00.000Z", "testsslGrade": "A", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.9946657180786133, + "lighthouse_performance": 0.9945627212524414, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -509579,7 +512253,7 @@ "http": { "url": "https://candidat.pole-emploi.fr/simucalculreprise", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 19:24:20 GMT", + "end_time": "Sun, 24 Dec 2023 17:37:52 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -509587,16 +512261,16 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 19:24:18 GMT", - "Last-Modified": "Tue, 21 Nov 2023 10:07:19 GMT", - "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1720912650.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c3ae9dd30e370ff4603b45ad27b4afa2c65841bf5b8e9444d4e8c1c014d716e445470255f257ec8b77bac62dd611b7aa41; Path=/", + "Date": "Sun, 24 Dec 2023 17:37:50 GMT", + "Last-Modified": "Tue, 19 Dec 2023 15:06:12 GMT", + "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1754467082.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c3d9842d111c4097428f8d0de72e7776960dcfb25d58d405dd83ec92fd2253e43086066009e8d49b43fd1d6754ab5bc3b1; Path=/", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Vcap-Request-Id": "1c411b77-cdaa-431d-5ea9-248e55d9d28f" + "X-Vcap-Request-Id": "c57912f1-91cf-4ffd-6aa0-86d6976d7c20" }, - "scan_id": 45562033, + "scan_id": 45770501, "score": 0, - "start_time": "Sun, 17 Dec 2023 19:24:15 GMT", + "start_time": "Sun, 24 Dec 2023 17:37:47 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -510172,7 +512846,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "274 >= 60 days" + "finding": "267 >= 60 days" }, { "id": "cert_notBefore", @@ -510924,7 +513598,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "94" } ], "thirdparties": { @@ -510947,37 +513621,33 @@ }, { "type": "unknown", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" - }, - { - "type": "unknown", - "url": "https://cdn.trustcommander.net/privacy/4340/privacy_v2_25.js" + "url": "https://composants-pe-communs.pe-qvr.fr/commun/v1/pe-cookies.js" }, { "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent/" + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vmdbrs75jiutg" + "url": "https://hd.pe.fr/event?s=475540&idclient=lqjrwepc5gnhzwbf" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vmdbrs75jiutg" + "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" }, { "type": "unknown", - "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" + "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" }, { "type": "unknown", - "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + "url": "https://privacy.trustcommander.net/privacy-consent/" } ], "cookies": [ { "name": "TS01a771c6", - "value": "0150c672c31adf342d741d059ac8eeaa12d22a1808d640019fa4942b7a2818b9349a5075bbff11650930b0c5b596a6f1b1bf1ca2ed", + "value": "0150c672c3066e742765668cb7b785a598773446eb41e17cbe6b320543835fc95ced174e4679774b56245b913cddf94178498f9e60", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -510991,7 +513661,7 @@ }, { "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1838353162.20480.0000", + "value": "1804798730.20480.0000", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -511007,12 +513677,12 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 19:24:52 GMT", + "date": "Sun, 24 Dec 2023 17:38:23 GMT", "last-modified": "Mon, 19 Jun 2023 13:53:14 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1838353162.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c31adf342d741d059ac8eeaa12d22a1808d640019fa4942b7a2818b9349a5075bbff11650930b0c5b596a6f1b1bf1ca2ed; Path=/", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1804798730.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c3066e742765668cb7b785a598773446eb41e17cbe6b320543835fc95ced174e4679774b56245b913cddf94178498f9e60; Path=/", "transfer-encoding": "chunked", "vary": "Accept-Encoding", - "x-vcap-request-id": "661b3fce-c8fa-4d90-57d3-ca6dd47696a5" + "x-vcap-request-id": "c45b4e21-2f7d-4580-55ed-c9911cb12719" }, "endpoints": [ { @@ -511195,9 +513865,65 @@ ] } }, + { + "hostname": "composants-pe-communs.pe-qvr.fr", + "ip": "185.215.66.178", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.7", + "ip": "13.35.121.110", "geoip": { "continent": { "code": "NA", @@ -511250,8 +513976,8 @@ } }, { - "hostname": "cdn.trustcommander.net", - "ip": "192.229.163.55", + "hostname": "hd.pe.fr", + "ip": "18.173.121.17", "geoip": { "continent": { "code": "NA", @@ -511283,8 +514009,8 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, + "latitude": 37.751, + "longitude": -97.822, "time_zone": "America/Chicago" }, "registered_country": { @@ -511300,26 +514026,68 @@ "ru": "США", "zh-CN": "美国" } + } + } + }, + { + "hostname": "www.pole-emploi.fr", + "ip": "185.215.64.1", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "ru": "Техас", - "zh-CN": "德克萨斯州" - } + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - ] + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } } }, { "hostname": "privacy.trustcommander.net", - "ip": "52.47.70.157", + "ip": "13.37.40.156", "geoip": { "city": { "geoname_id": 2988507, @@ -511410,116 +514178,6 @@ } ] } - }, - { - "hostname": "hd.pe.fr", - "ip": "18.160.18.49", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.pole-emploi.fr", - "ip": "185.215.64.1", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } } ] }, @@ -511637,7 +514295,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:23:48", + "@generated": "Sun, 24 Dec 2023 17:37:17", "site": [ { "@name": "https://candidat.pole-emploi.fr", @@ -511645,13 +514303,6 @@ "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "PII Disclosure", - "riskcode": "3", - "confidence": "3", - "riskdesc": "High (High)", - "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" - }, { "name": "Absence of Anti-CSRF Tokens", "riskcode": "2", @@ -511680,6 +514331,13 @@ "riskdesc": "Medium (High)", "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" }, + { + "name": "Vulnerable JS Library", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

The identified library bootstrap, version 3.3.7 is vulnerable.

" + }, { "name": "Application Error Disclosure", "riskcode": "1", @@ -511855,13 +514513,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" }, - { - "name": "Storable but Non-Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" - }, { "name": "User Controllable HTML Element Attribute (Potential XSS)", "riskcode": "0", @@ -511906,7 +514557,7 @@ "type": "dns", "host": "candidat.pole-emploi.fr.", "matched-at": "candidat.pole-emploi.fr", - "timestamp": "2023-12-17T19:26:46.654146756Z", + "timestamp": "2023-12-24T17:41:04.551692162Z", "matcher-status": true }, { @@ -511937,12 +514588,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.99939669Z", + "timestamp": "2023-12-24T17:42:44.834658745Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -511979,7 +514630,7 @@ "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999436184Z", + "timestamp": "2023-12-24T17:42:44.83470459Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512011,12 +514662,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999456241Z", + "timestamp": "2023-12-24T17:42:44.834722103Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512048,12 +514699,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999471029Z", + "timestamp": "2023-12-24T17:42:44.834735298Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512085,12 +514736,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999486708Z", + "timestamp": "2023-12-24T17:42:44.834834853Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512122,12 +514773,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999503269Z", + "timestamp": "2023-12-24T17:42:44.834853568Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512159,12 +514810,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.99952018Z", + "timestamp": "2023-12-24T17:42:44.83486551Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512196,12 +514847,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.99953577Z", + "timestamp": "2023-12-24T17:42:44.834883835Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512233,12 +514884,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.99955243Z", + "timestamp": "2023-12-24T17:42:44.834901577Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512270,12 +514921,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999570103Z", + "timestamp": "2023-12-24T17:42:44.834914912Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512312,7 +514963,7 @@ "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:27:47.999586093Z", + "timestamp": "2023-12-24T17:42:44.834926835Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", "matcher-status": true }, @@ -512352,7 +515003,7 @@ "host": "https://candidat.pole-emploi.fr/simucalculreprise", "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise/", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:28:21.216541562Z", + "timestamp": "2023-12-24T17:43:39.217268147Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: candidat.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise/'", "matcher-status": true }, @@ -512367,7 +515018,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -512382,7 +515034,7 @@ "Entrust, Inc." ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:31:47.952462282Z", + "timestamp": "2023-12-24T17:47:07.134513743Z", "matcher-status": true }, { @@ -512396,7 +515048,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -512412,7 +515065,7 @@ "www.candidat.pole-emploi.fr" ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:31:47.952581134Z", + "timestamp": "2023-12-24T17:47:07.134626262Z", "matcher-status": true }, { @@ -512427,7 +515080,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -512442,7 +515096,7 @@ "tls12" ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:31:50.167540636Z", + "timestamp": "2023-12-24T17:47:09.482736174Z", "matcher-status": true } ], @@ -512450,7 +515104,7 @@ { "requestedUrl": "https://candidat.pole-emploi.fr/simucalculreprise", "finalUrl": "https://candidat.pole-emploi.fr/simucalculreprise", - "fetchTime": "2023-12-17T19:24:02.964Z", + "fetchTime": "2023-12-24T17:37:31.888Z", "runWarnings": [], "categories": { "performance": { @@ -512461,7 +515115,7 @@ "snapshot" ], "id": "performance", - "score": 0.7177942276000977 + "score": 0.7216081619262695 }, "accessibility": { "title": "Accessibility", @@ -512513,53 +515167,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11249, + "numericValue": 11794, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4378, - "firstMeaningfulPaint": 7145, - "largestContentfulPaint": 11824, - "interactive": 11249, - "speedIndex": 7943, - "totalBlockingTime": 2535, - "maxPotentialFID": 2513, - "cumulativeLayoutShift": 1.1933694852193195, - "cumulativeLayoutShiftMainFrame": 1.1933694852193195, - "totalCumulativeLayoutShift": 1.1933694852193195, + "firstContentfulPaint": 4987, + "firstMeaningfulPaint": 5001, + "largestContentfulPaint": 12184, + "interactive": 11794, + "speedIndex": 9695, + "totalBlockingTime": 2450, + "maxPotentialFID": 2410, + "cumulativeLayoutShift": 0.48637213049994577, + "cumulativeLayoutShiftMainFrame": 0.48637213049994577, + "totalCumulativeLayoutShift": 0.48637213049994577, "observedTimeOrigin": 0, - "observedTimeOriginTs": 347954827, + "observedTimeOriginTs": 328326577, "observedNavigationStart": 0, - "observedNavigationStartTs": 347954827, - "observedFirstPaint": 763, - "observedFirstPaintTs": 348717980, - "observedFirstContentfulPaint": 2385, - "observedFirstContentfulPaintTs": 350339926, - "observedFirstContentfulPaintAllFrames": 2385, - "observedFirstContentfulPaintAllFramesTs": 350339926, - "observedFirstMeaningfulPaint": 2690, - "observedFirstMeaningfulPaintTs": 350644714, - "observedLargestContentfulPaint": 3039, - "observedLargestContentfulPaintTs": 350993387, - "observedLargestContentfulPaintAllFrames": 3039, - "observedLargestContentfulPaintAllFramesTs": 350993387, - "observedTraceEnd": 5729, - "observedTraceEndTs": 353684270, - "observedLoad": 1671, - "observedLoadTs": 349625963, - "observedDomContentLoaded": 1671, - "observedDomContentLoadedTs": 349625468, - "observedCumulativeLayoutShift": 1.1933694852193195, - "observedCumulativeLayoutShiftMainFrame": 1.1933694852193195, - "observedTotalCumulativeLayoutShift": 1.1933694852193195, - "observedFirstVisualChange": 714, - "observedFirstVisualChangeTs": 348668827, - "observedLastVisualChange": 3897, - "observedLastVisualChangeTs": 351851827, - "observedSpeedIndex": 2828, - "observedSpeedIndexTs": 350783301 + "observedNavigationStartTs": 328326577, + "observedFirstPaint": 1208, + "observedFirstPaintTs": 329534486, + "observedFirstContentfulPaint": 3662, + "observedFirstContentfulPaintTs": 331988719, + "observedFirstContentfulPaintAllFrames": 3662, + "observedFirstContentfulPaintAllFramesTs": 331988719, + "observedFirstMeaningfulPaint": 3662, + "observedFirstMeaningfulPaintTs": 331988719, + "observedLargestContentfulPaint": 4192, + "observedLargestContentfulPaintTs": 332518621, + "observedLargestContentfulPaintAllFrames": 4192, + "observedLargestContentfulPaintAllFramesTs": 332518621, + "observedTraceEnd": 8071, + "observedTraceEndTs": 336397458, + "observedLoad": 2873, + "observedLoadTs": 331199191, + "observedDomContentLoaded": 2872, + "observedDomContentLoadedTs": 331198707, + "observedCumulativeLayoutShift": 0.48637213049994577, + "observedCumulativeLayoutShiftMainFrame": 0.48637213049994577, + "observedTotalCumulativeLayoutShift": 0.48637213049994577, + "observedFirstVisualChange": 1193, + "observedFirstVisualChangeTs": 329519577, + "observedLastVisualChange": 5676, + "observedLastVisualChangeTs": 334002577, + "observedSpeedIndex": 3965, + "observedSpeedIndexTs": 332291374 }, { "lcpInvalidated": false @@ -512577,22 +515231,22 @@ "type": "debugdata", "items": [ { - "numRequests": 32, + "numRequests": 33, "numScripts": 10, "numStylesheets": 1, "numFonts": 6, - "numTasks": 1131, - "numTasksOver10ms": 13, + "numTasks": 1058, + "numTasksOver10ms": 14, "numTasksOver25ms": 5, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 5.157, - "throughput": 8216435.897529504, - "maxRtt": 95.304, - "maxServerLatency": 4.826000000000008, - "totalByteWeight": 2528147, - "totalTaskTime": 1079.6870000000001, + "rtt": 1.209, + "throughput": 5136070.01671997, + "maxRtt": 162.686, + "maxServerLatency": 178.803, + "totalByteWeight": 2508151, + "totalTaskTime": 1037.2020000000007, "mainDocumentTransferSize": 1203 } ] @@ -512705,9 +515359,9 @@ "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "F", - "trackersCount": 11, - "lighthouse_performance": 0.7177942276000977, + "trackersGrade": "C", + "trackersCount": 10, + "lighthouse_performance": 0.7216081619262695, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", @@ -512733,7 +515387,7 @@ "http": { "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 19:24:20 GMT", + "end_time": "Sun, 24 Dec 2023 17:37:52 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -512741,16 +515395,16 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 19:24:18 GMT", - "Last-Modified": "Tue, 21 Nov 2023 10:07:19 GMT", - "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1720912650.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c3ae9dd30e370ff4603b45ad27b4afa2c65841bf5b8e9444d4e8c1c014d716e445470255f257ec8b77bac62dd611b7aa41; Path=/", + "Date": "Sun, 24 Dec 2023 17:37:50 GMT", + "Last-Modified": "Tue, 19 Dec 2023 15:06:12 GMT", + "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1754467082.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c3d9842d111c4097428f8d0de72e7776960dcfb25d58d405dd83ec92fd2253e43086066009e8d49b43fd1d6754ab5bc3b1; Path=/", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Vcap-Request-Id": "1c411b77-cdaa-431d-5ea9-248e55d9d28f" + "X-Vcap-Request-Id": "c57912f1-91cf-4ffd-6aa0-86d6976d7c20" }, - "scan_id": 45562033, + "scan_id": 45770501, "score": 0, - "start_time": "Sun, 17 Dec 2023 19:24:15 GMT", + "start_time": "Sun, 24 Dec 2023 17:37:47 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -513326,7 +515980,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "274 >= 60 days" + "finding": "267 >= 60 days" }, { "id": "cert_notBefore", @@ -514078,7 +516732,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "85" + "finding": "56" } ], "thirdparties": { @@ -514101,37 +516755,33 @@ }, { "type": "unknown", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" - }, - { - "type": "unknown", - "url": "https://cdn.trustcommander.net/privacy/4340/privacy_v2_25.js" + "url": "https://composants-pe-communs.pe-qvr.fr/commun/v1/pe-cookies.js" }, { "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent/" + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vsy3gpo9g2uri" + "url": "https://hd.pe.fr/event?s=475540&idclient=lqjs8wr3if8v5fw6" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vsy3gpo9g2uri" + "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" }, { "type": "unknown", - "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-marianne.svg" + "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" }, { "type": "unknown", - "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + "url": "https://privacy.trustcommander.net/privacy-consent/" } ], "cookies": [ { "name": "TS01a771c6", - "value": "0150c672c3155ba9c4e9e39422945d64c0a5d281a31e310407e5bd25e69df835c4df79963c241c658df1f3595b36dc4e179252a763", + "value": "0150c672c31bc8a7829c85ad1939230ccb385814471485ddf4099ded7b78ff32c1b7e79f30b2060806e0a6a2f8e7cba2fa05aa04d8", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -514145,7 +516795,7 @@ }, { "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1771244298.20480.0000", + "value": "1804798730.20480.0000", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -514161,13 +516811,13 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 19:29:59 GMT", + "date": "Sun, 24 Dec 2023 17:48:07 GMT", "last-modified": "Tue, 28 Nov 2023 16:40:42 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1771244298.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c3155ba9c4e9e39422945d64c0a5d281a31e310407e5bd25e69df835c4df79963c241c658df1f3595b36dc4e179252a763; Path=/", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1804798730.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c31bc8a7829c85ad1939230ccb385814471485ddf4099ded7b78ff32c1b7e79f30b2060806e0a6a2f8e7cba2fa05aa04d8; Path=/", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "x-robots-tag": "noindex, nofollow, nosnippet, noarchive", - "x-vcap-request-id": "46d0be84-e976-466b-61c4-76db0670db7d" + "x-vcap-request-id": "1695d2e0-8886-4943-6dfc-30302b9cdbe5" }, "endpoints": [ { @@ -514350,9 +517000,65 @@ } } }, + { + "hostname": "composants-pe-communs.pe-qvr.fr", + "ip": "185.215.66.178", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, { "hostname": "tag.aticdn.net", - "ip": "108.156.91.113", + "ip": "18.160.18.10", "geoip": { "continent": { "code": "NA", @@ -514405,8 +517111,8 @@ } }, { - "hostname": "cdn.trustcommander.net", - "ip": "192.229.163.55", + "hostname": "hd.pe.fr", + "ip": "18.160.18.3", "geoip": { "continent": { "code": "NA", @@ -514438,8 +517144,8 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, + "latitude": 37.751, + "longitude": -97.822, "time_zone": "America/Chicago" }, "registered_country": { @@ -514455,40 +517161,13 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "ru": "Техас", - "zh-CN": "德克萨斯州" - } - } - ] + } } }, { - "hostname": "privacy.trustcommander.net", - "ip": "13.39.199.190", + "hostname": "www.pole-emploi.fr", + "ip": "185.215.64.1", "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -514519,111 +517198,45 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 48.8323, - "longitude": 2.4075, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "75001" - }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - ] + } } }, { - "hostname": "hd.pe.fr", - "ip": "13.226.22.66", + "hostname": "privacy.trustcommander.net", + "ip": "13.39.226.116", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", + "city": { + "geoname_id": 2988507, "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" } }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.pole-emploi.fr", - "ip": "185.215.64.1", - "geoip": { "continent": { "code": "EU", "geoname_id": 6255148, @@ -514654,26 +517267,51 @@ } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "accuracy_radius": 1000, + "latitude": 48.8323, + "longitude": 2.4075, "time_zone": "Europe/Paris" }, + "postal": { + "code": "75001" + }, "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "pt-BR": "Ilha de França" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] } } ] @@ -514809,7 +517447,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:29:14", + "@generated": "Sun, 24 Dec 2023 17:47:24", "site": [ { "@name": "https://candidat.pole-emploi.fr", @@ -514817,13 +517455,6 @@ "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "PII Disclosure", - "riskcode": "3", - "confidence": "3", - "riskdesc": "High (High)", - "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" - }, { "name": "Absence of Anti-CSRF Tokens", "riskcode": "2", @@ -515078,7 +517709,7 @@ "type": "dns", "host": "candidat.pole-emploi.fr.", "matched-at": "candidat.pole-emploi.fr", - "timestamp": "2023-12-17T19:32:26.715111234Z", + "timestamp": "2023-12-24T17:50:02.871923053Z", "matcher-status": true }, { @@ -515109,86 +517740,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904110152Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904158663Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.90417861Z", + "timestamp": "2023-12-24T17:51:03.313011958Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515225,7 +517782,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.90419476Z", + "timestamp": "2023-12-24T17:51:03.313071559Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515262,7 +517819,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904208637Z", + "timestamp": "2023-12-24T17:51:03.313096675Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515294,12 +517851,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904223094Z", + "timestamp": "2023-12-24T17:51:03.313118566Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515331,12 +517888,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904239975Z", + "timestamp": "2023-12-24T17:51:03.313138192Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515368,12 +517925,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904257248Z", + "timestamp": "2023-12-24T17:51:03.313155444Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515405,12 +517962,49 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2023-12-24T17:51:03.313174239Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904279539Z", + "timestamp": "2023-12-24T17:51:03.313192603Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515447,7 +518041,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904298014Z", + "timestamp": "2023-12-24T17:51:03.313211999Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515484,7 +518078,44 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:33:38.904317501Z", + "timestamp": "2023-12-24T17:51:03.313229221Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2023-12-24T17:51:03.31327189Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515524,7 +518155,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation/", "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:34:17.524855262Z", + "timestamp": "2023-12-24T17:51:35.768252706Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: candidat.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation/'", "matcher-status": true }, @@ -515539,7 +518170,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -515554,7 +518186,7 @@ "Entrust, Inc." ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:38:26.889339385Z", + "timestamp": "2023-12-24T17:54:37.296470177Z", "matcher-status": true }, { @@ -515568,7 +518200,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -515584,7 +518217,7 @@ "www.candidat.pole-emploi.fr" ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:38:26.889495616Z", + "timestamp": "2023-12-24T17:54:37.296617841Z", "matcher-status": true }, { @@ -515599,7 +518232,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -515614,7 +518248,7 @@ "tls12" ], "ip": "185.215.64.30", - "timestamp": "2023-12-17T19:38:28.46725802Z", + "timestamp": "2023-12-24T17:54:38.969389268Z", "matcher-status": true } ], @@ -515622,7 +518256,7 @@ { "requestedUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "finalUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "fetchTime": "2023-12-17T19:29:28.268Z", + "fetchTime": "2023-12-24T17:47:38.325Z", "runWarnings": [], "categories": { "performance": { @@ -515633,7 +518267,7 @@ "snapshot" ], "id": "performance", - "score": 0.876583480834961 + "score": 0.8803655624389648 }, "accessibility": { "title": "Accessibility", @@ -515665,7 +518299,7 @@ "snapshot" ], "id": "seo", - "score": 0.78 + "score": 0.85 }, "pwa": { "title": "PWA", @@ -515685,53 +518319,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12940, + "numericValue": 12858, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8780, - "firstMeaningfulPaint": 8780, - "largestContentfulPaint": 11041, - "interactive": 12940, - "speedIndex": 9870, - "totalBlockingTime": 221, - "maxPotentialFID": 208, - "cumulativeLayoutShift": 0.002440004454718696, - "cumulativeLayoutShiftMainFrame": 0.002440004454718696, - "totalCumulativeLayoutShift": 0.002440004454718696, + "firstContentfulPaint": 8580, + "firstMeaningfulPaint": 8580, + "largestContentfulPaint": 12820, + "interactive": 12858, + "speedIndex": 9140, + "totalBlockingTime": 226, + "maxPotentialFID": 205, + "cumulativeLayoutShift": 0.001167721324496799, + "cumulativeLayoutShiftMainFrame": 0.001167721324496799, + "totalCumulativeLayoutShift": 0.001167721324496799, "observedTimeOrigin": 0, - "observedTimeOriginTs": 367757236, + "observedTimeOriginTs": 383182656, "observedNavigationStart": 0, - "observedNavigationStartTs": 367757236, - "observedFirstPaint": 536, - "observedFirstPaintTs": 368293671, - "observedFirstContentfulPaint": 2766, - "observedFirstContentfulPaintTs": 370523203, - "observedFirstContentfulPaintAllFrames": 2766, - "observedFirstContentfulPaintAllFramesTs": 370523203, - "observedFirstMeaningfulPaint": 2766, - "observedFirstMeaningfulPaintTs": 370523203, - "observedLargestContentfulPaint": 2766, - "observedLargestContentfulPaintTs": 370523203, - "observedLargestContentfulPaintAllFrames": 2766, - "observedLargestContentfulPaintAllFramesTs": 370523203, - "observedTraceEnd": 6198, - "observedTraceEndTs": 373955590, - "observedLoad": 2312, - "observedLoadTs": 370068738, - "observedDomContentLoaded": 2311, - "observedDomContentLoadedTs": 370068685, - "observedCumulativeLayoutShift": 0.002440004454718696, - "observedCumulativeLayoutShiftMainFrame": 0.002440004454718696, - "observedTotalCumulativeLayoutShift": 0.002440004454718696, - "observedFirstVisualChange": 2777, - "observedFirstVisualChangeTs": 370534236, - "observedLastVisualChange": 3911, - "observedLastVisualChangeTs": 371668236, - "observedSpeedIndex": 2870, - "observedSpeedIndexTs": 370627674 + "observedNavigationStartTs": 383182656, + "observedFirstPaint": 424, + "observedFirstPaintTs": 383606627, + "observedFirstContentfulPaint": 2419, + "observedFirstContentfulPaintTs": 385601347, + "observedFirstContentfulPaintAllFrames": 2419, + "observedFirstContentfulPaintAllFramesTs": 385601347, + "observedFirstMeaningfulPaint": 2419, + "observedFirstMeaningfulPaintTs": 385601347, + "observedLargestContentfulPaint": 2717, + "observedLargestContentfulPaintTs": 385899949, + "observedLargestContentfulPaintAllFrames": 2717, + "observedLargestContentfulPaintAllFramesTs": 385899949, + "observedTraceEnd": 5268, + "observedTraceEndTs": 388451125, + "observedLoad": 2024, + "observedLoadTs": 385206261, + "observedDomContentLoaded": 2024, + "observedDomContentLoadedTs": 385206198, + "observedCumulativeLayoutShift": 0.001167721324496799, + "observedCumulativeLayoutShiftMainFrame": 0.001167721324496799, + "observedTotalCumulativeLayoutShift": 0.001167721324496799, + "observedFirstVisualChange": 2418, + "observedFirstVisualChangeTs": 385600656, + "observedLastVisualChange": 2985, + "observedLastVisualChangeTs": 386167656, + "observedSpeedIndex": 2645, + "observedSpeedIndexTs": 385828066 }, { "lcpInvalidated": false @@ -515749,22 +518383,22 @@ "type": "debugdata", "items": [ { - "numRequests": 20, + "numRequests": 21, "numScripts": 7, "numStylesheets": 1, "numFonts": 3, - "numTasks": 614, - "numTasksOver10ms": 12, - "numTasksOver25ms": 4, + "numTasks": 618, + "numTasksOver10ms": 10, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.5790000000000002, - "throughput": 7947058.168758589, - "maxRtt": 113.58, - "maxServerLatency": 69.79000000000002, - "totalByteWeight": 1695634, - "totalTaskTime": 420.5769999999995, + "rtt": 5.121, + "throughput": 10899553.57687365, + "maxRtt": 93.691, + "maxServerLatency": 5.585999999999984, + "totalByteWeight": 1675805, + "totalTaskTime": 372.99999999999955, "mainDocumentTransferSize": 1824 } ] @@ -515850,16 +518484,16 @@ "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "F", - "trackersCount": 11, - "lighthouse_performance": 0.876583480834961, + "trackersGrade": "C", + "trackersCount": 10, + "lighthouse_performance": 0.8803655624389648, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.78, - "lighthouse_seoGrade": "B", + "lighthouse_seo": 0.85, + "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.6, "lighthouse_pwaGrade": "C", "statsGrade": "C", @@ -515878,7 +518512,7 @@ "http": { "url": "https://mobiville.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 19:30:14 GMT", + "end_time": "Sun, 24 Dec 2023 17:52:01 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -515886,10 +518520,10 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 19:30:13 GMT", + "Date": "Sun, 24 Dec 2023 17:51:59 GMT", "Last-Modified": "Thu, 14 Dec 2023 16:17:00 GMT", "Referrer-Policy": "no-referrer-when-downgrade", - "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c3820cee9b8757b51254adaafb4cd8afae464fb02bf84fbb7a625dbb67b296373102363870a7fdcff67538a355f6f7396e; Path=/; Domain=.candidat.pole-emploi.fr", + "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c361984026006a4325aa5dd0cf0965412144f2b7894e80cd4c5eca0c04b5961edeb0f5a05d9cf8bf61e445049b750be8db; Path=/; Domain=.candidat.pole-emploi.fr", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", @@ -515897,9 +518531,9 @@ "X-Frame-Options": "DENY", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 45562134, + "scan_id": 45770652, "score": 70, - "start_time": "Sun, 17 Dec 2023 19:30:09 GMT", + "start_time": "Sun, 24 Dec 2023 17:51:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -516138,7 +518772,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", + "version": "8.2p1 Ubuntu 4ubuntu0.10", "vulnerabilities": [ { "id": "CVE-2020-15778", @@ -516555,7 +519189,7 @@ "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "179 >= 60 days" + "finding": "172 >= 60 days" }, { "id": "cert_notBefore", @@ -516765,7 +519399,7 @@ "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "1702841509" + "finding": "1703440417" }, { "id": "HSTS_time", @@ -517467,27 +520101,15 @@ }, { "type": "unknown", - "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" - }, - { - "type": "unknown", - "url": "https://cdn.trustcommander.net/privacy/4340/privacy_v2_25.js" - }, - { - "type": "unknown", - "url": "https://privacy.trustcommander.net/privacy-consent/" + "url": "https://composants-pe-communs.pe-qvr.fr/commun/v1/pe-cookies.js" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vtxmn89osriwg" - }, - { - "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lq9vtxmn89osriwg" + "url": "https://tag.aticdn.net/js-sdk/piano-analytics-6.8.3.js" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/api/helps/get-previews" + "url": "https://hd.pe.fr/event?s=475540&idclient=lqjsem5558fimlvb" }, { "type": "unknown", @@ -517495,7 +520117,7 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500italic.3a43b67e5bbdfb3ab0a6.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-italic.e10742dbb1d4a0864ba8.woff2" }, { "type": "unknown", @@ -517507,7 +520129,7 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-700italic.d92a5d1451f249359639.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500.f25d774ecfe0996f8eb5.woff2" }, { "type": "unknown", @@ -517515,15 +520137,15 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-700italic.d92a5d1451f249359639.woff2" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500.f25d774ecfe0996f8eb5.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/api/helps/get-previews" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-italic.e10742dbb1d4a0864ba8.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500italic.3a43b67e5bbdfb3ab0a6.woff2" }, { "type": "unknown", @@ -517531,11 +520153,15 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/help-logos/120px/pole-emploi.png" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/help-logos/120px/action-logement.png" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" + }, + { + "type": "unknown", + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-300.c48fb6765a9fcb00b330.woff2" }, { "type": "unknown", @@ -517543,11 +520169,11 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-300.c48fb6765a9fcb00b330.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/help-logos/120px/pole-emploi.png" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/icons.49c4346a09bcfae30639.ttf" + "url": "https://candidat.pole-emploi.fr/mobiville/help-logos/120px/action-logement.png" }, { "type": "unknown", @@ -517560,12 +520186,16 @@ { "type": "unknown", "url": "https://www.pole-emploi.fr/files/live/sites/PE/files/images/Logos/header-logo2021-pe-fr.svg" + }, + { + "type": "unknown", + "url": "https://privacy.trustcommander.net/privacy-consent/" } ], "cookies": [ { "name": "TS014195a1", - "value": "0150c672c3e4486fa32f4064a5c12ea7d9e891ee9d3363cbaf43851e3a5464f882f685e053541bbb2ea529f4141b111631bed340a7", + "value": "0150c672c3b25b55f885d69be120b43b5d2a28a6a64b573c9077dff46b3e66592d938b9c95eb51fc158a1cde84e3b6f0d6ba218c3f", "domain": ".candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -517610,10 +520240,10 @@ "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 19:30:45 GMT", + "date": "Sun, 24 Dec 2023 17:52:34 GMT", "last-modified": "Thu, 14 Dec 2023 16:17:00 GMT", "referrer-policy": "no-referrer-when-downgrade", - "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3e4486fa32f4064a5c12ea7d9e891ee9d3363cbaf43851e3a5464f882f685e053541bbb2ea529f4141b111631bed340a7; Path=/; Domain=.candidat.pole-emploi.fr", + "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3b25b55f885d69be120b43b5d2a28a6a64b573c9077dff46b3e66592d938b9c95eb51fc158a1cde84e3b6f0d6ba218c3f; Path=/; Domain=.candidat.pole-emploi.fr", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "transfer-encoding": "chunked", "vary": "Accept-Encoding", @@ -517674,7 +520304,7 @@ "time_zone": "Europe/Paris" }, "postal": { - "code": "94028" + "code": "94000" }, "registered_country": { "geoname_id": 3017382, @@ -517774,7 +520404,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.190.106", + "ip": "142.250.191.106", "geoip": { "continent": { "code": "NA", @@ -518064,7 +520694,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "108.156.91.114", + "ip": "108.156.91.67", "geoip": { "continent": { "code": "NA", @@ -518117,8 +520747,8 @@ } }, { - "hostname": "cdn.trustcommander.net", - "ip": "192.229.163.55", + "hostname": "hd.pe.fr", + "ip": "13.226.22.129", "geoip": { "continent": { "code": "NA", @@ -518150,8 +520780,8 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 32.7797, - "longitude": -96.8022, + "latitude": 37.751, + "longitude": -97.822, "time_zone": "America/Chicago" }, "registered_country": { @@ -518167,40 +520797,13 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4736286, - "iso_code": "TX", - "names": { - "en": "Texas", - "es": "Texas", - "fr": "Texas", - "ja": "テキサス州", - "ru": "Техас", - "zh-CN": "德克萨斯州" - } - } - ] + } } }, { - "hostname": "privacy.trustcommander.net", - "ip": "52.47.70.157", + "hostname": "www.pole-emploi.fr", + "ip": "185.215.64.1", "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -518231,111 +520834,45 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 48.8323, - "longitude": 2.4075, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "75001" - }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" } - ] + } } }, { - "hostname": "hd.pe.fr", - "ip": "13.226.22.124", + "hostname": "privacy.trustcommander.net", + "ip": "13.39.226.116", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", + "city": { + "geoname_id": 2988507, "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" } }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "www.pole-emploi.fr", - "ip": "185.215.64.1", - "geoip": { "continent": { "code": "EU", "geoname_id": 6255148, @@ -518366,26 +520903,51 @@ } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "accuracy_radius": 1000, + "latitude": 48.8323, + "longitude": 2.4075, "time_zone": "Europe/Paris" }, + "postal": { + "code": "75001" + }, "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 6252001, + "iso_code": "US", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 3012874, + "iso_code": "IDF", + "names": { + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "pt-BR": "Ilha de França" + } + }, + { + "geoname_id": 2968815, + "iso_code": "75", + "names": { + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" + } + } + ] } } ] @@ -518462,7 +521024,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:29:43", + "@generated": "Sun, 24 Dec 2023 17:51:28", "site": [ { "@name": "https://mobiville.pole-emploi.fr", @@ -518588,22 +521150,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -518619,29 +521181,27 @@ "type": "dns", "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", - "extracted-results": [ - "\"v=spf1 a mx ip4:213.32.73.220 include:spf.mailjet.com ?all\" \"\"" - ], - "timestamp": "2023-12-17T19:33:43.357637654Z", + "timestamp": "2023-12-24T17:55:31.005060631Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -518657,27 +521217,29 @@ "type": "dns", "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", - "timestamp": "2023-12-17T19:33:43.46060103Z", + "extracted-results": [ + "10 213.32.73.220." + ], + "timestamp": "2023-12-24T17:55:31.045182475Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -518694,9 +521256,9 @@ "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", "extracted-results": [ - "10 213.32.73.220." + "\"v=spf1 a mx ip4:213.32.73.220 include:spf.mailjet.com ?all\" \"\"" ], - "timestamp": "2023-12-17T19:33:44.321342322Z", + "timestamp": "2023-12-24T17:55:32.01837135Z", "matcher-status": true }, { @@ -518722,7 +521284,7 @@ "host": "https://mobiville.pole-emploi.fr", "matched-at": "https://mobiville.pole-emploi.fr", "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:34:39.009020178Z", + "timestamp": "2023-12-24T17:56:26.243078363Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobiville.pole-emploi.fr'", "matcher-status": true }, @@ -518762,7 +521324,7 @@ "host": "https://mobiville.pole-emploi.fr", "matched-at": "https://mobiville.pole-emploi.fr/", "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:35:31.316230607Z", + "timestamp": "2023-12-24T17:57:18.369682957Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mobiville.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobiville.pole-emploi.fr/'", "matcher-status": true }, @@ -518809,10 +521371,10 @@ "host": "mobiville.pole-emploi.fr:22", "matched-at": "mobiville.pole-emploi.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" ], "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:36:32.041004055Z", + "timestamp": "2023-12-24T17:58:18.435651939Z", "matcher-status": true }, { @@ -518826,7 +521388,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -518841,7 +521404,7 @@ "Entrust, Inc." ], "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:37:22.463012524Z", + "timestamp": "2023-12-24T17:59:00.474745906Z", "matcher-status": true }, { @@ -518855,7 +521418,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -518870,7 +521434,7 @@ "mobiville.pole-emploi.fr" ], "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:37:22.463127979Z", + "timestamp": "2023-12-24T17:59:00.474883374Z", "matcher-status": true }, { @@ -518885,7 +521449,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -518900,7 +521465,7 @@ "tls12" ], "ip": "51.68.80.218", - "timestamp": "2023-12-17T19:37:23.950404946Z", + "timestamp": "2023-12-24T17:59:06.839904608Z", "matcher-status": true } ], @@ -518908,7 +521473,7 @@ { "requestedUrl": "https://mobiville.pole-emploi.fr/", "finalUrl": "https://candidat.pole-emploi.fr/mobiville/", - "fetchTime": "2023-12-17T19:29:56.922Z", + "fetchTime": "2023-12-24T17:51:42.946Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mobiville.pole-emploi.fr/) was redirected to https://candidat.pole-emploi.fr/mobiville/. Try testing the second URL directly." ], @@ -518973,53 +521538,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12558, + "numericValue": 12222, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3507, - "firstMeaningfulPaint": 4572, - "largestContentfulPaint": 10716, - "interactive": 12558, - "speedIndex": 4717, - "totalBlockingTime": 256, + "firstContentfulPaint": 3367, + "firstMeaningfulPaint": 4558, + "largestContentfulPaint": 9873, + "interactive": 12222, + "speedIndex": 6054, + "totalBlockingTime": 316, "maxPotentialFID": 187, "cumulativeLayoutShift": 0.8054050408469305, "cumulativeLayoutShiftMainFrame": 0.8054050408469305, "totalCumulativeLayoutShift": 0.8054050408469305, "observedTimeOrigin": 0, - "observedTimeOriginTs": 309088248, + "observedTimeOriginTs": 201714835, "observedNavigationStart": 0, - "observedNavigationStartTs": 309088248, - "observedFirstPaint": 1257, - "observedFirstPaintTs": 310344832, - "observedFirstContentfulPaint": 1257, - "observedFirstContentfulPaintTs": 310344832, - "observedFirstContentfulPaintAllFrames": 1257, - "observedFirstContentfulPaintAllFramesTs": 310344832, - "observedFirstMeaningfulPaint": 1798, - "observedFirstMeaningfulPaintTs": 310886098, - "observedLargestContentfulPaint": 1918, - "observedLargestContentfulPaintTs": 311005790, - "observedLargestContentfulPaintAllFrames": 1918, - "observedLargestContentfulPaintAllFramesTs": 311005790, - "observedTraceEnd": 4684, - "observedTraceEndTs": 313772557, - "observedLoad": 1235, - "observedLoadTs": 310322773, - "observedDomContentLoaded": 1234, - "observedDomContentLoadedTs": 310322336, + "observedNavigationStartTs": 201714835, + "observedFirstPaint": 1356, + "observedFirstPaintTs": 203070821, + "observedFirstContentfulPaint": 1356, + "observedFirstContentfulPaintTs": 203070821, + "observedFirstContentfulPaintAllFrames": 1356, + "observedFirstContentfulPaintAllFramesTs": 203070821, + "observedFirstMeaningfulPaint": 1901, + "observedFirstMeaningfulPaintTs": 203615438, + "observedLargestContentfulPaint": 2021, + "observedLargestContentfulPaintTs": 203735687, + "observedLargestContentfulPaintAllFrames": 2021, + "observedLargestContentfulPaintAllFramesTs": 203735687, + "observedTraceEnd": 4793, + "observedTraceEndTs": 206507459, + "observedLoad": 1333, + "observedLoadTs": 203048317, + "observedDomContentLoaded": 1333, + "observedDomContentLoadedTs": 203047765, "observedCumulativeLayoutShift": 0.8054050408469305, "observedCumulativeLayoutShiftMainFrame": 0.8054050408469305, "observedTotalCumulativeLayoutShift": 0.8054050408469305, - "observedFirstVisualChange": 1615, - "observedFirstVisualChangeTs": 310703248, - "observedLastVisualChange": 2415, - "observedLastVisualChangeTs": 311503248, - "observedSpeedIndex": 1920, - "observedSpeedIndexTs": 311007893 + "observedFirstVisualChange": 1727, + "observedFirstVisualChangeTs": 203441835, + "observedLastVisualChange": 2526, + "observedLastVisualChangeTs": 204240835, + "observedSpeedIndex": 2011, + "observedSpeedIndexTs": 203725351 }, { "lcpInvalidated": false @@ -519037,22 +521602,22 @@ "type": "debugdata", "items": [ { - "numRequests": 46, + "numRequests": 47, "numScripts": 16, "numStylesheets": 7, "numFonts": 8, - "numTasks": 870, - "numTasksOver10ms": 10, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numTasks": 874, + "numTasksOver10ms": 12, + "numTasksOver25ms": 4, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.487, - "throughput": 20169451.523349844, - "maxRtt": 113.75800000000001, - "maxServerLatency": 21.979, - "totalByteWeight": 950858, - "totalTaskTime": 551.1729999999994, + "rtt": 1.4860000000000002, + "throughput": 15415565.490978515, + "maxRtt": 113.369, + "maxServerLatency": 19.375, + "totalByteWeight": 931069, + "totalTaskTime": 537.5699999999991, "mainDocumentTransferSize": 1515 } ] @@ -519155,7 +521720,7 @@ "cookiesGrade": "C", "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 55, + "trackersCount": 54, "lighthouse_performance": 1, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.96, @@ -519185,7 +521750,7 @@ "http": { "url": "https://www.monservicesecurise.ssi.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 19:44:49 GMT", + "end_time": "Sun, 24 Dec 2023 18:10:59 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -519193,23 +521758,23 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 19:44:47 GMT", - "ETag": "W/\"14c4-y2fLakO0tKfLL5vE5CRYcixU3uY\"", - "Set-Cookie": "token=eyJfY3NyZlNlY3JldCI6Im5kNU1qMm0zUDZjM0ZBPT0iLCJtYWludGVuYW50IjoyODM4MDcwNH0=; path=/; expires=Sun, 17 Dec 2023 20:44:47 GMT; samesite=strict; secure; httponly, token.sig=K-GiRrxejyJCduV66l8jkL-c7t8; path=/; expires=Sun, 17 Dec 2023 20:44:47 GMT; samesite=strict; secure; httponly, sc-sticky-session=l+nuUlF1vuJO2lHjfto1f5DRs3pecSStcIr9aV7NFevqGF8jkG+AbSGXJTUUgo+U1IjBv/xMja7m7jVJAWHztQitdXxbTm1YSS4+0BArkqU=; Expires=Mon, 18-Dec-23 19:44:47 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Date": "Sun, 24 Dec 2023 18:10:57 GMT", + "ETag": "W/\"14c4-oaSKohgl+yqv8btTJrZx0SYfNos\"", + "Set-Cookie": "token=eyJfY3NyZlNlY3JldCI6Im9uYURXM3I5MWtCalhnPT0iLCJtYWludGVuYW50IjoyODM5MDY5MH0=; path=/; expires=Sun, 24 Dec 2023 19:10:57 GMT; samesite=strict; secure; httponly, token.sig=N-jG83vKj70LvfjmTbDqHlVzi9U; path=/; expires=Sun, 24 Dec 2023 19:10:57 GMT; samesite=strict; secure; httponly, sc-sticky-session=x4EUmPtoJ1nvpOVY7eQjjtzXKFrLC5JYnEEoEAX3NzzSrNCoVc2xnUp5Q8bCbEDFg7K9eFaqV2iGDXbLRapFZ3e7DftLI5mIFU0NcLkEKE4=; Expires=Mon, 25-Dec-23 18:10:57 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-RateLimit-Limit": "600", "X-RateLimit-Remaining": "599", - "X-RateLimit-Reset": "1702842294", - "X-Request-ID": "6af88217-5fdb-458d-b3f0-1c420e6dafa9", + "X-RateLimit-Reset": "1703441516", + "X-Request-ID": "650576f5-a57e-4454-92f7-81ac8cbabda9", "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/", "referrer-policy": "no-referrer", "x-content-type-options": "nosniff", "x-frame-options": "deny" }, - "scan_id": 45562292, + "scan_id": 45770815, "score": 115, - "start_time": "Sun, 17 Dec 2023 19:44:44 GMT", + "start_time": "Sun, 24 Dec 2023 18:05:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -519279,7 +521844,7 @@ "data": { "sc-sticky-session": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1702928688, + "expires": 1703527858, "httponly": true, "max-age": null, "path": "/", @@ -519289,7 +521854,7 @@ }, "token": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1702845887, + "expires": 1703445057, "httponly": true, "max-age": null, "path": "/", @@ -519299,7 +521864,7 @@ }, "token.sig": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1702845887, + "expires": 1703445057, "httponly": true, "max-age": null, "path": "/", @@ -519462,15 +522027,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T19:55:26Z", - "next_check_at": "2023-12-17T20:00:26Z", + "last_check_at": "2023-12-24T18:25:28Z", + "next_check_at": "2023-12-24T18:30:25Z", "mute_until": null, "favicon_url": "https://www.monservicesecurise.ssi.gouv.fr/statique/assets/images/favicons/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T19:49:37Z", + "tested_at": "2023-12-24T17:45:41Z", "expires_at": "2024-06-14T21:59:59Z", "valid": true, "error": null @@ -519479,11 +522044,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 88, - "connection": 23, - "handshake": 28, + "namelookup": 89, + "connection": 19, + "handshake": 23, "response": 24, - "total": 163 + "total": 154 } }, "uptimeGrade": "A", @@ -519516,77 +522081,77 @@ "testssl": [ { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519594,7 +522159,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519602,7 +522167,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519610,7 +522175,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519618,7 +522183,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519626,7 +522191,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519634,490 +522199,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "173 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702842378" + "finding": "1703441573" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -520125,7 +522690,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -520134,7 +522699,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -520143,7 +522708,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -520152,7 +522717,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -520161,7 +522726,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -520169,7 +522734,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -520178,7 +522743,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -520187,7 +522752,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -520196,7 +522761,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -520205,14 +522770,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -520221,7 +522786,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -520230,7 +522795,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -520239,7 +522804,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -520248,7 +522813,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -520257,7 +522822,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -520266,7 +522831,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -520275,7 +522840,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -520284,7 +522849,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -520293,7 +522858,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -520302,392 +522867,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520695,7 +523260,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520703,7 +523268,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520711,7 +523276,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520719,7 +523284,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -520727,7 +523292,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -520735,490 +523300,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "173 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702842432" + "finding": "1703441672" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -521226,7 +523791,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -521235,7 +523800,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -521244,7 +523809,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -521253,7 +523818,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -521262,7 +523827,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -521270,7 +523835,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -521279,7 +523844,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -521288,7 +523853,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -521297,7 +523862,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -521306,14 +523871,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -521322,7 +523887,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -521331,7 +523896,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -521340,7 +523905,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -521349,7 +523914,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -521358,7 +523923,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -521367,7 +523932,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -521376,7 +523941,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -521385,7 +523950,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -521394,7 +523959,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -521403,392 +523968,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -521796,7 +524361,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -521804,7 +524369,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -521812,7 +524377,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -521820,7 +524385,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -521828,7 +524393,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -521836,490 +524401,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "173 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702842486" + "finding": "1703441771" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -522327,7 +524892,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -522336,7 +524901,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -522345,7 +524910,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -522354,7 +524919,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -522363,7 +524928,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -522371,7 +524936,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -522380,7 +524945,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -522389,7 +524954,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -522398,7 +524963,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -522407,14 +524972,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -522423,7 +524988,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -522432,7 +524997,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -522441,7 +525006,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -522450,7 +525015,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -522459,7 +525024,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -522468,7 +525033,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -522477,7 +525042,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -522486,7 +525051,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -522495,7 +525060,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -522504,392 +525069,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522897,7 +525462,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522905,7 +525470,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522913,7 +525478,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -522921,7 +525486,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -522929,7 +525494,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -522937,490 +525502,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "173 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702842540" + "finding": "1703441870" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -523428,7 +525993,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -523437,7 +526002,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -523446,7 +526011,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -523455,7 +526020,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -523464,7 +526029,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -523472,7 +526037,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -523481,7 +526046,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -523490,7 +526055,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -523499,7 +526064,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -523508,14 +526073,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -523524,7 +526089,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -523533,7 +526098,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -523542,7 +526107,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -523551,7 +526116,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -523560,7 +526125,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -523569,7 +526134,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -523578,7 +526143,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -523587,7 +526152,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -523596,7 +526161,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -523605,325 +526170,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "219" + "finding": "399" } ], "thirdparties": { @@ -523934,7 +526499,7 @@ "value": "1", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1702844122, + "expires": 1703443280, "size": 16, "httpOnly": false, "secure": false, @@ -523946,10 +526511,10 @@ }, { "name": "_pk_id.28.64a2", - "value": "059ee812c747228c.1702842322.", + "value": "4d5ab2ccf479513a.1703441480.", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1736797522, + "expires": 1737396680, "size": 42, "httpOnly": false, "secure": false, @@ -523961,10 +526526,10 @@ }, { "name": "token.sig", - "value": "QiTkuaoG8hSXxbhm-a7Xa5pg07o", + "value": "t3BsicTAYftx2-VHiaoOm7sALlg", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1702845921.663729, + "expires": 1703445078.975887, "size": 36, "httpOnly": true, "secure": true, @@ -523976,10 +526541,10 @@ }, { "name": "sc-sticky-session", - "value": "l+nuUlF1vuJO2lHjfto1fxzUCFeuh0f/cuP32e8T9vLKaiyoaVu31Ld9J5WBmfLKRBMomZ6My0q1GPlJAaCwGTwkQ30vj4vYTnmk51ZAP7c=", + "value": "x4EUmPtoJ1nvpOVY7eQjjtzXKFrLC5JYnEEoEAX3NzzSrNCoVc2xnUp5Q8bCbEDFg7K9eFaqV2iGDXbLRapFZ3e7DftLI5mIFU0NcLkEKE4=", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1702928722.282099, + "expires": 1703527880.047532, "size": 125, "httpOnly": true, "secure": true, @@ -523991,10 +526556,10 @@ }, { "name": "token", - "value": "eyJfY3NyZlNlY3JldCI6Ijc0bmdGY3E5WTkxQUZBPT0iLCJtYWludGVuYW50IjoyODM4MDcwNX0=", + "value": "eyJfY3NyZlNlY3JldCI6IktDTUUrbk9hM2psa05BPT0iLCJtYWludGVuYW50IjoyODM5MDY5MX0=", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1702845921.663607, + "expires": 1703445078.975796, "size": 81, "httpOnly": true, "secure": true, @@ -524009,22 +526574,22 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 19:45:21 GMT", - "etag": "W/\"14c4-zbt+R1SRXLq7k6WbPT27nE8FWvc\"", + "date": "Sun, 24 Dec 2023 18:11:18 GMT", + "etag": "W/\"14c4-IFpLESK2PdGM+HdSNvKNsaDLGNE\"", "referrer-policy": "no-referrer", - "set-cookie": "token=eyJfY3NyZlNlY3JldCI6Ijc0bmdGY3E5WTkxQUZBPT0iLCJtYWludGVuYW50IjoyODM4MDcwNX0=; path=/; expires=Sun, 17 Dec 2023 20:45:21 GMT; samesite=strict; secure; httponly\ntoken.sig=QiTkuaoG8hSXxbhm-a7Xa5pg07o; path=/; expires=Sun, 17 Dec 2023 20:45:21 GMT; samesite=strict; secure; httponly\nsc-sticky-session=l+nuUlF1vuJO2lHjfto1fxzUCFeuh0f/cuP32e8T9vLKaiyoaVu31Ld9J5WBmfLKRBMomZ6My0q1GPlJAaCwGTwkQ30vj4vYTnmk51ZAP7c=; Expires=Mon, 18-Dec-23 19:45:21 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "set-cookie": "token=eyJfY3NyZlNlY3JldCI6IktDTUUrbk9hM2psa05BPT0iLCJtYWludGVuYW50IjoyODM5MDY5MX0=; path=/; expires=Sun, 24 Dec 2023 19:11:18 GMT; samesite=strict; secure; httponly\ntoken.sig=t3BsicTAYftx2-VHiaoOm7sALlg; path=/; expires=Sun, 24 Dec 2023 19:11:18 GMT; samesite=strict; secure; httponly\nsc-sticky-session=x4EUmPtoJ1nvpOVY7eQjjtzXKFrLC5JYnEEoEAX3NzzSrNCoVc2xnUp5Q8bCbEDFg7K9eFaqV2iGDXbLRapFZ3e7DftLI5mIFU0NcLkEKE4=; Expires=Mon, 25-Dec-23 18:11:18 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "deny", "x-ratelimit-limit": "600", "x-ratelimit-remaining": "599", - "x-ratelimit-reset": "1702842356", - "x-request-id": "b3a250b1-0c18-4a65-a19d-a930e630a55b" + "x-ratelimit-reset": "1703441516", + "x-request-id": "ae8cbb0e-c09a-40d0-b5da-2ed580a58c0f" }, "endpoints": [ { "hostname": "www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -524218,7 +526783,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:44:20", + "@generated": "Sun, 24 Dec 2023 18:05:14", "site": [ { "@name": "https://www.monservicesecurise.ssi.gouv.fr", @@ -524375,7 +526940,7 @@ "type": "dns", "host": "www.monservicesecurise.ssi.gouv.fr.", "matched-at": "www.monservicesecurise.ssi.gouv.fr", - "timestamp": "2023-12-17T19:50:23.795485924Z", + "timestamp": "2023-12-24T18:19:41.416765249Z", "matcher-status": true }, { @@ -524410,7 +526975,7 @@ "extracted-results": [ "monservicesecurise.ssi.gouv.fr." ], - "timestamp": "2023-12-17T19:50:24.755045514Z", + "timestamp": "2023-12-24T18:19:42.401117897Z", "matcher-status": true }, { @@ -524439,7 +527004,7 @@ "GET,HEAD" ], "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:50:30.588931297Z", + "timestamp": "2023-12-24T18:19:52.473815306Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524478,7 +527043,7 @@ "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:50:34.980961838Z", + "timestamp": "2023-12-24T18:20:00.278431597Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524510,12 +527075,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677380783Z", + "timestamp": "2023-12-24T18:20:53.316293422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524547,12 +527112,49 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T18:20:53.316338466Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677433682Z", + "timestamp": "2023-12-24T18:20:53.316356189Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524589,7 +527191,7 @@ "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677449652Z", + "timestamp": "2023-12-24T18:20:53.316370957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524626,7 +527228,44 @@ "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677463537Z", + "timestamp": "2023-12-24T18:20:53.31638319Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T18:20:53.316398147Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524663,7 +527302,7 @@ "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677476582Z", + "timestamp": "2023-12-24T18:20:53.316505137Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524695,12 +527334,86 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:51:05.677491449Z", + "timestamp": "2023-12-24T18:20:53.316525685Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T18:20:53.316541114Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "80.247.13.145", + "timestamp": "2023-12-24T18:20:53.316555992Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524716,7 +527429,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -524731,7 +527445,7 @@ "tls12" ], "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:57:09.494067478Z", + "timestamp": "2023-12-24T18:27:28.70888943Z", "matcher-status": true }, { @@ -524745,7 +527459,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -524760,7 +527475,7 @@ "DHIMYOTIS" ], "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:57:09.856761757Z", + "timestamp": "2023-12-24T18:27:28.804133864Z", "matcher-status": true }, { @@ -524774,7 +527489,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -524786,15 +527502,15 @@ "host": "www.monservicesecurise.ssi.gouv.fr", "matched-at": "www.monservicesecurise.ssi.gouv.fr:443", "extracted-results": [ - "audit.metabase.monservicesecurise.ssi.gouv.fr", - "www.monservicesecurise.ssi.gouv.fr", - "audit.monservicesecurise.ssi.gouv.fr", "monservicesecurise.ssi.gouv.fr", "metabase.monservicesecurise.ssi.gouv.fr", - "aide.monservicesecurise.ssi.gouv.fr" + "aide.monservicesecurise.ssi.gouv.fr", + "audit.metabase.monservicesecurise.ssi.gouv.fr", + "www.monservicesecurise.ssi.gouv.fr", + "audit.monservicesecurise.ssi.gouv.fr" ], "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:57:09.856901637Z", + "timestamp": "2023-12-24T18:27:28.804258887Z", "matcher-status": true }, { @@ -524809,7 +527525,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -524824,7 +527541,7 @@ "tls13" ], "ip": "80.247.13.145", - "timestamp": "2023-12-17T19:57:10.369534792Z", + "timestamp": "2023-12-24T18:27:30.270745699Z", "matcher-status": true } ], @@ -524832,7 +527549,7 @@ { "requestedUrl": "https://www.monservicesecurise.ssi.gouv.fr/", "finalUrl": "https://www.monservicesecurise.ssi.gouv.fr/", - "fetchTime": "2023-12-17T19:44:34.387Z", + "fetchTime": "2023-12-24T18:05:28.743Z", "runWarnings": [], "categories": { "performance": { @@ -524895,53 +527612,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2940, + "numericValue": 2651, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1445, - "firstMeaningfulPaint": 1981, - "largestContentfulPaint": 2731, - "interactive": 2940, - "speedIndex": 1940, - "totalBlockingTime": 140, - "maxPotentialFID": 182, + "firstContentfulPaint": 1525, + "firstMeaningfulPaint": 2114, + "largestContentfulPaint": 2714, + "interactive": 2651, + "speedIndex": 2587, + "totalBlockingTime": 19, + "maxPotentialFID": 87, "cumulativeLayoutShift": 0.007482177734375, "cumulativeLayoutShiftMainFrame": 0.007482177734375, "totalCumulativeLayoutShift": 0.007482177734375, "observedTimeOrigin": 0, - "observedTimeOriginTs": 243045960, + "observedTimeOriginTs": 215082953, "observedNavigationStart": 0, - "observedNavigationStartTs": 243045960, - "observedFirstPaint": 716, - "observedFirstPaintTs": 243762075, - "observedFirstContentfulPaint": 716, - "observedFirstContentfulPaintTs": 243762075, - "observedFirstContentfulPaintAllFrames": 716, - "observedFirstContentfulPaintAllFramesTs": 243762075, - "observedFirstMeaningfulPaint": 808, - "observedFirstMeaningfulPaintTs": 243853970, - "observedLargestContentfulPaint": 808, - "observedLargestContentfulPaintTs": 243853970, - "observedLargestContentfulPaintAllFrames": 808, - "observedLargestContentfulPaintAllFramesTs": 243853970, - "observedTraceEnd": 3353, - "observedTraceEndTs": 246399250, - "observedLoad": 828, - "observedLoadTs": 243873734, - "observedDomContentLoaded": 828, - "observedDomContentLoadedTs": 243873573, + "observedNavigationStartTs": 215082953, + "observedFirstPaint": 989, + "observedFirstPaintTs": 216072056, + "observedFirstContentfulPaint": 989, + "observedFirstContentfulPaintTs": 216072056, + "observedFirstContentfulPaintAllFrames": 989, + "observedFirstContentfulPaintAllFramesTs": 216072056, + "observedFirstMeaningfulPaint": 1334, + "observedFirstMeaningfulPaintTs": 216417174, + "observedLargestContentfulPaint": 1334, + "observedLargestContentfulPaintTs": 216417174, + "observedLargestContentfulPaintAllFrames": 1334, + "observedLargestContentfulPaintAllFramesTs": 216417174, + "observedTraceEnd": 4067, + "observedTraceEndTs": 219150243, + "observedLoad": 1439, + "observedLoadTs": 216521895, + "observedDomContentLoaded": 1439, + "observedDomContentLoadedTs": 216521724, "observedCumulativeLayoutShift": 0.007482177734375, "observedCumulativeLayoutShiftMainFrame": 0.007482177734375, "observedTotalCumulativeLayoutShift": 0.007482177734375, - "observedFirstVisualChange": 677, - "observedFirstVisualChangeTs": 243722960, - "observedLastVisualChange": 1277, - "observedLastVisualChangeTs": 244322960, - "observedSpeedIndex": 766, - "observedSpeedIndexTs": 243812247 + "observedFirstVisualChange": 991, + "observedFirstVisualChangeTs": 216073953, + "observedLastVisualChange": 1508, + "observedLastVisualChangeTs": 216590953, + "observedSpeedIndex": 1211, + "observedSpeedIndexTs": 216294181 }, { "lcpInvalidated": false @@ -524963,19 +527680,19 @@ "numScripts": 11, "numStylesheets": 12, "numFonts": 3, - "numTasks": 424, - "numTasksOver10ms": 6, - "numTasksOver25ms": 5, - "numTasksOver50ms": 1, + "numTasks": 435, + "numTasksOver10ms": 3, + "numTasksOver25ms": 0, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.465, - "throughput": 15806370.283225618, - "maxRtt": 81.465, - "maxServerLatency": 31.307000000000002, - "totalByteWeight": 329752, - "totalTaskTime": 295.63099999999946, - "mainDocumentTransferSize": 2666 + "rtt": 150.165, + "throughput": 7209367.107313266, + "maxRtt": 150.165, + "maxServerLatency": 163.592, + "totalByteWeight": 329946, + "totalTaskTime": 123.71900000000025, + "mainDocumentTransferSize": 2663 } ] } @@ -525112,28 +527829,28 @@ "http": { "url": "https://sparte.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 05:19:37 GMT", + "end_time": "Sun, 24 Dec 2023 05:34:02 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "5152", + "Content-Length": "5130", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 05:19:36 GMT", + "Date": "Sun, 24 Dec 2023 05:34:00 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=TEedHx0CQWuYKPVeZW2pPPEPsr5Z4Z3O; expires=Sun, 15 Dec 2024 05:19:36 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Set-Cookie": "csrftoken=dJlCBhYQjJO3zNSliT6vhJtBdB3lqAt3; expires=Sun, 22 Dec 2024 05:34:00 GMT; Max-Age=31449600; Path=/; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin, Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "cc0076f8-e32b-4200-8063-77d069efecc4" + "X-Request-ID": "0cfbbdd3-e12b-41d4-878a-ccc7752a8204" }, - "scan_id": 45541515, + "scan_id": 45757924, "score": 50, - "start_time": "Sun, 17 Dec 2023 05:19:32 GMT", + "start_time": "Sun, 24 Dec 2023 05:33:56 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -525173,7 +527890,7 @@ "data": { "csrftoken": { "domain": "mondiagnosticartificialisation.beta.gouv.fr", - "expires": 1734239976, + "expires": 1734845641, "httponly": false, "max-age": null, "path": "/", @@ -525343,77 +528060,77 @@ "testssl": [ { "id": "service", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -525421,7 +528138,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -525429,7 +528146,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -525437,7 +528154,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -525445,7 +528162,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -525453,7 +528170,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -525461,483 +528178,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702842675" + "finding": "1703441409" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -525945,7 +528662,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -525954,7 +528671,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -525963,7 +528680,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -525972,7 +528689,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -525981,7 +528698,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -525989,7 +528706,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -525998,7 +528715,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -526007,7 +528724,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -526016,7 +528733,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -526025,14 +528742,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -526041,7 +528758,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -526050,7 +528767,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -526059,7 +528776,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -526068,7 +528785,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -526077,7 +528794,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -526086,7 +528803,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -526095,7 +528812,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -526104,7 +528821,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -526113,7 +528830,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -526122,399 +528839,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526522,7 +529239,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526530,7 +529247,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526538,7 +529255,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526546,7 +529263,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -526554,7 +529271,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -526562,483 +529279,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702842727" + "finding": "1703441502" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -527046,7 +529763,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -527055,7 +529772,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -527064,7 +529781,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -527073,7 +529790,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -527082,7 +529799,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -527090,7 +529807,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -527099,7 +529816,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -527108,7 +529825,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -527117,7 +529834,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -527126,14 +529843,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -527142,7 +529859,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -527151,7 +529868,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -527160,7 +529877,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -527169,7 +529886,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -527178,7 +529895,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -527187,7 +529904,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -527196,7 +529913,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -527205,7 +529922,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -527214,7 +529931,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -527223,399 +529940,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527623,7 +530340,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527631,7 +530348,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527639,7 +530356,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527647,7 +530364,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -527655,7 +530372,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -527663,483 +530380,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702842783" + "finding": "1703441596" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -528147,7 +530864,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -528156,7 +530873,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -528165,7 +530882,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -528174,7 +530891,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -528183,7 +530900,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -528191,7 +530908,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -528200,7 +530917,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -528209,7 +530926,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -528218,7 +530935,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -528227,14 +530944,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -528243,7 +530960,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -528252,7 +530969,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -528261,7 +530978,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -528270,7 +530987,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -528279,7 +530996,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -528288,7 +531005,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -528297,7 +531014,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -528306,7 +531023,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -528315,7 +531032,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -528324,399 +531041,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/109.232.236.90", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -528724,7 +531441,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -528732,7 +531449,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -528740,7 +531457,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -528748,7 +531465,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -528756,7 +531473,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -528764,483 +531481,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702842835" + "finding": "1703441694" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -529248,7 +531965,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -529257,7 +531974,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -529266,7 +531983,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -529275,7 +531992,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -529284,7 +532001,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -529292,7 +532009,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -529301,7 +532018,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -529310,7 +532027,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -529319,7 +532036,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -529328,14 +532045,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -529344,7 +532061,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -529353,7 +532070,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -529362,7 +532079,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -529371,7 +532088,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -529380,7 +532097,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -529389,7 +532106,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -529398,7 +532115,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -529407,7 +532124,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -529416,7 +532133,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -529425,332 +532142,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "sparte.beta.gouv.fr/148.253.75.120", + "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "216" + "finding": "383" } ], "thirdparties": { @@ -529773,7 +532490,7 @@ }, { "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11157347812/?random=1702842614674&cv=11&fst=1702842614674&bg=ffffff&guid=ON&async=1>m=45be3bt0v9121442212&gcd=11l1l1l1l1&dma=0&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&hn=www.googleadservices.com&frm=0&tiba=Accueil&auid=1508466799.1702842615&uamb=0&uaw=0&data=event%3Dgtag.config&rfmt=3&fmt=4", + "url": "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11157347812/?random=1703441312388&cv=11&fst=1703441312388&bg=ffffff&guid=ON&async=1>m=45be3bt0v9121442212&gcd=11l1l1l1l1&dma=0&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&hn=www.googleadservices.com&frm=0&tiba=Accueil&auid=1822670387.1703441312&uamb=0&uaw=0&data=event%3Dgtag.config&rfmt=3&fmt=4", "details": { "id": "google analytics", "message": "Use hosted Matomo instance" @@ -529781,7 +532498,7 @@ }, { "type": "google", - "url": "https://www.google.com/pagead/1p-user-list/11157347812/?random=1702842614674&cv=11&fst=1702839600000&bg=ffffff&guid=ON&async=1>m=45be3bt0v9121442212&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&frm=0&tiba=Accueil&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwAvHhf__ZD4CejH2q_akoYSKxhl-Fy2fn6fXw&random=1766728459&rmt_tld=0&ipr=y", + "url": "https://www.google.com/pagead/1p-user-list/11157347812/?random=1703441312388&cv=11&fst=1703440800000&bg=ffffff&guid=ON&async=1>m=45be3bt0v9121442212&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&frm=0&tiba=Accueil&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwAvHhf_IglgWaGW1JCFl8ta0RcrUKRjxI92qA&random=3223741435&rmt_tld=0&ipr=y", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -529794,7 +532511,7 @@ "value": "1", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1702844414, + "expires": 1703443113, "size": 16, "httpOnly": false, "secure": false, @@ -529806,10 +532523,10 @@ }, { "name": "_pk_id.17.5d40", - "value": "f6c264993b29e389.1702842615.", + "value": "5a2024195037537a.1703441313.", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1736797815, + "expires": 1737396513, "size": 42, "httpOnly": false, "secure": false, @@ -529821,10 +532538,10 @@ }, { "name": "_gcl_au", - "value": "1.1.1508466799.1702842615", + "value": "1.1.1822670387.1703441312", "domain": ".beta.gouv.fr", "path": "/", - "expires": 1710618614, + "expires": 1711217312, "size": 32, "httpOnly": false, "secure": false, @@ -529835,10 +532552,10 @@ }, { "name": "csrftoken", - "value": "xsDUwrjGOLTeNfWfOvpz4CK5kwl3lZ8A", + "value": "6sBA6BhWADsSeCMHs5XbTwRpvffQ9bN3", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1734292214.230397, + "expires": 1734890911.79462, "size": 41, "httpOnly": false, "secure": false, @@ -529851,32 +532568,23 @@ ], "headers": { "content-encoding": "gzip", - "content-length": "5095", + "content-length": "5082", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 17 Dec 2023 19:50:14 GMT", + "date": "Sun, 24 Dec 2023 18:08:31 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=xsDUwrjGOLTeNfWfOvpz4CK5kwl3lZ8A; expires=Sun, 15 Dec 2024 19:50:14 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "set-cookie": "csrftoken=6sBA6BhWADsSeCMHs5XbTwRpvffQ9bN3; expires=Sun, 22 Dec 2024 18:08:31 GMT; Max-Age=31449600; Path=/; SameSite=Lax", "strict-transport-security": "max-age=31536000", "vary": "origin, Cookie, Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "2632cc2b-575e-4359-ac91-9a8a3995cc2b" + "x-request-id": "2a8bc1f9-259b-4b4d-8538-5b1f7d7a414f" }, "endpoints": [ { "hostname": "sparte.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -529908,13 +532616,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -529929,41 +532634,24 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", + "ip": "146.75.93.229", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 5368361, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -529996,13 +532684,13 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20190" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, @@ -530020,15 +532708,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -530036,8 +532726,14 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "172.253.63.97", + "ip": "142.250.72.136", "geoip": { + "city": { + "geoname_id": 5131638, + "names": { + "en": "Plainview" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -530068,9 +532764,13 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "latitude": 40.7746, + "longitude": -73.4761, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "11803" }, "registered_country": { "geoname_id": 6252001, @@ -530085,13 +532785,35 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5128638, + "iso_code": "NY", + "names": { + "de": "New York", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク州", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк", + "zh-CN": "纽约州" + } + } + ] } }, { "hostname": "googleads.g.doubleclick.net", - "ip": "172.253.122.156", + "ip": "142.250.72.130", "geoip": { + "city": { + "geoname_id": 5131638, + "names": { + "en": "Plainview" + } + }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -530122,9 +532844,13 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "latitude": 40.7746, + "longitude": -73.4761, + "metro_code": 501, + "time_zone": "America/New_York" + }, + "postal": { + "code": "11803" }, "registered_country": { "geoname_id": 6252001, @@ -530139,12 +532865,28 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 5128638, + "iso_code": "NY", + "names": { + "de": "New York", + "en": "New York", + "es": "Nueva York", + "fr": "New York", + "ja": "ニューヨーク州", + "pt-BR": "Nova Iorque", + "ru": "Нью-Йорк", + "zh-CN": "纽约州" + } + } + ] } }, { "hostname": "www.google.com", - "ip": "142.251.163.147", + "ip": "142.250.217.132", "geoip": { "continent": { "code": "NA", @@ -530210,7 +532952,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 19:49:32", + "@generated": "Sun, 24 Dec 2023 18:07:48", "site": [ { "@name": "https://sparte.beta.gouv.fr", @@ -530281,6 +533023,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + }, { "name": "Sec-Fetch-Dest Header is Missing", "riskcode": "0", @@ -530327,278 +533076,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "sparte.beta.gouv.fr.", - "matched-at": "sparte.beta.gouv.fr", - "timestamp": "2023-12-17T19:55:17.133548737Z", - "matcher-status": true - }, - { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", - "info": { - "name": "DNS SaaS Service Detection", - "author": [ - "noah @thesubtlety", - "pdteam" - ], - "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "dns", - "host": "sparte.beta.gouv.fr.", - "matched-at": "sparte.beta.gouv.fr", - "extracted-results": [ - "betagouv-redirections.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T19:55:17.285877243Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://sparte.beta.gouv.fr", - "matched-at": "https://mondiagnosticartificialisation.beta.gouv.fr/", - "extracted-results": [ - "https://www.googletagmanager.com/gtag/js?id=AW-11157347812" - ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T19:56:15.471128775Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: sparte.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sparte.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "nginxgeneric", - "type": "http", - "host": "https://sparte.beta.gouv.fr", - "matched-at": "https://sparte.beta.gouv.fr/", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T19:56:22.208911686Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: sparte.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sparte.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "sparte.beta.gouv.fr", - "matched-at": "sparte.beta.gouv.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T20:02:01.571175441Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "sparte.beta.gouv.fr", - "matched-at": "sparte.beta.gouv.fr:443", - "extracted-results": [ - "sparte.beta.gouv.fr" - ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T20:02:01.571291147Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "sparte.beta.gouv.fr", - "matched-at": "sparte.beta.gouv.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T20:02:03.049219736Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "sparte.beta.gouv.fr", - "matched-at": "sparte.beta.gouv.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T20:02:03.238442378Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://sparte.beta.gouv.fr/", "finalUrl": "https://mondiagnosticartificialisation.beta.gouv.fr/", - "fetchTime": "2023-12-17T19:49:46.818Z", + "fetchTime": "2023-12-24T18:08:03.321Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://sparte.beta.gouv.fr/) was redirected to https://mondiagnosticartificialisation.beta.gouv.fr/. Try testing the second URL directly." ], @@ -530611,7 +533094,7 @@ "snapshot" ], "id": "performance", - "score": 0.8772062301635742 + "score": 0.8798009872436523 }, "accessibility": { "title": "Accessibility", @@ -530663,53 +533146,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3393, + "numericValue": 3731, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3393, - "firstMeaningfulPaint": 3393, - "largestContentfulPaint": 6489, - "interactive": 3393, - "speedIndex": 3393, + "firstContentfulPaint": 3731, + "firstMeaningfulPaint": 3731, + "largestContentfulPaint": 6474, + "interactive": 3731, + "speedIndex": 3731, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.005592122395833333, "cumulativeLayoutShiftMainFrame": 0.005592122395833333, "totalCumulativeLayoutShift": 0.005592122395833333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 195082380, + "observedTimeOriginTs": 289240957, "observedNavigationStart": 0, - "observedNavigationStartTs": 195082380, - "observedFirstPaint": 486, - "observedFirstPaintTs": 195567905, - "observedFirstContentfulPaint": 486, - "observedFirstContentfulPaintTs": 195567905, - "observedFirstContentfulPaintAllFrames": 486, - "observedFirstContentfulPaintAllFramesTs": 195567905, - "observedFirstMeaningfulPaint": 486, - "observedFirstMeaningfulPaintTs": 195567905, - "observedLargestContentfulPaint": 486, - "observedLargestContentfulPaintTs": 195567905, - "observedLargestContentfulPaintAllFrames": 486, - "observedLargestContentfulPaintAllFramesTs": 195567905, - "observedTraceEnd": 3185, - "observedTraceEndTs": 198267075, - "observedLoad": 876, - "observedLoadTs": 195958781, - "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 195082979, + "observedNavigationStartTs": 289240957, + "observedFirstPaint": 744, + "observedFirstPaintTs": 289985100, + "observedFirstContentfulPaint": 744, + "observedFirstContentfulPaintTs": 289985100, + "observedFirstContentfulPaintAllFrames": 744, + "observedFirstContentfulPaintAllFramesTs": 289985100, + "observedFirstMeaningfulPaint": 744, + "observedFirstMeaningfulPaintTs": 289985100, + "observedLargestContentfulPaint": 744, + "observedLargestContentfulPaintTs": 289985100, + "observedLargestContentfulPaintAllFrames": 744, + "observedLargestContentfulPaintAllFramesTs": 289985100, + "observedTraceEnd": 3746, + "observedTraceEndTs": 292987348, + "observedLoad": 1439, + "observedLoadTs": 290679653, + "observedDomContentLoaded": 0, + "observedDomContentLoadedTs": 289241449, "observedCumulativeLayoutShift": 0.005592122395833333, "observedCumulativeLayoutShiftMainFrame": 0.005592122395833333, "observedTotalCumulativeLayoutShift": 0.005592122395833333, - "observedFirstVisualChange": 476, - "observedFirstVisualChangeTs": 195558380, - "observedLastVisualChange": 826, - "observedLastVisualChangeTs": 195908380, - "observedSpeedIndex": 487, - "observedSpeedIndexTs": 195569344 + "observedFirstVisualChange": 730, + "observedFirstVisualChangeTs": 289970957, + "observedLastVisualChange": 997, + "observedLastVisualChangeTs": 290237957, + "observedSpeedIndex": 739, + "observedSpeedIndexTs": 289979734 }, { "lcpInvalidated": false @@ -530731,19 +533214,19 @@ "numScripts": 6, "numStylesheets": 4, "numFonts": 4, - "numTasks": 15, + "numTasks": 18, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.5469999999999997, - "throughput": 22895683.483656473, - "maxRtt": 82.771, - "maxServerLatency": 40.275999999999996, - "totalByteWeight": 1692369, - "totalTaskTime": 2.514, - "mainDocumentTransferSize": 5561 + "rtt": 8.129999999999999, + "throughput": 13386185.276187804, + "maxRtt": 146.664, + "maxServerLatency": 100.029, + "totalByteWeight": 1678765, + "totalTaskTime": 5.760000000000001, + "mainDocumentTransferSize": 5542 } ] } @@ -530843,7 +533326,7 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 4, - "lighthouse_performance": 0.8772062301635742, + "lighthouse_performance": 0.8798009872436523, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.99, "lighthouse_accessibilityGrade": "A", @@ -531040,7 +533523,7 @@ "http": { "url": "https://zerologementvacant.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 06:17:12 GMT", + "end_time": "Sun, 24 Dec 2023 06:27:00 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -531052,15 +533535,15 @@ "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 17 Dec 2023 06:17:11 GMT", - "ETag": "W/\"4ca-18c6747d8b8\"", + "Date": "Sun, 24 Dec 2023 06:26:59 GMT", + "ETag": "W/\"4ca-18c86ba3740\"", "Expect-CT": "max-age=0", - "Last-Modified": "Thu, 14 Dec 2023 07:43:31 GMT", + "Last-Modified": "Wed, 20 Dec 2023 10:16:40 GMT", "Origin-Agent-Cluster": "?1", "RateLimit-Limit": "10000", "RateLimit-Policy": "10000;w=300", - "RateLimit-Remaining": "9962", - "RateLimit-Reset": "241", + "RateLimit-Remaining": "9997", + "RateLimit-Reset": "133", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=31536000, max-age=15552000; includeSubDomains", "Transfer-Encoding": "chunked", @@ -531069,12 +533552,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "6ad0886d-00fa-4651-b3e2-3b23eb4c03b5", + "X-Request-ID": "9bca65df-3d44-45e2-a65d-2a1c908151df", "X-XSS-Protection": "0" }, - "scan_id": 45543745, + "scan_id": 45759969, "score": 50, - "start_time": "Sun, 17 Dec 2023 06:17:08 GMT", + "start_time": "Sun, 24 Dec 2023 06:26:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -531093,23 +533576,23 @@ "'none'" ], "connect-src": [ - "'self'", + "https://client.crisp.chat", "https://openmaptiles.geo.data.gouv.fr", + "'self'", "https://stats.beta.gouv.fr", "https://api-adresse.data.gouv.fr", - "https://client.crisp.chat", - "https://openmaptiles.github.io", - "wss://client.relay.crisp.chat" + "wss://client.relay.crisp.chat", + "https://openmaptiles.github.io" ], "default-src": [ "'self'" ], "font-src": [ - "'self'", + "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff", + "https://client.crisp.chat", "data:", "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf", - "https://client.crisp.chat", - "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff" + "'self'" ], "form-action": [ "'self'" @@ -531122,10 +533605,10 @@ "https://zerologementvacant.crisp.help" ], "img-src": [ - "'self'", "https://image.crisp.chat", "https://client.crisp.chat", - "data:" + "data:", + "'self'" ], "media-src": [ "'self'" @@ -531134,27 +533617,27 @@ "'self'" ], "script-src": [ - "'self'", - "'unsafe-inline'", "https://client.crisp.chat", - "https://stats.beta.gouv.fr" + "'unsafe-inline'", + "https://stats.beta.gouv.fr", + "'self'" ], "script-src-attr": [ "'none'" ], "style-src": [ + "https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css", "'self'", - "'unsafe-inline'", - "https://client.crisp.chat/static/stylesheets/client_default.css", "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", - "https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css" + "'unsafe-inline'", + "https://client.crisp.chat/static/stylesheets/client_default.css" ], "upgrade-insecure-requests": [ "'none'" ], "worker-src": [ - "'self'", - "blob:" + "blob:", + "'self'" ] }, "http": true, @@ -531351,77 +533834,77 @@ "testssl": [ { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531429,7 +533912,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531437,7 +533920,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531445,7 +533928,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531453,7 +533936,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -531461,7 +533944,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -531469,546 +533952,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702843835" + "finding": "1703443092" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -532016,7 +534499,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -532025,7 +534508,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -532034,7 +534517,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -532043,7 +534526,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -532052,7 +534535,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -532060,7 +534543,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -532069,7 +534552,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -532078,7 +534561,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -532087,7 +534570,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -532096,14 +534579,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -532112,7 +534595,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -532121,7 +534604,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -532130,7 +534613,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -532139,7 +534622,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -532148,7 +534631,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -532157,7 +534640,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -532166,7 +534649,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -532175,7 +534658,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -532184,7 +534667,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -532193,315 +534676,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -532853,7 +535336,7 @@ "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -533056,7 +535539,7 @@ "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702843889" + "finding": "1703443145" }, { "id": "HSTS_multiple", @@ -533665,77 +536148,77 @@ }, { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -533743,7 +536226,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -533751,7 +536234,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -533759,7 +536242,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -533767,7 +536250,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -533775,7 +536258,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -533783,546 +536266,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702843944" + "finding": "1703443200" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -534330,7 +536813,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -534339,7 +536822,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -534348,7 +536831,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -534357,7 +536840,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -534366,7 +536849,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -534374,7 +536857,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -534383,7 +536866,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -534392,7 +536875,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -534401,7 +536884,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -534410,14 +536893,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -534426,7 +536909,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -534435,7 +536918,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -534444,7 +536927,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -534453,7 +536936,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -534462,7 +536945,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -534471,7 +536954,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -534480,7 +536963,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -534489,7 +536972,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -534498,7 +536981,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -534507,392 +536990,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534900,7 +537383,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534908,7 +537391,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534916,7 +537399,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534924,7 +537407,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -534932,7 +537415,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -534940,546 +537423,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702843999" + "finding": "1703443253" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -535487,7 +537970,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -535496,7 +537979,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -535505,7 +537988,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -535514,7 +537997,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -535523,7 +538006,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -535531,7 +538014,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -535540,7 +538023,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -535549,7 +538032,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -535558,7 +538041,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -535567,14 +538050,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -535583,7 +538066,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -535592,7 +538075,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -535601,7 +538084,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -535610,7 +538093,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -535619,7 +538102,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -535628,7 +538111,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -535637,7 +538120,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -535646,7 +538129,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -535655,7 +538138,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -535664,325 +538147,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "227" + "finding": "219" } ], "thirdparties": { @@ -536009,7 +538492,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/65781ccb-c386-4dbf-b614-5581c3a1ff7e/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-20-9" + "url": "https://client.crisp.chat/settings/website/65781ccb-c386-4dbf-b614-5581c3a1ff7e/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-18-37" }, { "type": "unknown", @@ -536026,7 +538509,7 @@ "value": "1", "domain": "zerologementvacant.beta.gouv.fr", "path": "/", - "expires": 1702845576, + "expires": 1703444840, "size": 15, "httpOnly": false, "secure": false, @@ -536038,10 +538521,10 @@ }, { "name": "_pk_id.2.b825", - "value": "b81cdb1417d2b8ad.1702843777.", + "value": "d71509f477ddbff5.1703443040.", "domain": "zerologementvacant.beta.gouv.fr", "path": "/", - "expires": 1736798977, + "expires": 1737398240, "size": 41, "httpOnly": false, "secure": false, @@ -536059,15 +538542,15 @@ "content-type": "text/html; charset=UTF-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 17 Dec 2023 20:09:35 GMT", - "etag": "W/\"4ca-18c6747d8b8\"", + "date": "Sun, 24 Dec 2023 18:37:18 GMT", + "etag": "W/\"4ca-18c86ba3740\"", "expect-ct": "max-age=0", - "last-modified": "Thu, 14 Dec 2023 07:43:31 GMT", + "last-modified": "Wed, 20 Dec 2023 10:16:40 GMT", "origin-agent-cluster": "?1", "ratelimit-limit": "10000", "ratelimit-policy": "10000;w=300", - "ratelimit-remaining": "9956", - "ratelimit-reset": "99", + "ratelimit-remaining": "9999", + "ratelimit-reset": "115", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000\nmax-age=15552000; includeSubDomains", "x-content-type-options": "nosniff", @@ -536075,13 +538558,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "a293ef22-cafe-4961-837a-73748c2ad8e2", + "x-request-id": "45c25089-343f-4b62-92bb-baa56edace1e", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "zerologementvacant.beta.gouv.fr", - "ip": "148.253.75.120", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -536441,7 +538924,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:08:55", + "@generated": "Sun, 24 Dec 2023 18:36:40", "site": [ { "@name": "https://zerologementvacant.beta.gouv.fr", @@ -536616,26 +539099,27 @@ "extracted-results": [ "10 inbound.crisp.email." ], - "timestamp": "2023-12-17T20:14:48.604677483Z", + "timestamp": "2023-12-24T18:42:16.934016005Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -536645,34 +539129,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", - "matched-at": "zerologementvacant.beta.gouv.fr", - "timestamp": "2023-12-17T20:14:49.44392933Z", + "matched-at": "_dmarc.zerologementvacant.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=quarantine; ruf=mailto:dmarc-forensic@crisp.chat\"" + ], + "timestamp": "2023-12-24T18:42:17.092213009Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -536681,17 +539165,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", - "matched-at": "_dmarc.zerologementvacant.beta.gouv.fr", + "matched-at": "zerologementvacant.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=quarantine; ruf=mailto:dmarc-forensic@crisp.chat\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T20:14:49.614140669Z", + "timestamp": "2023-12-24T18:42:17.1661619Z", "matcher-status": true }, { @@ -536728,29 +539212,32 @@ "matched-at": "zerologementvacant.beta.gouv.fr", "extracted-results": [ "\"google-site-verification=f5JozGTS9onVMAMiNs-efjbGGDEvp_29AiUE05u2Z4c\"", - "\"google-site-verification=DK-klZoBLE3Vo9nabfA9fC2OIu091OT7gSYeupuRMm4\"", - "\"v=spf1 redirect=_spf.crisp.email\"", "\"sendinblue-code:52e29235c6069303936dcb55744402a1\"", + "\"v=spf1 redirect=_spf.crisp.email\"", + "\"google-site-verification=DK-klZoBLE3Vo9nabfA9fC2OIu091OT7gSYeupuRMm4\"", "\"v=spf1 include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2023-12-17T20:14:51.167281431Z", + "timestamp": "2023-12-24T18:42:17.853321167Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -536765,11 +539252,7 @@ "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", "matched-at": "zerologementvacant.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2023-12-17T20:14:51.179505638Z", + "timestamp": "2023-12-24T18:42:18.092923369Z", "matcher-status": true }, { @@ -536804,8 +539287,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:15:32.812981357Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:42:58.935100547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536841,8 +539324,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:15:32.813022424Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:42:58.935137536Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536878,8 +539361,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:15:32.813041479Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:42:58.93515578Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536906,8 +539389,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr/robots.txt", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:15:42.422575694Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:43:08.33331325Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -536946,8 +539429,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr/", - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:15:54.931503454Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:43:21.104769681Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: zerologementvacant.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr/'", "matcher-status": true }, @@ -536962,7 +539445,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -536976,8 +539460,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:21:35.169503262Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:49:00.679339634Z", "matcher-status": true }, { @@ -536991,7 +539475,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -537005,8 +539490,8 @@ "extracted-results": [ "zerologementvacant.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:21:35.169667156Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:49:00.679455016Z", "matcher-status": true }, { @@ -537021,7 +539506,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -537035,8 +539521,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:21:41.406289918Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:49:02.136349765Z", "matcher-status": true }, { @@ -537051,7 +539537,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -537065,8 +539552,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2023-12-17T20:21:41.614477709Z", + "ip": "5.104.101.30", + "timestamp": "2023-12-24T18:49:02.308066039Z", "matcher-status": true } ], @@ -537074,7 +539561,7 @@ { "requestedUrl": "https://zerologementvacant.beta.gouv.fr/", "finalUrl": "https://zerologementvacant.beta.gouv.fr/", - "fetchTime": "2023-12-17T20:09:09.112Z", + "fetchTime": "2023-12-24T18:36:54.071Z", "runWarnings": [], "categories": { "performance": { @@ -537085,7 +539572,7 @@ "snapshot" ], "id": "performance", - "score": 0.889715576171875 + "score": 0.889898681640625 }, "accessibility": { "title": "Accessibility", @@ -537137,53 +539624,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2124, + "numericValue": 2173, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2124, - "firstMeaningfulPaint": 2124, - "largestContentfulPaint": 5958, - "interactive": 2124, - "speedIndex": 2137, + "firstContentfulPaint": 2173, + "firstMeaningfulPaint": 2173, + "largestContentfulPaint": 6072, + "interactive": 2173, + "speedIndex": 2173, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.005031575520833333, "cumulativeLayoutShiftMainFrame": 0.005031575520833333, "totalCumulativeLayoutShift": 0.005031575520833333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 303213630, + "observedTimeOriginTs": 296162638, "observedNavigationStart": 0, - "observedNavigationStartTs": 303213630, - "observedFirstPaint": 694, - "observedFirstPaintTs": 303907356, - "observedFirstContentfulPaint": 694, - "observedFirstContentfulPaintTs": 303907356, - "observedFirstContentfulPaintAllFrames": 694, - "observedFirstContentfulPaintAllFramesTs": 303907356, - "observedFirstMeaningfulPaint": 694, - "observedFirstMeaningfulPaintTs": 303907356, - "observedLargestContentfulPaint": 694, - "observedLargestContentfulPaintTs": 303907356, - "observedLargestContentfulPaintAllFrames": 694, - "observedLargestContentfulPaintAllFramesTs": 303907356, + "observedNavigationStartTs": 296162638, + "observedFirstPaint": 698, + "observedFirstPaintTs": 296860820, + "observedFirstContentfulPaint": 698, + "observedFirstContentfulPaintTs": 296860820, + "observedFirstContentfulPaintAllFrames": 698, + "observedFirstContentfulPaintAllFramesTs": 296860820, + "observedFirstMeaningfulPaint": 698, + "observedFirstMeaningfulPaintTs": 296860820, + "observedLargestContentfulPaint": 698, + "observedLargestContentfulPaintTs": 296860820, + "observedLargestContentfulPaintAllFrames": 698, + "observedLargestContentfulPaintAllFramesTs": 296860820, "observedTraceEnd": 3522, - "observedTraceEndTs": 306735642, - "observedLoad": 1215, - "observedLoadTs": 304428465, + "observedTraceEndTs": 299684425, + "observedLoad": 1214, + "observedLoadTs": 297376940, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 303214198, + "observedDomContentLoadedTs": 296163256, "observedCumulativeLayoutShift": 0.005031575520833333, "observedCumulativeLayoutShiftMainFrame": 0.005031575520833333, "observedTotalCumulativeLayoutShift": 0.005031575520833333, - "observedFirstVisualChange": 707, - "observedFirstVisualChangeTs": 303920630, - "observedLastVisualChange": 990, - "observedLastVisualChangeTs": 304203630, - "observedSpeedIndex": 719, - "observedSpeedIndexTs": 303932509 + "observedFirstVisualChange": 708, + "observedFirstVisualChangeTs": 296870638, + "observedLastVisualChange": 875, + "observedLastVisualChangeTs": 297037638, + "observedSpeedIndex": 715, + "observedSpeedIndexTs": 296878124 }, { "lcpInvalidated": false @@ -537205,18 +539692,18 @@ "numScripts": 4, "numStylesheets": 4, "numFonts": 4, - "numTasks": 14, + "numTasks": 26, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.367, - "throughput": 18709257.826986793, - "maxRtt": 85.375, - "maxServerLatency": 19.683000000000007, - "totalByteWeight": 1626784, - "totalTaskTime": 2.29, + "rtt": 1.4769999999999999, + "throughput": 19134967.023625597, + "maxRtt": 83.339, + "maxServerLatency": 38.535, + "totalByteWeight": 1625824, + "totalTaskTime": 5.741, "mainDocumentTransferSize": 2100 } ] @@ -537317,7 +539804,7 @@ "cookiesCount": 2, "trackersGrade": "C", "trackersCount": 7, - "lighthouse_performance": 0.889715576171875, + "lighthouse_performance": 0.889898681640625, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", @@ -537346,7 +539833,7 @@ "http": { "url": "https://labonnealternance.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 20:18:08 GMT", + "end_time": "Sun, 24 Dec 2023 18:44:50 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -537355,8 +539842,8 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 20:18:04 GMT", - "ETag": "\"1584l3nlapb1ykl\"", + "Date": "Sun, 24 Dec 2023 18:44:47 GMT", + "ETag": "\"8lpbnsc0li1ykl\"", "Referrer-Policy": "unsafe-url, no-referrer-when-downgrade", "Strict-Transport-Security": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", @@ -537365,9 +539852,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1" }, - "scan_id": 45562643, + "scan_id": 45771364, "score": 55, - "start_time": "Sun, 17 Dec 2023 20:17:16 GMT", + "start_time": "Sun, 24 Dec 2023 18:44:44 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -537380,74 +539867,74 @@ "output": { "data": { "base-uri": [ - "https://stats.beta.gouv.fr", - "'self'" + "'self'", + "https://stats.beta.gouv.fr" ], "block-all-mixed-content": [ "'none'" ], "child-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ], "connect-src": [ - "https://plausible.io", - "https://events.mapbox.com", - "'self'", - "https://exposition-recette.inserjeunes.beta.gouv.fr", "https://api.mapbox.com", + "https://sentry.apprentissage.beta.gouv.fr", + "'self'", "https://stats.data.gouv.fr", - "http://localhost:5000", + "https://stats.beta.gouv.fr", + "https://catalogue-apprentissage.intercariforef.org", "https://api-adresse.data.gouv.fr", - "https://sentry.apprentissage.beta.gouv.fr", + "https://events.mapbox.com", + "http://localhost:5000", + "https://exposition-recette.inserjeunes.beta.gouv.fr", "https://exposition.inserjeunes.beta.gouv.fr", - "https://stats.beta.gouv.fr", - "https://catalogue-apprentissage.intercariforef.org" + "https://plausible.io" ], "default-src": [ "'self'" ], "font-src": [ + "'self'", "https:", - "data:", - "'self'" + "data:" ], "frame-ancestors": [ "'none'" ], "frame-src": [ - "https://plausible.io", - "'self'" + "'self'", + "https://plausible.io" ], "img-src": [ - "blob:", - "'self'", "https://www.google.com", + "https://www.notion.so", + "'self'", "data:", "https://www.google.fr", - "https://www.notion.so", + "blob:", "https://stats.beta.gouv.fr" ], "object-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "script-src": [ - "https://plausible.io", - "blob:", "'self'", - "http://localhost:3000", - "'unsafe-inline'", "https://stats.data.gouv.fr", - "https://stats.beta.gouv.fr" + "https://stats.beta.gouv.fr", + "http://localhost:3000", + "blob:", + "https://plausible.io", + "'unsafe-inline'" ], "script-src-attr": [ "'none'" ], "style-src": [ + "'self'", "https:", - "'unsafe-inline'", - "'self'" + "'unsafe-inline'" ], "upgrade-insecure-requests": [ "'none'" @@ -537638,15 +540125,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T19:45:13Z", - "next_check_at": "2023-12-17T20:44:39Z", + "last_check_at": "2023-12-24T17:55:12Z", + "next_check_at": "2023-12-24T18:55:03Z", "mute_until": "forever", "favicon_url": "https://labonnealternance.apprentissage.beta.gouv.fr/favicon/favicon-16x16.png", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T13:47:18Z", + "tested_at": "2023-12-24T14:56:07Z", "expires_at": "2024-03-04T14:17:48Z", "valid": true, "error": null @@ -537654,7 +540141,39 @@ "metrics": {}, "uptimeGrade": "A" }, - "nmap": null, + "nmap": { + "host": "labonnealternance.apprentissage.beta.gouv.fr", + "protocol": "tcp", + "closed_ports": "997", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.9p1 Ubuntu 3ubuntu0.5", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "443", + "vulnerabilities": [] + } + } + ], + "grade": "B" + }, "dependabot": null, "codescan": null, "testssl": [ @@ -538012,7 +540531,7 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -538215,7 +540734,7 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "1702844430" + "finding": "1703443605" }, { "id": "HSTS_multiple", @@ -538827,7 +541346,7 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "112" + "finding": "86" } ], "thirdparties": { @@ -538847,8 +541366,8 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 20:18:39 GMT", - "etag": "\"1584l3nlapb1ykl\"", + "date": "Sun, 24 Dec 2023 18:45:19 GMT", + "etag": "\"8lpbnsc0li1ykl\"", "referrer-policy": "unsafe-url\nno-referrer-when-downgrade", "strict-transport-security": "max-age=31536000; includeSubDomains\nmax-age=31536000; includeSubdomains", "transfer-encoding": "chunked", @@ -538916,18 +541435,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.221.147", + "ip": "185.93.1.247", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4887398, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -538960,41 +541480,41 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "95141" + "code": "60602" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 3077311, + "is_in_european_union": true, + "iso_code": "CZ", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Tschechien", + "en": "Czechia", + "es": "Chequia", + "fr": "Tchéquie", + "ja": "チェコ共和国", + "pt-BR": "Chéquia", + "ru": "Чехия", + "zh-CN": "捷克" } }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -539301,7 +541821,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:16:47", + "@generated": "Sun, 24 Dec 2023 18:44:17", "site": [ { "@name": "https://labonnealternance.apprentissage.beta.gouv.fr", @@ -539407,13 +541927,6 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, - { - "name": "Content-Type Header Missing", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The Content-Type header was either missing or empty.

" - }, { "name": "Information Disclosure - Sensitive Information in URL", "riskcode": "0", @@ -539528,7 +542041,7 @@ "type": "dns", "host": "labonnealternance.apprentissage.beta.gouv.fr.", "matched-at": "labonnealternance.apprentissage.beta.gouv.fr", - "timestamp": "2023-12-17T20:21:39.057284036Z", + "timestamp": "2023-12-24T18:48:15.091213695Z", "matcher-status": true }, { @@ -539558,7 +542071,7 @@ "HEAD" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:21:52.006831277Z", + "timestamp": "2023-12-24T18:48:23.499027923Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539599,7 +542112,7 @@ "1" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:22:01.46128247Z", + "timestamp": "2023-12-24T18:48:30.052020464Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539626,7 +542139,81 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:22:46.862498077Z", + "timestamp": "2023-12-24T18:49:02.287398354Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://labonnealternance.apprentissage.beta.gouv.fr", + "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", + "ip": "149.202.54.205", + "timestamp": "2023-12-24T18:49:10.161410006Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://labonnealternance.apprentissage.beta.gouv.fr", + "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", + "ip": "149.202.54.205", + "timestamp": "2023-12-24T18:49:10.161457014Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539663,7 +542250,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.051978849Z", + "timestamp": "2023-12-24T18:49:10.161498912Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539700,7 +542287,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.052032609Z", + "timestamp": "2023-12-24T18:49:10.161512989Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539737,7 +542324,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.052044742Z", + "timestamp": "2023-12-24T18:49:10.161527566Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539774,7 +542361,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.052055522Z", + "timestamp": "2023-12-24T18:49:10.161544878Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539806,12 +542393,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.052069167Z", + "timestamp": "2023-12-24T18:49:10.161558974Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539843,12 +542430,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:01.052095086Z", + "timestamp": "2023-12-24T18:49:10.161574012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539888,7 +542475,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr/", "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:23:44.20571583Z", + "timestamp": "2023-12-24T18:49:39.119754178Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: labonnealternance.apprentissage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr/'", "matcher-status": true }, @@ -539935,10 +542522,10 @@ "host": "labonnealternance.apprentissage.beta.gouv.fr:22", "matched-at": "labonnealternance.apprentissage.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:24:49.711613868Z", + "timestamp": "2023-12-24T18:50:30.223523083Z", "matcher-status": true }, { @@ -539952,7 +542539,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -539967,7 +542555,7 @@ "Let's Encrypt" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:25:39.913824377Z", + "timestamp": "2023-12-24T18:51:15.831913261Z", "matcher-status": true }, { @@ -539981,7 +542569,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -539996,7 +542585,7 @@ "labonnealternance.apprentissage.beta.gouv.fr" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:25:39.913959439Z", + "timestamp": "2023-12-24T18:51:15.832048193Z", "matcher-status": true }, { @@ -540011,7 +542600,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -540026,7 +542616,7 @@ "tls12" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:25:42.466267319Z", + "timestamp": "2023-12-24T18:51:19.561241825Z", "matcher-status": true }, { @@ -540041,7 +542631,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -540056,7 +542647,7 @@ "tls13" ], "ip": "149.202.54.205", - "timestamp": "2023-12-17T20:25:42.813832693Z", + "timestamp": "2023-12-24T18:51:19.796519885Z", "matcher-status": true } ], @@ -540064,7 +542655,7 @@ { "requestedUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", "finalUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", - "fetchTime": "2023-12-17T20:17:02.309Z", + "fetchTime": "2023-12-24T18:44:31.374Z", "runWarnings": [], "categories": { "performance": { @@ -540075,7 +542666,7 @@ "snapshot" ], "id": "performance", - "score": 0.4217836380004883 + "score": 0.3716142654418945 }, "accessibility": { "title": "Accessibility", @@ -540127,53 +542718,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11455, + "numericValue": 10640, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2317, - "firstMeaningfulPaint": 2317, - "largestContentfulPaint": 2483, - "interactive": 11455, - "speedIndex": 3876, - "totalBlockingTime": 853, - "maxPotentialFID": 405, + "firstContentfulPaint": 2053, + "firstMeaningfulPaint": 2053, + "largestContentfulPaint": 2109, + "interactive": 10640, + "speedIndex": 2341, + "totalBlockingTime": 885, + "maxPotentialFID": 414, "cumulativeLayoutShift": 0.0015431395636664497, "cumulativeLayoutShiftMainFrame": 0.0015431395636664497, "totalCumulativeLayoutShift": 0.0015431395636664497, "observedTimeOrigin": 0, - "observedTimeOriginTs": 479580567, + "observedTimeOriginTs": 421346816, "observedNavigationStart": 0, - "observedNavigationStartTs": 479580567, - "observedFirstPaint": 1767, - "observedFirstPaintTs": 481347289, - "observedFirstContentfulPaint": 1767, - "observedFirstContentfulPaintTs": 481347289, - "observedFirstContentfulPaintAllFrames": 1767, - "observedFirstContentfulPaintAllFramesTs": 481347289, - "observedFirstMeaningfulPaint": 1767, - "observedFirstMeaningfulPaintTs": 481347289, - "observedLargestContentfulPaint": 1767, - "observedLargestContentfulPaintTs": 481347289, - "observedLargestContentfulPaintAllFrames": 1767, - "observedLargestContentfulPaintAllFramesTs": 481347289, - "observedTraceEnd": 6681, - "observedTraceEndTs": 486261477, - "observedLoad": 4370, - "observedLoadTs": 483951052, - "observedDomContentLoaded": 3177, - "observedDomContentLoadedTs": 482757139, + "observedNavigationStartTs": 421346816, + "observedFirstPaint": 835, + "observedFirstPaintTs": 422181356, + "observedFirstContentfulPaint": 835, + "observedFirstContentfulPaintTs": 422181356, + "observedFirstContentfulPaintAllFrames": 835, + "observedFirstContentfulPaintAllFramesTs": 422181356, + "observedFirstMeaningfulPaint": 835, + "observedFirstMeaningfulPaintTs": 422181356, + "observedLargestContentfulPaint": 835, + "observedLargestContentfulPaintTs": 422181356, + "observedLargestContentfulPaintAllFrames": 835, + "observedLargestContentfulPaintAllFramesTs": 422181356, + "observedTraceEnd": 5125, + "observedTraceEndTs": 426471568, + "observedLoad": 2816, + "observedLoadTs": 424163021, + "observedDomContentLoaded": 1826, + "observedDomContentLoadedTs": 423172382, "observedCumulativeLayoutShift": 0.0015431395636664497, "observedCumulativeLayoutShiftMainFrame": 0.0015431395636664497, "observedTotalCumulativeLayoutShift": 0.0015431395636664497, - "observedFirstVisualChange": 1766, - "observedFirstVisualChangeTs": 481346567, - "observedLastVisualChange": 3183, - "observedLastVisualChangeTs": 482763567, - "observedSpeedIndex": 1871, - "observedSpeedIndexTs": 481451741 + "observedFirstVisualChange": 819, + "observedFirstVisualChangeTs": 422165816, + "observedLastVisualChange": 1919, + "observedLastVisualChangeTs": 423265816, + "observedSpeedIndex": 898, + "observedSpeedIndexTs": 422244443 }, { "lcpInvalidated": false @@ -540191,23 +542782,23 @@ "type": "debugdata", "items": [ { - "numRequests": 59, + "numRequests": 60, "numScripts": 33, "numStylesheets": 2, "numFonts": 4, - "numTasks": 1684, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, + "numTasks": 1592, + "numTasksOver10ms": 6, + "numTasksOver25ms": 3, "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.8210000000000015, - "throughput": 8247284.482474941, - "maxRtt": 158.62099999999998, - "maxServerLatency": 43.497, - "totalByteWeight": 1720799, - "totalTaskTime": 526.9930000000015, - "mainDocumentTransferSize": 18342 + "rtt": 1.4370000000000118, + "throughput": 11450670.28029256, + "maxRtt": 104.92699999999999, + "maxServerLatency": 15.650000000000006, + "totalByteWeight": 1721687, + "totalTaskTime": 513.0789999999978, + "mainDocumentTransferSize": 18335 } ] } @@ -540310,6 +542901,9 @@ "httpGrade": "C", "uptime": 100, "uptimeGrade": "A", + "nmapGrade": "B", + "nmapOpenPortsCount": 3, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-03-04T14:17:00.000Z", "testsslGrade": "A+", @@ -540317,7 +542911,7 @@ "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.4217836380004883, + "lighthouse_performance": 0.3716142654418945, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -540346,7 +542940,7 @@ "http": { "url": "https://sppnaut.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 20:33:44 GMT", + "end_time": "Sun, 24 Dec 2023 18:53:36 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -540356,9 +542950,9 @@ "Content-Type": "text/html", "X-CleverCloudUpgrade": "true" }, - "scan_id": 45562896, + "scan_id": 45771550, "score": 0, - "start_time": "Sun, 17 Dec 2023 20:33:38 GMT", + "start_time": "Sun, 24 Dec 2023 18:53:30 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 6, @@ -540527,7 +543121,7 @@ "nmap": { "host": "sppnaut.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "985", "open_ports": [ { "service": { @@ -540601,6 +543195,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "5903", + "vulnerabilities": [] + } + }, { "service": { "name": "http", @@ -540609,6 +543210,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "5952", + "vulnerabilities": [] + } + }, { "service": { "name": "unknown", @@ -540969,7 +543577,7 @@ "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -542056,7 +544664,7 @@ "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -542890,7 +545498,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:33:08", + "@generated": "Sun, 24 Dec 2023 18:53:01", "site": [ { "@name": "https://sppnaut.beta.gouv.fr", @@ -542965,7 +545573,854 @@ } ] }, - "nuclei": [], + "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "sppnaut.beta.gouv.fr.", + "matched-at": "sppnaut.beta.gouv.fr", + "timestamp": "2023-12-24T19:00:16.208697086Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "sppnaut.beta.gouv.fr.", + "matched-at": "_dmarc.sppnaut.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T19:00:16.359110172Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "sppnaut.beta.gouv.fr.", + "matched-at": "sppnaut.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2023-12-24T19:00:16.359285817Z", + "matcher-status": true + }, + { + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "info": { + "name": "MX Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "sppnaut.beta.gouv.fr.", + "matched-at": "sppnaut.beta.gouv.fr", + "extracted-results": [ + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." + ], + "timestamp": "2023-12-24T19:00:17.210526301Z", + "matcher-status": true + }, + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "sppnaut.beta.gouv.fr.", + "matched-at": "sppnaut.beta.gouv.fr", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2023-12-24T19:00:17.363193212Z", + "matcher-status": true + }, + { + "template": "http/miscellaneous/email-extractor.yaml", + "template-url": "https://templates.nuclei.sh/public/email-extractor", + "template-id": "email-extractor", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/email-extractor.yaml", + "info": { + "name": "Email Extractor", + "author": [ + "panch0r3d" + ], + "tags": [ + "misc", + "email", + "generic" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "extracted-results": [ + "support@clever-cloud.com" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:00:30.765226711Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/takeovers/clever-takeover.yaml", + "template-url": "https://templates.nuclei.sh/public/clever-takeover", + "template-id": "clever-takeover", + "template-path": "/home/runner/nuclei-templates/http/takeovers/clever-takeover.yaml", + "info": { + "name": "Clever Cloud - Subdomain Takeover Detection", + "author": [ + "supr4s" + ], + "tags": [ + "takeover" + ], + "description": "Clever Cloud subdomain takeover was detected.", + "reference": [ + "https://supras.io/new-subdomain-takeover-case-clever-cloud/" + ], + "severity": "high", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:00:30.768271671Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/switch-protocol.yaml", + "template-url": "https://templates.nuclei.sh/public/switch-protocol", + "template-id": "switch-protocol", + "template-path": "/home/runner/nuclei-templates/http/technologies/switch-protocol.yaml", + "info": { + "name": "Switching Protocol Detection", + "author": [ + "pdteam" + ], + "tags": [ + "protocol", + "switching", + "tech", + "websocket", + "h2c" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "shodan-query": "\"connection: upgrade\"", + "verified": true + } + }, + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:00:30.771077827Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890452069Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890502523Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890519505Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.89053331Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890547267Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890565681Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.89058653Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890605756Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890624641Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890644277Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890668602Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/mixed-active-content.yaml", + "template-url": "https://templates.nuclei.sh/public/mixed-active-content", + "template-id": "mixed-active-content", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/mixed-active-content.yaml", + "info": { + "name": "Mixed Active Content", + "author": [ + "liwermor" + ], + "tags": [ + "misconfig" + ], + "description": "This check detects if there are any active content loaded over HTTP instead of HTTPS.\n", + "impact": "Loading third-party scripts over HTTP can expose sensitive user data and lead to potential security vulnerabilities.\n", + "reference": [ + "https://developer.mozilla.org/en-us/docs/web/security/mixed_content", + "https://portswigger.net/kb/issues/01000400_mixed-content", + "https://resources.infosecinstitute.com/topics/vulnerabilities/https-mixed-content-vulnerability/", + "https://docs.gitlab.com/ee/user/application_security/dast/checks/319.1.html" + ], + "severity": "info" + }, + "matcher-name": "link", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "extracted-results": [ + "http://clever-cloud.com/img/favicon.png" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:01:08.890714889Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "info": { + "name": "Detect SSL Certificate Issuer", + "author": [ + "lingtren" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "sppnaut.beta.gouv.fr", + "matched-at": "sppnaut.beta.gouv.fr:443", + "extracted-results": [ + "Let's Encrypt" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:02:05.967881696Z", + "matcher-status": true + }, + { + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "info": { + "name": "SSL DNS Names", + "author": [ + "pdteam" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "sppnaut.beta.gouv.fr", + "matched-at": "sppnaut.beta.gouv.fr:443", + "extracted-results": [ + "sppnaut.beta.gouv.fr" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:02:05.967993054Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "sppnaut.beta.gouv.fr", + "matched-at": "sppnaut.beta.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:02:07.910346872Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "sppnaut.beta.gouv.fr", + "matched-at": "sppnaut.beta.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "87.98.180.173", + "timestamp": "2023-12-24T19:02:08.19288037Z", + "matcher-status": true + } + ], "lhr": null, "screenshot": true, "stats": { @@ -543047,7 +546502,7 @@ "summary": { "httpGrade": "F", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 15, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-24T10:55:00.000Z", @@ -543072,18 +546527,18 @@ "http": { "url": "https://labonneboite.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 20:39:01 GMT", + "end_time": "Sun, 24 Dec 2023 19:04:49 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.labonneboite.pole-emploi.fr embed.doorbell.io labonnealternance.pole-emploi.fr memo.pole-emploi.fr www.google-analytics.com static.hotjar.com script.hotjar.com optimize.google.com www.googletagmanager.com cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net", + "Content-Security-Policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.labonneboite.pole-emploi.fr embed.doorbell.io labonnealternance.pole-emploi.fr memo.pole-emploi.fr www.google-analytics.com static.hotjar.com script.hotjar.com optimize.google.com www.googletagmanager.com cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 20:39:00 GMT", + "Date": "Sun, 24 Dec 2023 19:04:48 GMT", "Referrer-Policy": "strict-origin", - "Set-Cookie": "session=eyJfcGVybWFuZW50Ijp0cnVlLCJjc3JmX3Rva2VuIjoiNThkYThiYTU3Y2Y4YzBjNWIwZDg1YTgwZGU0OGVhYjE1OGRiZGI0ZiJ9.ZX9cZA.y32ry2iC6_33TgqmcV0OrCkelJk; Domain=.labonneboite.pole-emploi.fr; Expires=Wed, 17 Jan 2024 20:39:00 GMT; Secure; HttpOnly; Path=/", + "Set-Cookie": "session=eyJfcGVybWFuZW50Ijp0cnVlLCJjc3JmX3Rva2VuIjoiMTUzMGFmNDY2MzdkOWYyOTk0YjVjMWRlOTQ1YjBiYTJlZTg2YjIzMCJ9.ZYiA0A.pAPTPFJxi-fpstydwkSeYT16gS0; Domain=.labonneboite.pole-emploi.fr; Expires=Wed, 24 Jan 2024 19:04:48 GMT; Secure; HttpOnly; Path=/", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Cookie", @@ -543091,9 +546546,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 45563000, + "scan_id": 45771771, "score": 75, - "start_time": "Sun, 17 Dec 2023 20:38:56 GMT", + "start_time": "Sun, 24 Dec 2023 19:04:45 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -543106,21 +546561,22 @@ "output": { "data": { "script-src": [ - "www.google-analytics.com", + "optimize.google.com", + "script.hotjar.com", "static.hotjar.com", "'unsafe-eval'", - "embed.doorbell.io", - "www.googletagmanager.com", - "tag.aticdn.net", - "'self'", - "memo.pole-emploi.fr", - "blob:", "cdn.tagcommander.com", - "cdn.trustcommander.net", + "memo.pole-emploi.fr", + "'self'", + "www.google-analytics.com", + "guidances-applicatives.pole-emploi.fr", "labonnealternance.pole-emploi.fr", + "tag.aticdn.net", + "cdn.trustcommander.net", + "embed.doorbell.io", + "blob:", + "www.googletagmanager.com", "maps.labonneboite.pole-emploi.fr", - "optimize.google.com", - "script.hotjar.com", "'unsafe-inline'" ] }, @@ -543164,7 +546620,7 @@ "data": { "session": { "domain": ".labonneboite.pole-emploi.fr", - "expires": 1705523941, + "expires": 1706123089, "httponly": true, "max-age": null, "path": "/", @@ -543487,7 +546943,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:35:36", + "@generated": "Sun, 24 Dec 2023 19:01:25", "site": [ { "@name": "https://labonneboite.pole-emploi.fr", @@ -543762,7 +547218,7 @@ "http": { "url": "https://cfas.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 20:40:16 GMT", + "end_time": "Sun, 24 Dec 2023 19:03:57 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -543772,8 +547228,8 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site data:; object-src 'none'; script-src 'self' https://plausible.io ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 20:40:14 GMT", - "ETag": "\"zl4jzxhogeoo9\"", + "Date": "Sun, 24 Dec 2023 19:03:55 GMT", + "ETag": "\"xt6deh5fzeoo9\"", "Referrer-Policy": "no-referrer-when-downgrade", "Strict-Transport-Security": "max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", @@ -543781,9 +547237,9 @@ "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 45563020, + "scan_id": 45771755, "score": 105, - "start_time": "Sun, 17 Dec 2023 20:40:10 GMT", + "start_time": "Sun, 24 Dec 2023 19:03:52 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -543802,8 +547258,8 @@ "'none'" ], "connect-src": [ - "'self'", "https://sentry.apprentissage.beta.gouv.fr", + "'self'", "https://plausible.io" ], "default-src": [ @@ -543811,26 +547267,26 @@ "https://plausible.io" ], "font-src": [ - "https:", "'self'", + "https:", "data:" ], "frame-ancestors": [ - "'self'", - "https://cfas.apprentissage.beta.gouv.fr" + "https://cfas.apprentissage.beta.gouv.fr", + "'self'" ], "frame-src": [ - "'self'", "https://cfas.apprentissage.beta.gouv.fr", - "https://cfas-recette.apprentissage.beta.gouv.fr", - "https://plausible.io" + "'self'", + "https://plausible.io", + "https://cfas-recette.apprentissage.beta.gouv.fr" ], "img-src": [ - "'self'", "https://www.notion.so", + "'self'", + "https://files.tableau-de-bord.apprentissage.beta.gouv.fr", "data:", - "https://mission-apprentissage.notion.site", - "https://files.tableau-de-bord.apprentissage.beta.gouv.fr" + "https://mission-apprentissage.notion.site" ], "object-src": [ "'none'" @@ -543845,8 +547301,8 @@ "style-src": [ "'self'", "*.plausible.io", - "'unsafe-inline'", - "https:" + "https:", + "'unsafe-inline'" ], "upgrade-insecure-requests": [ "'none'" @@ -544037,15 +547493,15 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T20:44:18Z", - "next_check_at": "2023-12-17T21:44:12Z", + "last_check_at": "2023-12-24T18:56:42Z", + "next_check_at": "2023-12-24T19:56:23Z", "mute_until": "forever", "favicon_url": "https://cfas.apprentissage.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T20:44:18Z", + "tested_at": "2023-12-24T11:58:32Z", "expires_at": "2024-02-04T00:00:14Z", "valid": true, "error": null @@ -544063,7 +547519,7 @@ "name": "ssh", "product": "OpenSSH", "id": "22", - "version": "8.9p1 Ubuntu 3ubuntu0.4", + "version": "8.9p1 Ubuntu 3ubuntu0.5", "vulnerabilities": [] } }, @@ -544443,7 +547899,7 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", @@ -544646,7 +548102,7 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "1702845696" + "finding": "1703444769" }, { "id": "HSTS_time", @@ -545237,7 +548693,7 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "57" + "finding": "102" } ], "thirdparties": { @@ -545249,8 +548705,8 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site data:; object-src 'none'; script-src 'self' https://plausible.io ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 20:40:53 GMT", - "etag": "\"j1uf80xqcaoo9\"", + "date": "Sun, 24 Dec 2023 19:04:28 GMT", + "etag": "\"pqvykzxoudoo9\"", "referrer-policy": "no-referrer-when-downgrade", "strict-transport-security": "max-age=31536000; includeSubdomains", "transfer-encoding": "chunked", @@ -545312,7 +548768,7 @@ "time_zone": "Europe/Paris" }, "postal": { - "code": "75012" + "code": "75004" }, "registered_country": { "geoname_id": 3017382, @@ -545547,7 +549003,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:39:39", + "@generated": "Sun, 24 Dec 2023 19:03:25", "site": [ { "@name": "https://cfas.apprentissage.beta.gouv.fr", @@ -545746,7 +549202,7 @@ "type": "dns", "host": "cfas.apprentissage.beta.gouv.fr.", "matched-at": "cfas.apprentissage.beta.gouv.fr", - "timestamp": "2023-12-17T20:42:54.49408403Z", + "timestamp": "2023-12-24T19:08:17.095873833Z", "matcher-status": true }, { @@ -545772,7 +549228,7 @@ "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:33.65756119Z", + "timestamp": "2023-12-24T19:09:19.549412428Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545804,12 +549260,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.658725834Z", + "timestamp": "2023-12-24T19:09:35.340491849Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545841,12 +549297,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.658775957Z", + "timestamp": "2023-12-24T19:09:35.340533387Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545878,12 +549334,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.658792869Z", + "timestamp": "2023-12-24T19:09:35.340551872Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545915,12 +549371,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.658808187Z", + "timestamp": "2023-12-24T19:09:35.340569916Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545952,12 +549408,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.658841469Z", + "timestamp": "2023-12-24T19:09:35.340583281Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -545989,12 +549445,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:43:42.65887977Z", + "timestamp": "2023-12-24T19:09:35.340596206Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546034,7 +549490,7 @@ "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr/", "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:44:06.452057181Z", + "timestamp": "2023-12-24T19:10:16.841986778Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cfas.apprentissage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr/'", "matcher-status": true }, @@ -546081,10 +549537,10 @@ "host": "cfas.apprentissage.beta.gouv.fr:22", "matched-at": "cfas.apprentissage.beta.gouv.fr:22", "extracted-results": [ - "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.4" + "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5" ], "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:44:56.863373711Z", + "timestamp": "2023-12-24T19:11:20.446404477Z", "matcher-status": true }, { @@ -546098,7 +549554,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -546113,7 +549570,7 @@ "Let's Encrypt" ], "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:45:46.886932282Z", + "timestamp": "2023-12-24T19:12:05.567831344Z", "matcher-status": true }, { @@ -546127,7 +549584,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -546142,7 +549600,7 @@ "cfas.apprentissage.beta.gouv.fr" ], "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:45:46.887082281Z", + "timestamp": "2023-12-24T19:12:05.567965487Z", "matcher-status": true }, { @@ -546157,7 +549615,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -546172,7 +549631,7 @@ "tls12" ], "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:45:48.413929618Z", + "timestamp": "2023-12-24T19:12:11.194259797Z", "matcher-status": true }, { @@ -546187,7 +549646,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -546202,7 +549662,7 @@ "tls13" ], "ip": "141.95.161.225", - "timestamp": "2023-12-17T20:45:48.624165808Z", + "timestamp": "2023-12-24T19:12:11.624378925Z", "matcher-status": true } ], @@ -546210,7 +549670,7 @@ { "requestedUrl": "https://cfas.apprentissage.beta.gouv.fr/", "finalUrl": "https://cfas.apprentissage.beta.gouv.fr/", - "fetchTime": "2023-12-17T20:39:52.844Z", + "fetchTime": "2023-12-24T19:03:39.563Z", "runWarnings": [], "categories": { "performance": { @@ -546221,7 +549681,7 @@ "snapshot" ], "id": "performance", - "score": 0.7770788192749023 + "score": 0.7770029067993164 }, "accessibility": { "title": "Accessibility", @@ -546273,53 +549733,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9302, + "numericValue": 9440, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1527, - "firstMeaningfulPaint": 1527, - "largestContentfulPaint": 8131, - "interactive": 9302, - "speedIndex": 2791, - "totalBlockingTime": 572, - "maxPotentialFID": 566, - "cumulativeLayoutShift": 0.4402104551527235, - "cumulativeLayoutShiftMainFrame": 0.4402104551527235, - "totalCumulativeLayoutShift": 0.4402104551527235, + "firstContentfulPaint": 1523, + "firstMeaningfulPaint": 1523, + "largestContentfulPaint": 7565, + "interactive": 9440, + "speedIndex": 3910, + "totalBlockingTime": 669, + "maxPotentialFID": 404, + "cumulativeLayoutShift": 0.5927314453125, + "cumulativeLayoutShiftMainFrame": 0.5927314453125, + "totalCumulativeLayoutShift": 0.5927314453125, "observedTimeOrigin": 0, - "observedTimeOriginTs": 247673722, + "observedTimeOriginTs": 283191373, "observedNavigationStart": 0, - "observedNavigationStartTs": 247673722, - "observedFirstPaint": 592, - "observedFirstPaintTs": 248265459, - "observedFirstContentfulPaint": 1449, - "observedFirstContentfulPaintTs": 249122717, - "observedFirstContentfulPaintAllFrames": 1449, - "observedFirstContentfulPaintAllFramesTs": 249122717, - "observedFirstMeaningfulPaint": 1449, - "observedFirstMeaningfulPaintTs": 249122717, - "observedLargestContentfulPaint": 1541, - "observedLargestContentfulPaintTs": 249214786, - "observedLargestContentfulPaintAllFrames": 1541, - "observedLargestContentfulPaintAllFramesTs": 249214786, - "observedTraceEnd": 10607, - "observedTraceEndTs": 258280268, - "observedLoad": 1229, - "observedLoadTs": 248903035, - "observedDomContentLoaded": 1229, - "observedDomContentLoadedTs": 248902802, - "observedCumulativeLayoutShift": 0.4402104551527235, - "observedCumulativeLayoutShiftMainFrame": 0.4402104551527235, - "observedTotalCumulativeLayoutShift": 0.4402104551527235, - "observedFirstVisualChange": 1449, - "observedFirstVisualChangeTs": 249122722, - "observedLastVisualChange": 1632, - "observedLastVisualChangeTs": 249305722, - "observedSpeedIndex": 1463, - "observedSpeedIndexTs": 249136867 + "observedNavigationStartTs": 283191373, + "observedFirstPaint": 1007, + "observedFirstPaintTs": 284198250, + "observedFirstContentfulPaint": 2235, + "observedFirstContentfulPaintTs": 285426606, + "observedFirstContentfulPaintAllFrames": 2235, + "observedFirstContentfulPaintAllFramesTs": 285426606, + "observedFirstMeaningfulPaint": 2235, + "observedFirstMeaningfulPaintTs": 285426606, + "observedLargestContentfulPaint": 2235, + "observedLargestContentfulPaintTs": 285426606, + "observedLargestContentfulPaintAllFrames": 2235, + "observedLargestContentfulPaintAllFramesTs": 285426606, + "observedTraceEnd": 5324, + "observedTraceEndTs": 288515367, + "observedLoad": 2867, + "observedLoadTs": 286058426, + "observedDomContentLoaded": 1972, + "observedDomContentLoadedTs": 285163786, + "observedCumulativeLayoutShift": 0.5927314453125, + "observedCumulativeLayoutShiftMainFrame": 0.5927314453125, + "observedTotalCumulativeLayoutShift": 0.5927314453125, + "observedFirstVisualChange": 2247, + "observedFirstVisualChangeTs": 285438373, + "observedLastVisualChange": 2547, + "observedLastVisualChangeTs": 285738373, + "observedSpeedIndex": 2264, + "observedSpeedIndexTs": 285455748 }, { "lcpInvalidated": false @@ -546341,19 +549801,19 @@ "numScripts": 24, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1302, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, + "numTasks": 1212, + "numTasksOver10ms": 8, + "numTasksOver25ms": 5, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 83.532, - "throughput": 13928613.68096139, - "maxRtt": 83.532, - "maxServerLatency": 9.147999999999996, - "totalByteWeight": 1168749, - "totalTaskTime": 530.3229999999979, - "mainDocumentTransferSize": 9081 + "rtt": 154.702, + "throughput": 11432376.029547086, + "maxRtt": 154.702, + "maxServerLatency": 7.655000000000001, + "totalByteWeight": 1169147, + "totalTaskTime": 519.9519999999989, + "mainDocumentTransferSize": 9075 } ] } @@ -546378,24 +549838,27 @@ "uri": "" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Politique de confidentialité", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://cfas.apprentissage.beta.gouv.fr/politique-de-confidentialite" } ], "betagouv": { @@ -546447,7 +549910,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.7770788192749023, + "lighthouse_performance": 0.7770029067993164, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", @@ -546460,9 +549923,9 @@ "statsGrade": "A", "githubRepositoryGrade": "F", "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F" + "declaration-a11y": "C", + "declaration-rgpd-ml": "A", + "declaration-rgpd-pc": "A" } }, { @@ -546479,31 +549942,31 @@ "http": { "url": "https://conseil-refondation.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 20:57:41 GMT", + "end_time": "Sun, 24 Dec 2023 19:18:05 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "837214666a0167a2-SJC", + "CF-RAY": "83ab3021c98767d9-SJC", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com", + "Content-Security-Policy": "default-src 'self' data: localhost:8000; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 20:57:39 GMT", + "Date": "Sun, 24 Dec 2023 19:18:04 GMT", "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", "Referrer-Policy": "same-origin", - "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=4uPeQ5IZA0bwPOH3UugWcMGfM8mOaBOfmv2CD2t2S3bD09mVl%2F6JMV3Dn%2F0AGBklw5IPM0Yy0mGzIM3hM2YXEZh4gi4TeNb1w0qb%2B2jgX1k6Nm15GQx6BfI56nte5kbS110%2Bx2eOcnG8LkMXG9CtwSiejK6%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=SklRxVVcXCldazpQYX1id3puGwNWqCgsxPgN6C5aug%2F3JklciMXbabSXXRrHVKgQrSyDhl16HwT8O8TmCe6tNBf45kHHjp3GFpUFLtQ%2Fzsat3GboiftXEDn6P8m9oBc3uei0jn%2BQYy4dTxVka6v%2F%2BvcMqomH\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "Server": "cloudflare", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "2d70423a-8b02-4413-aa64-28a06a7e2a0f", + "X-Request-ID": "d447e1aa-3f57-4883-8523-f523960d7bdb", "alt-svc": "h3=\":443\"; ma=86400" }, - "scan_id": 45563343, + "scan_id": 45771935, "score": 80, - "start_time": "Sun, 17 Dec 2023 20:57:38 GMT", + "start_time": "Sun, 24 Dec 2023 19:18:02 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -546516,61 +549979,61 @@ "output": { "data": { "connect-src": [ - "*.facebook.com", - "'self'", - "form.typeform.com", "googleads.g.doubleclick.net/", - "api.axept.io", + "stats.conseil-refondation.fr", "googleadservices.com", "client.axept.io", - "googletagmanager.com", "connect.facebook.net", - "stats.conseil-refondation.fr" + "*.facebook.com", + "form.typeform.com", + "googletagmanager.com", + "'self'", + "api.axept.io" ], "default-src": [ - "localhost:8000", "data:", - "'self'" + "'self'", + "localhost:8000" ], "frame-src": [ + "*.vimeo.com", + "datawrapper.dwcdn.net", "form.typeform.com", "*.youtube.com", - "datawrapper.dwcdn.net", - "*.facebook.com", - "*.vimeo.com" + "*.facebook.com" ], "img-src": [ - "*.facebook.com", + "localhost:8000", "*.gstatic.com", - "'self'", + "*.google.fr", + "data:", "cellar-c2.services.clever-cloud.com", "*.google.com", - "data:", - "*.google.fr", - "localhost:8000" + "'self'", + "*.facebook.com" ], "script-src": [ - "www.googletagmanager.com", - "'self'", - "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", - "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='", + "embed.typeform.com", + "static.axept.io", + "stats.conseil-refondation.fr", "googleads.g.doubleclick.net", "connect.facebook.net", - "stats.conseil-refondation.fr", - "static.axept.io", - "embed.typeform.com", + "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", + "www.googletagmanager.com", + "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='", + "'self'", "www.googleadservices.com" ], "style-src": [ "'unsafe-hashes'", "'sha256-athis6ynuvjwfhehgese8wafj61fxmzxx7s/uwrv5dg='", - "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", - "'self'", + "embed.typeform.com", + "'sha256-/68sznaqxdldug09n2c6rd/j5vwzefkxcrsvxk+bc7s='", "'sha256-ddzkvrijy1xyahb04e1npps7onjw3g8949x7gac/key='", "'sha256-xhd5+zyamb/dmdyikywxmzaxokrsmrintdcso/s+hcc='", - "'sha256-/68sznaqxdldug09n2c6rd/j5vwzefkxcrsvxk+bc7s='", "'sha256-d//lck7pnf/oy9mpfgyaiotmqjezvwlsukk3uobi08a='", - "embed.typeform.com" + "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", + "'self'" ] }, "http": true, @@ -546785,77 +550248,77 @@ "testssl": [ { "id": "service", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -546863,7 +550326,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -546871,7 +550334,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -546879,7 +550342,7 @@ }, { "id": "cipherlist_LOW", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -546887,7 +550350,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -546895,7 +550358,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -546903,497 +550366,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIDzTCCArWgAwIBAgIQCjeHZF5ftIwiTv0b7RQMPDANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDgwOFoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIEVDQyBDQS0zMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEua1NZpkUC0bsH4HRKlAenQMVLzQSfS2WuIg4m4Vfj7+7Te9hRsTJc9QkT+DuHM5ss1FxL2ruTAUJd9NyYqSb16OCAWgwggFkMB0GA1UdDgQWBBSlzjfq67B1DpRniLRF+tkkEIeWHzAfBgNVHSMEGDAWgBTlnVkwgkdYzKz6CFQ2hns6tQRN8DAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL09tbmlyb290MjAyNS5jcmwwbQYDVR0gBGYwZDA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMAgGBmeBDAECAjAIBgZngQwBAgMwDQYJKoZIhvcNAQELBQADggEBAAUkHd0bsCrrmNaF4zlNXmtXnYJX/OvoMaJXkGUFvhZEOFp3ArnPEELG4ZKk40Un+ABHLGioVplTVI+tnkDB0A+21w0LOEhsUCxJkAZbZB2LzEgwLt4I4ptJIsCSDBFelpKU1fwg3FZs5ZKTv3ocwDfjhUkV+ivhdDkYD7fa86JXWGBPzI6UAPxGezQxPk1HgoE6y/SJXQ7vTQ1unBuCJN0yJV0ReFEQPaA1IwQvZW+cwdFD19Ae8zFnWSfda9J1CZMRJCQUzym+5iPDuI9yP+kHyCREU3qzuWFloUwOxkgAyXVjBYdwRVKD05WdRerw6DEdfgkfCv4+3ao8XnTSrLE=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "1702846743" + "finding": "1703445571" }, { "id": "HSTS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com" + "finding": "default-src 'self' data: localhost:8000; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com" }, { "id": "Referrer-Policy", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -547401,7 +550864,7 @@ }, { "id": "heartbleed", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -547410,7 +550873,7 @@ }, { "id": "CCS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -547419,7 +550882,7 @@ }, { "id": "ticketbleed", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -547428,7 +550891,7 @@ }, { "id": "ROBOT", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -547437,7 +550900,7 @@ }, { "id": "secure_renego", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -547445,7 +550908,7 @@ }, { "id": "secure_client_renego", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -547454,7 +550917,7 @@ }, { "id": "CRIME_TLS", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -547463,7 +550926,7 @@ }, { "id": "BREACH", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -547472,7 +550935,7 @@ }, { "id": "POODLE_SSL", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -547481,14 +550944,14 @@ }, { "id": "fallback_SCSV", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -547497,7 +550960,7 @@ }, { "id": "FREAK", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -547506,7 +550969,7 @@ }, { "id": "DROWN", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -547515,7 +550978,7 @@ }, { "id": "DROWN_hint", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -547524,7 +550987,7 @@ }, { "id": "LOGJAM", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -547533,7 +550996,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -547542,7 +551005,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -547551,7 +551014,7 @@ }, { "id": "BEAST", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -547560,7 +551023,7 @@ }, { "id": "LUCKY13", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -547569,7 +551032,7 @@ }, { "id": "winshock", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -547578,7 +551041,7 @@ }, { "id": "RC4", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -547587,413 +551050,413 @@ }, { "id": "clientsimulation-android_60", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "conseil-refondation.fr/172.67.130.24", + "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -548001,7 +551464,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -548009,7 +551472,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -548017,7 +551480,7 @@ }, { "id": "cipherlist_LOW", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -548025,7 +551488,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -548033,7 +551496,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -548041,497 +551504,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "1702846783" + "finding": "1703445613" }, { "id": "HSTS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", - "finding": "default-src 'self' data: localhost:8000; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com" + "finding": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com" }, { "id": "Referrer-Policy", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -548539,7 +552002,7 @@ }, { "id": "heartbleed", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -548548,7 +552011,7 @@ }, { "id": "CCS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -548557,7 +552020,7 @@ }, { "id": "ticketbleed", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -548566,7 +552029,7 @@ }, { "id": "ROBOT", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -548575,7 +552038,7 @@ }, { "id": "secure_renego", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -548583,7 +552046,7 @@ }, { "id": "secure_client_renego", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -548592,7 +552055,7 @@ }, { "id": "CRIME_TLS", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -548601,7 +552064,7 @@ }, { "id": "BREACH", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -548610,7 +552073,7 @@ }, { "id": "POODLE_SSL", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -548619,14 +552082,14 @@ }, { "id": "fallback_SCSV", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -548635,7 +552098,7 @@ }, { "id": "FREAK", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -548644,7 +552107,7 @@ }, { "id": "DROWN", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -548653,7 +552116,7 @@ }, { "id": "DROWN_hint", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -548662,7 +552125,7 @@ }, { "id": "LOGJAM", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -548671,7 +552134,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -548680,7 +552143,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -548689,7 +552152,7 @@ }, { "id": "BEAST", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -548698,7 +552161,7 @@ }, { "id": "LUCKY13", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -548707,7 +552170,7 @@ }, { "id": "winshock", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -548716,7 +552179,7 @@ }, { "id": "RC4", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -548725,365 +552188,365 @@ }, { "id": "clientsimulation-android_60", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-ECDSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "key_exchange_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "cipher_strength_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "82" }, { "id": "overall_grade", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "grade_cap_reason_3", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "conseil-refondation.fr/104.21.7.98", + "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "82" + "finding": "87" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/Logo-CNR_couleur_variante.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=otyHbB9XDhJFdxHKRQZ3V%2FCnJUE%3D&Expires=1702850294" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/Logo-CNR_couleur_variante.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=sDSZ8qn%2FcPUYHAdO%2BIJI62Hgwfc%3D&Expires=1703449118" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-Local.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=xXx6Expj8jr5LOzfqtOBGG0zreM%3D&Expires=1702850294" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-Local.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=eoXKeq7IXsR7s%2BVc0Kx1az%2BsksI%3D&Expires=1703449118" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-National.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=1qxR4enPSGBUTJcw8W3kZd26X70%3D&Expires=1702850294" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-National.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=gL8%2FXCxs0Q5c33PUjU3w8S9nbCc%3D&Expires=1703449118" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-General.original.png?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=ORm3pw32rQ30rC31WevazOgG9sg%3D&Expires=1702850294" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-General.original.png?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=rR6oVa8D1iOxRBxclHk0vGY0ZBk%3D&Expires=1703449118" }, { "type": "unknown", @@ -549091,7 +552554,7 @@ }, { "type": "unknown", - "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=090929&h=20&m=58&s=15&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=c37c9c655e997db2&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=dBZ6K8&pf_net=25&pf_srv=171&pf_tfr=4&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" + "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=541593&h=19&m=18&s=38&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=997c316854dc2cdf&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=BbqMNT&pf_net=61&pf_srv=230&pf_tfr=6&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" } ], "cookies": [ @@ -549100,7 +552563,7 @@ "value": "1", "domain": "conseil-refondation.fr", "path": "/", - "expires": 1702848495, + "expires": 1703447318, "size": 15, "httpOnly": false, "secure": false, @@ -549112,10 +552575,10 @@ }, { "name": "_pk_id.1.474c", - "value": "c37c9c655e997db2.1702846695.", + "value": "997c316854dc2cdf.1703445519.", "domain": "conseil-refondation.fr", "path": "/", - "expires": 1736801895, + "expires": 1737400719, "size": 41, "httpOnly": false, "secure": false, @@ -549129,58 +552592,24 @@ "headers": { "alt-svc": "h3=\":443\"; ma=86400", "cf-cache-status": "DYNAMIC", - "cf-ray": "837215425ecd242f-IAD", + "cf-ray": "83ab30f968a1522d-LAX", "content-encoding": "br", "content-security-policy": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 20:58:14 GMT", + "date": "Sun, 24 Dec 2023 19:18:38 GMT", "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", "referrer-policy": "same-origin", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=5MPAxqjPZlGBtuKBhbfwD%2FPmCt%2FFAnGadBJzoG8k0AtAsNV9M2sP4RVD18%2FMdoLTHIEUY1DShUa2FL8KUtQi%2B6JO0CYb6e3hVQBC02iopYeL8%2FE4RtY3LTwfdXFv8V6GY6xRBKkQGUZD\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=rQYAjR6pDJ7B%2FCkpY9VlO4YH1n1bobErBq2XGXzTrX9dG7%2FGgAQTKUFaBa11eLLqu9UKpPaMWTr7Bt%2FUFXisCxBjxyMkXLMhoaKnLqqZEMmtXpbCtZbmvdozLMZcDh%2FP6iirfgUAz1fL\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "server": "cloudflare", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "c07e6c96-6376-44b2-8064-cf9269335bb3" + "x-request-id": "c8e49be8-6631-468b-bc80-f4774b5c61d2" }, "endpoints": [ { "hostname": "conseil-refondation.fr", - "ip": "172.67.130.24", + "ip": "104.21.7.98", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -549199,7 +552628,7 @@ }, { "hostname": "cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.149", + "ip": "91.208.207.147", "geoip": { "continent": { "code": "EU", @@ -549255,42 +552684,8 @@ }, { "hostname": "stats.conseil-refondation.fr", - "ip": "172.67.130.24", + "ip": "104.21.7.98", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -549521,7 +552916,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 20:57:13", + "@generated": "Sun, 24 Dec 2023 19:17:36", "site": [ { "@name": "https://conseil-refondation.fr", @@ -549682,24 +553077,20 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -549715,10 +553106,10 @@ "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", "extracted-results": [ - "15 smtpav2.hosteam.fr.", - "10 smtpav.hosteam.fr." + "dell.ns.cloudflare.com.", + "jay.ns.cloudflare.com." ], - "timestamp": "2023-12-17T21:00:44.110234586Z", + "timestamp": "2023-12-24T19:21:17.264679709Z", "matcher-status": true }, { @@ -549753,7 +553144,7 @@ "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "timestamp": "2023-12-17T21:00:44.11295511Z", + "timestamp": "2023-12-24T19:21:17.264858028Z", "matcher-status": true }, { @@ -549793,28 +553184,30 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2023-12-17T21:00:44.113584532Z", + "timestamp": "2023-12-24T19:21:17.540260124Z", "matcher-status": true }, { - "template": "dns/dns-waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-waf-detect", - "template-id": "dns-waf-detect", - "template-path": "/home/runner/nuclei-templates/dns/dns-waf-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS WAF Detection", + "name": "DNS TXT Record Detected", "author": [ - "lu4nx" + "pdteam" ], "tags": [ - "tech", - "waf", - "dns" + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "A DNS WAF was detected.", "severity": "info", "metadata": { - "max-request": 2 + "max-request": 1 }, "classification": { "cve-id": null, @@ -549823,34 +553216,37 @@ ] } }, - "matcher-name": "cloudflare", "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "timestamp": "2023-12-17T21:00:45.111290232Z", + "extracted-results": [ + "\"facebook-domain-verification=07suupqq8voxj7kjtdd3l01penyoko\"", + "\"google-site-verification:IBSwrAp9wu4YD4xK5BkDBV24ny_z_JJLypPQjO7IqEA\"", + "\"v=spf1 include:hosteam.fr include:spf.sendinblue.com ~all\"", + "\"Sendinblue-code:3937289e6c66993770f450f99bf64f47\"" + ], + "timestamp": "2023-12-24T19:21:17.552354984Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dns-waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-waf-detect", + "template-id": "dns-waf-detect", + "template-path": "/home/runner/nuclei-templates/dns/dns-waf-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS WAF Detection", "author": [ - "pdteam" + "lu4nx" ], "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "tech", + "waf", + "dns" ], + "description": "A DNS WAF was detected.", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 2 }, "classification": { "cve-id": null, @@ -549859,33 +553255,32 @@ ] } }, + "matcher-name": "cloudflare", "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "extracted-results": [ - "\"Sendinblue-code:3937289e6c66993770f450f99bf64f47\"", - "\"facebook-domain-verification=07suupqq8voxj7kjtdd3l01penyoko\"", - "\"google-site-verification:IBSwrAp9wu4YD4xK5BkDBV24ny_z_JJLypPQjO7IqEA\"", - "\"v=spf1 include:hosteam.fr include:spf.sendinblue.com ~all\"" - ], - "timestamp": "2023-12-17T21:00:45.188146111Z", + "timestamp": "2023-12-24T19:21:18.259387686Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -549901,10 +553296,10 @@ "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", "extracted-results": [ - "dell.ns.cloudflare.com.", - "jay.ns.cloudflare.com." + "10 smtpav.hosteam.fr.", + "15 smtpav2.hosteam.fr." ], - "timestamp": "2023-12-17T21:00:45.190372357Z", + "timestamp": "2023-12-24T19:21:19.261384807Z", "matcher-status": true }, { @@ -549943,7 +553338,7 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:01:09.318842597Z", + "timestamp": "2023-12-24T19:21:41.23528671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -549981,7 +553376,7 @@ "AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:01:51.496382315Z", + "timestamp": "2023-12-24T19:22:24.573593958Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550008,7 +553403,7 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:01:51.678623013Z", + "timestamp": "2023-12-24T19:22:24.756837893Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550040,12 +553435,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451886435Z", + "timestamp": "2023-12-24T19:22:42.446367266Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550077,12 +553472,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451933914Z", + "timestamp": "2023-12-24T19:22:42.446411498Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550114,12 +553509,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451945124Z", + "timestamp": "2023-12-24T19:22:42.446422258Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550151,12 +553546,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451954161Z", + "timestamp": "2023-12-24T19:22:42.446433388Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550188,12 +553583,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451962888Z", + "timestamp": "2023-12-24T19:22:42.446448026Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550225,12 +553620,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451971945Z", + "timestamp": "2023-12-24T19:22:42.446462533Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550262,12 +553657,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:02:09.451986933Z", + "timestamp": "2023-12-24T19:22:42.446476789Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -550305,15 +553700,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantName", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "2023-08-11T08:46:17.724178Z" + "Etat francais represente par le Premier Ministre DSAF" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.437944077Z", + "timestamp": "2023-12-24T19:23:06.065827408Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550351,15 +553746,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "2024-09-06T11:40:24Z" + "Etat francais represente par le Premier Ministre DSAF" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.437988429Z", + "timestamp": "2023-12-24T19:23:06.06587664Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550397,15 +553792,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantEmail", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "Etat francais represente par le Premier Ministre DSAF" + "379ccb8c16e9074358b13cd514e3b02b-38069823@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438007195Z", + "timestamp": "2023-12-24T19:23:06.065891447Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550443,15 +553838,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantPhone", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "Etat francais represente par le Premier Ministre DSAF" + "+33.142758000" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438021201Z", + "timestamp": "2023-12-24T19:23:06.065900865Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550489,15 +553884,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantAddress", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "false" + "75700", + "FR", + "18 RUE VANEAU", + "PARIS" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438034716Z", + "timestamp": "2023-12-24T19:23:06.065909621Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550535,15 +553933,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "active" + "2023-08-11T08:46:17.724178Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438048051Z", + "timestamp": "2023-12-24T19:23:06.06592027Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550589,7 +553987,7 @@ "2022-09-06T11:40:24Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438061666Z", + "timestamp": "2023-12-24T19:23:06.065933535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550627,64 +554025,61 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "expirationDate", + "type": "http", + "host": "https://conseil-refondation.fr", + "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", + "extracted-results": [ + "2024-09-06T11:40:24Z" + ], + "ip": "45.77.228.254", + "timestamp": "2023-12-24T19:23:06.065949134Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "18 RUE VANEAU", - "PARIS", - "75700", "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438107772Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantCountry", - "type": "http", - "host": "https://conseil-refondation.fr", - "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", - "extracted-results": [ - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438125015Z", + "timestamp": "2023-12-24T19:23:06.065963451Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550727,11 +554122,11 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "dell.ns.cloudflare.com", - "jay.ns.cloudflare.com" + "jay.ns.cloudflare.com", + "dell.ns.cloudflare.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438137438Z", + "timestamp": "2023-12-24T19:23:06.065980462Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550769,15 +554164,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "secureDNS", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "379ccb8c16e9074358b13cd514e3b02b-38069823@contact.gandi.net" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438150953Z", + "timestamp": "2023-12-24T19:23:06.065996832Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550815,15 +554210,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "status", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "+33.142758000" + "active" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:02:42.438164268Z", + "timestamp": "2023-12-24T19:23:06.066013163Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -550863,7 +554258,7 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:03:04.99379742Z", + "timestamp": "2023-12-24T19:23:28.899685034Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -550903,7 +554298,7 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:03:04.993837215Z", + "timestamp": "2023-12-24T19:23:28.899722133Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -550943,7 +554338,7 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:03:04.993848346Z", + "timestamp": "2023-12-24T19:23:28.899733444Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -550983,68 +554378,105 @@ "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:03:04.993857032Z", + "timestamp": "2023-12-24T19:23:28.899743342Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "tls10" + "Cloudflare, Inc." ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.207167157Z", + "timestamp": "2023-12-24T19:26:48.795526717Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "tls11" + "sni.cloudflaressl.com", + "*.conseil-refondation.fr", + "conseil-refondation.fr" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.233994113Z", + "timestamp": "2023-12-24T19:26:48.795642382Z", + "matcher-status": true + }, + { + "template": "ssl/wildcard-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/wildcard-tls", + "template-id": "wildcard-tls", + "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", + "info": { + "name": "Wildcard TLS Certificate", + "author": [ + "lucky0x0d" + ], + "tags": [ + "ssl", + "wildcard", + "tls" + ], + "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "conseil-refondation.fr", + "matched-at": "conseil-refondation.fr:443", + "extracted-results": [ + "CN: sni.cloudflaressl.com", + " SAN: [sni.cloudflaressl.com *.conseil-refondation.fr conseil-refondation.fr]" + ], + "ip": "172.67.130.24", + "timestamp": "2023-12-24T19:26:48.795691312Z", "matcher-status": true }, { @@ -551059,7 +554491,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -551079,37 +554512,43 @@ "tls10" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.241600089Z", + "timestamp": "2023-12-24T19:26:48.997694474Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "tls12" + "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.258882073Z", + "timestamp": "2023-12-24T19:26:49.063181334Z", "matcher-status": true }, { @@ -551124,7 +554563,8 @@ "forgedhallpass" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ @@ -551144,204 +554584,167 @@ "tls11" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.266425114Z", + "timestamp": "2023-12-24T19:26:49.162040277Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "conseil-refondation.fr", - "matched-at": "conseil-refondation.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.281968644Z", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" + "ssl", + "tls", + "misconfig" ], - "tags": [ - "ssl" + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", + "severity": "low", "metadata": { - "max-request": 1 + "max-request": 4 } }, + "matcher-name": "tls-1.1", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "Cloudflare, Inc." + "[tls11 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.375308759Z", + "timestamp": "2023-12-24T19:26:49.22578861Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "sni.cloudflaressl.com", - "*.conseil-refondation.fr", - "conseil-refondation.fr" + "tls10" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.3754479Z", + "timestamp": "2023-12-24T19:26:49.329383419Z", "matcher-status": true }, { - "template": "ssl/wildcard-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/wildcard-tls", - "template-id": "wildcard-tls", - "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Wildcard TLS Certificate", + "name": "TLS Version - Detect", "author": [ - "lucky0x0d" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", - "wildcard", "tls" ], - "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" - ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "CN: sni.cloudflaressl.com", - " SAN: [sni.cloudflaressl.com *.conseil-refondation.fr conseil-refondation.fr]" + "tls11" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.375492493Z", + "timestamp": "2023-12-24T19:26:49.494006943Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" + "tls12" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.380114826Z", + "timestamp": "2023-12-24T19:26:49.659026775Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.1", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "[tls11 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" + "tls13" ], "ip": "172.67.130.24", - "timestamp": "2023-12-17T21:06:29.428778857Z", + "timestamp": "2023-12-24T19:26:49.811460891Z", "matcher-status": true } ], @@ -551349,7 +554752,7 @@ { "requestedUrl": "https://conseil-refondation.fr/", "finalUrl": "https://conseil-refondation.fr/", - "fetchTime": "2023-12-17T20:57:27.467Z", + "fetchTime": "2023-12-24T19:17:50.996Z", "runWarnings": [], "categories": { "performance": { @@ -551412,53 +554815,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4065, + "numericValue": 2622, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1661, - "firstMeaningfulPaint": 1661, - "largestContentfulPaint": 4286, - "interactive": 4065, - "speedIndex": 2763, - "totalBlockingTime": 62, - "maxPotentialFID": 97, - "cumulativeLayoutShift": 0.19458675384521484, - "cumulativeLayoutShiftMainFrame": 0.19458675384521484, - "totalCumulativeLayoutShift": 0.19458675384521484, + "firstContentfulPaint": 1943, + "firstMeaningfulPaint": 1943, + "largestContentfulPaint": 5768, + "interactive": 2622, + "speedIndex": 3279, + "totalBlockingTime": 84, + "maxPotentialFID": 218, + "cumulativeLayoutShift": 0.11229415893554687, + "cumulativeLayoutShiftMainFrame": 0.11229415893554687, + "totalCumulativeLayoutShift": 0.11229415893554687, "observedTimeOrigin": 0, - "observedTimeOriginTs": 245031039, + "observedTimeOriginTs": 258058590, "observedNavigationStart": 0, - "observedNavigationStartTs": 245031039, - "observedFirstPaint": 366, - "observedFirstPaintTs": 245396986, - "observedFirstContentfulPaint": 366, - "observedFirstContentfulPaintTs": 245396986, - "observedFirstContentfulPaintAllFrames": 366, - "observedFirstContentfulPaintAllFramesTs": 245396986, - "observedFirstMeaningfulPaint": 366, - "observedFirstMeaningfulPaintTs": 245396986, - "observedLargestContentfulPaint": 457, - "observedLargestContentfulPaintTs": 245487757, - "observedLargestContentfulPaintAllFrames": 457, - "observedLargestContentfulPaintAllFramesTs": 245487757, - "observedTraceEnd": 3374, - "observedTraceEndTs": 248405334, - "observedLoad": 1065, - "observedLoadTs": 246095695, - "observedDomContentLoaded": 381, - "observedDomContentLoadedTs": 245411653, - "observedCumulativeLayoutShift": 0.19458675384521484, - "observedCumulativeLayoutShiftMainFrame": 0.19458675384521484, - "observedTotalCumulativeLayoutShift": 0.19458675384521484, - "observedFirstVisualChange": 359, - "observedFirstVisualChangeTs": 245390039, - "observedLastVisualChange": 1092, - "observedLastVisualChangeTs": 246123039, - "observedSpeedIndex": 457, - "observedSpeedIndexTs": 245488513 + "observedNavigationStartTs": 258058590, + "observedFirstPaint": 1066, + "observedFirstPaintTs": 259124676, + "observedFirstContentfulPaint": 1066, + "observedFirstContentfulPaintTs": 259124676, + "observedFirstContentfulPaintAllFrames": 1066, + "observedFirstContentfulPaintAllFramesTs": 259124676, + "observedFirstMeaningfulPaint": 1066, + "observedFirstMeaningfulPaintTs": 259124676, + "observedLargestContentfulPaint": 1922, + "observedLargestContentfulPaintTs": 259980419, + "observedLargestContentfulPaintAllFrames": 1922, + "observedLargestContentfulPaintAllFramesTs": 259980419, + "observedTraceEnd": 4202, + "observedTraceEndTs": 262260967, + "observedLoad": 1896, + "observedLoadTs": 259954261, + "observedDomContentLoaded": 1066, + "observedDomContentLoadedTs": 259124542, + "observedCumulativeLayoutShift": 0.11229415893554687, + "observedCumulativeLayoutShiftMainFrame": 0.11229415893554687, + "observedTotalCumulativeLayoutShift": 0.11229415893554687, + "observedFirstVisualChange": 1064, + "observedFirstVisualChangeTs": 259122590, + "observedLastVisualChange": 2280, + "observedLastVisualChangeTs": 260338590, + "observedSpeedIndex": 1218, + "observedSpeedIndexTs": 259276962 }, { "lcpInvalidated": false @@ -551480,19 +554883,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 3, - "numTasks": 919, - "numTasksOver10ms": 7, - "numTasksOver25ms": 3, + "numTasks": 1167, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6829999999999998, - "throughput": 24237270.370945513, - "maxRtt": 81.56299999999999, - "maxServerLatency": 12.142000000000001, - "totalByteWeight": 855612, - "totalTaskTime": 348.88099999999974, - "mainDocumentTransferSize": 7674 + "rtt": 8.814, + "throughput": 12374125.273650771, + "maxRtt": 136.523, + "maxServerLatency": 293.034, + "totalByteWeight": 855629, + "totalTaskTime": 276.1979999999984, + "mainDocumentTransferSize": 7750 } ] } @@ -551605,13 +555008,13 @@ }, { "404": null, - "url": "https://donnees.incubateur.anct.gouv.fr/toolbox", + "url": "https://donnees.incubateur.anct.gouv.fr", "category": "startup", "betaId": "données-et-territoires", "http": { - "url": "https://donnees.incubateur.anct.gouv.fr/toolbox", + "url": "https://donnees.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 00:55:29 GMT", + "end_time": "Sun, 24 Dec 2023 00:50:07 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -551620,18 +555023,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 00:55:27 GMT", - "Etag": "W/\"8235ec663d21527602e36e3f37dc88e187162b6f276f0009c5f8d22654799ad3\"", - "Expires": "Sun, 17 Dec 2023 01:05:27 UTC", - "Last-Modified": "Thu, 14 Dec 2023 17:03:37 GMT", + "Date": "Sun, 24 Dec 2023 00:50:05 GMT", + "Etag": "W/\"7674573191606f53b05ecaa6a47b59e867290da685331b2a3eba5a6cca4a6b70\"", + "Expires": "Sun, 24 Dec 2023 01:00:05 UTC", + "Last-Modified": "Tue, 19 Dec 2023 16:31:33 GMT", "Server": "nginx/1.18.0 (Ubuntu)", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Origin" }, - "scan_id": 45535758, + "scan_id": 45751096, "score": 40, - "start_time": "Sun, 17 Dec 2023 00:51:57 GMT", + "start_time": "Sun, 24 Dec 2023 00:50:02 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -551777,2823 +555180,12 @@ "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": null - }, - "pass": false, - "result": "x-frame-options-not-implemented", - "score_description": "X-Frame-Options (XFO) header not implemented", - "score_modifier": -20 - }, - "x-xss-protection": { - "expectation": "x-xss-protection-1-mode-block", - "name": "x-xss-protection", - "output": { - "data": null - }, - "pass": false, - "result": "x-xss-protection-not-implemented", - "score_description": "X-XSS-Protection header not implemented", - "score_modifier": -10 - } - } - }, - "updownio": null, - "nmap": { - "host": "donnees.incubateur.anct.gouv.fr", - "protocol": "tcp", - "closed_ports": "995", - "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "8.2p1 Ubuntu 4ubuntu0.9", - "vulnerabilities": [ - { - "cvss": "6.8", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2020-15778" - }, - { - "cvss": "6.8", - "type": "githubexploit", - "is_exploit": "true", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" - }, - { - "cvss": "6.8", - "type": "githubexploit", - "is_exploit": "true", - "id": "10213DBE-F683-58BB-B6D3-353173626207" - }, - { - "cvss": "5.0", - "type": "prion", - "is_exploit": "false", - "id": "PRION:CVE-2020-12062" - }, - { - "cvss": "5.0", - "type": "prion", - "is_exploit": "false", - "id": "PRION:CVE-2016-20012" - }, - { - "cvss": "5.0", - "type": "cve", - "is_exploit": "false", - "id": "CVE-2020-12062" - } - ] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "80", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "443", - "version": "1.18.0", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "postgresql", - "product": "PostgreSQL DB", - "id": "5432", - "version": "9.6.0 or later", - "vulnerabilities": [] - } - }, - { - "service": { - "name": "http", - "product": "nginx", - "id": "8000", - "vulnerabilities": [] - } - } - ], - "grade": "D" - }, - "dependabot": null, - "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "LOW", - "cwe": "CWE-310", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" - }, - { - "id": "FS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "supported" - }, - { - "id": "TLS_timestamp", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "0450AA4E51BB2EEEEFD76074CE929CE2EB6D" - }, - { - "id": "cert_serialNumberLen", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "7212653730D5F8E9A09A26F72FCDACA5C6300552" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "EFA1CECDACAC1D364D0B5CE427909ABA37927CF2995C2D5E71D795AD2C83EF6F" - }, - { - "id": "cert", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "donnees.incubateur.anct.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "addokadmin.sit.incubateur.tech" - }, - { - "id": "cert_subjectAltName", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "donnees.incubateur.anct.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "82 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "2023-12-10 20:47" - }, - { - "id": "cert_notAfter", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "2024-03-09 20:47" - }, - { - "id": "cert_extlifeSpan", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "-1 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "1702846911" - }, - { - "id": "HSTS_time", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "nginx/1.18.0 (Ubuntu)" - }, - { - "id": "banner_application", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "Cache-Control", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "max-age=600" - }, - { - "id": "banner_reverseproxy", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable" - }, - { - "id": "secure_renego", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EFA1CECDACAC1D364D0B5CE427909ABA37927CF2995C2D5E71D795AD2C83EF6F" - }, - { - "id": "LOGJAM", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" - }, - { - "id": "winshock", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", - "port": "443", - "severity": "INFO", - "finding": "73" - } - ], - "thirdparties": { - "trackers": [], - "cookies": [ - { - "name": "_pk_ses.73.8572", - "value": "1", - "domain": "donnees.incubateur.anct.gouv.fr", - "path": "/", - "expires": 1702848668, - "size": 16, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - }, - { - "name": "_pk_id.73.8572", - "value": "83386f9f88639eef.1702846868.", - "domain": "donnees.incubateur.anct.gouv.fr", - "path": "/", - "expires": 1736802068, - "size": 42, - "httpOnly": false, - "secure": false, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-encoding": "gzip", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:01:06 GMT", - "server": "nginx/1.18.0 (Ubuntu)", - "transfer-encoding": "chunked", - "vary": "Origin" - }, - "endpoints": [ - { - "hostname": "donnees.incubateur.anct.gouv.fr", - "ip": "51.159.153.132", - "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 48.8323, - "longitude": 2.4075, - "time_zone": "Europe/Paris" - }, - "postal": { - "code": "75001" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://donnees.incubateur.anct.gouv.fr/toolbox": { - "status": 302 - }, - "https://donnees.incubateur.anct.gouv.fr/toolbox/": { - "status": 404 - } - }, - "technologies": [ - { - "slug": "node-js", - "name": "Node.js", - "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", - "confidence": 100, - "version": null, - "icon": "Node.js.svg", - "website": "https://nodejs.org", - "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "ubuntu", - "name": "Ubuntu", - "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", - "confidence": 100, - "version": null, - "icon": "Ubuntu.svg", - "website": "https://www.ubuntu.com/server", - "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 28, - "slug": "operating-systems", - "name": "Operating systems" - } - ] - }, - { - "slug": "react", - "name": "React", - "description": "React is an open-source JavaScript library for building user interfaces or UI components.", - "confidence": 100, - "version": null, - "icon": "React.svg", - "website": "https://reactjs.org", - "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ] - }, - { - "slug": "next-js", - "name": "Next.js", - "description": "Next.js is a React framework for developing single page Javascript applications.", - "confidence": 100, - "version": "14.0.4", - "icon": "Next.js.svg", - "website": "https://nextjs.org", - "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - }, - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - }, - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 57, - "slug": "static-site-generator", - "name": "Static site generator" - } - ] - }, - { - "slug": "nginx", - "name": "Nginx", - "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", - "confidence": 100, - "version": "1.18.0", - "icon": "Nginx.svg", - "website": "https://nginx.org/en", - "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 22, - "slug": "web-servers", - "name": "Web servers" - }, - { - "id": 64, - "slug": "reverse-proxies", - "name": "Reverse proxies" - } - ] - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "priority-hints", - "name": "Priority Hints", - "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", - "confidence": 100, - "version": null, - "icon": "Priority Hints.svg", - "website": "https://wicg.github.io/priority-hints/", - "cpe": null, - "categories": [ - { - "id": 92, - "slug": "performance", - "name": "Performance" - } - ] - }, - { - "slug": "webpack", - "name": "Webpack", - "description": "Webpack is an open-source JavaScript module bundler.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - }, - { - "slug": "module-federation", - "name": "Module Federation", - "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", - "confidence": 50, - "version": null, - "icon": "Webpack.svg", - "website": "https://webpack.js.org/concepts/module-federation/", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ] - } - ] - }, - "zap": { - "@programName": "ZAP", - "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:00:17", - "site": [ - { - "@name": "https://donnees.incubateur.anct.gouv.fr", - "@host": "donnees.incubateur.anct.gouv.fr", - "@port": "443", - "@ssl": "true", - "alerts": [ - { - "name": "Content Security Policy (CSP) Header Not Set", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "Missing Anti-clickjacking Header", - "riskcode": "2", - "confidence": "2", - "riskdesc": "Medium (Medium)", - "desc": "

The response does not include either Content-Security-Policy with 'frame-ancestors' directive or X-Frame-Options to protect against 'ClickJacking' attacks.

" - }, - { - "name": "Permissions Policy Header Not Set", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" - }, - { - "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" - }, - { - "name": "Strict-Transport-Security Header Not Set", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" - }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, - { - "name": "X-Content-Type-Options Header Missing", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

" - }, - { - "name": "Base64 Disclosure", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" - }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, - { - "name": "Modern Web Application", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" - }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, - { - "name": "Re-examine Cache-control Directives", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" - }, - { - "name": "Sec-Fetch-Dest Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" - }, - { - "name": "Sec-Fetch-Mode Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" - }, - { - "name": "Sec-Fetch-Site Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" - }, - { - "name": "Sec-Fetch-User Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - } - ] - } - ] - }, - "nuclei": [ - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "donnees.incubateur.anct.gouv.fr.", - "matched-at": "donnees.incubateur.anct.gouv.fr", - "extracted-results": [ - "0 blackhole.scw-tem.cloud." - ], - "timestamp": "2023-12-17T21:03:09.638609988Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "donnees.incubateur.anct.gouv.fr.", - "matched-at": "donnees.incubateur.anct.gouv.fr", - "timestamp": "2023-12-17T21:03:10.282010585Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "donnees.incubateur.anct.gouv.fr.", - "matched-at": "donnees.incubateur.anct.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.scw-tem.cloud -all\"" - ], - "timestamp": "2023-12-17T21:03:10.712071794Z", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "nginx", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:46.66996544Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "nginx", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:46.710661379Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.72600216Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.72605061Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726067853Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726080947Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726097138Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726111765Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726129168Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726145578Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726168251Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726187908Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:03:53.726206783Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "ats", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:15.314406117Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox/'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "nginxgeneric", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr/toolbox", - "matched-at": "https://donnees.incubateur.anct.gouv.fr/toolbox/", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:15.314454166Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/toolbox/'", - "matcher-status": true - }, - { - "template": "network/detection/pgsql-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/pgsql-detect", - "template-id": "pgsql-detect", - "template-path": "/home/runner/nuclei-templates/network/detection/pgsql-detect.yaml", - "info": { - "name": "PostgreSQL Authentication - Detect", - "author": [ - "nybble04" - ], - "tags": [ - "network", - "postgresql", - "db", - "detect" - ], - "description": "PostgreSQL authentication error messages which could reveal information useful in formulating further attacks were detected.\n", - "reference": [ - "https://www.postgresql.org/docs/current/errcodes-appendix.html", - "https://www.postgresql.org/docs/current/client-authentication-problems.html" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "shodan-query": "port:5432 product:\"PostgreSQL\"", - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "tcp", - "host": "donnees.incubateur.anct.gouv.fr:5432", - "matched-at": "donnees.incubateur.anct.gouv.fr:5432", - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:34.223662355Z", - "matcher-status": true - }, - { - "template": "network/detection/openssh-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/openssh-detect", - "template-id": "openssh-detect", - "template-path": "/home/runner/nuclei-templates/network/detection/openssh-detect.yaml", - "info": { - "name": "OpenSSH Service - Detect", - "author": [ - "r3dg33k", - "daffainfo", - "iamthefrogy" - ], - "tags": [ - "seclists", - "network", - "ssh", - "openssh", - "detect" - ], - "description": "OpenSSH service was detected.\n", - "reference": [ - "http://www.openwall.com/lists/oss-security/2016/08/01/2", - "http://www.openwall.com/lists/oss-security/2018/08/15/5", - "http://seclists.org/fulldisclosure/2016/jul/51", - "https://nvd.nist.gov/vuln/detail/cve-2016-6210", - "https://nvd.nist.gov/vuln/detail/cve-2018-15473" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "tcp", - "host": "donnees.incubateur.anct.gouv.fr:22", - "matched-at": "donnees.incubateur.anct.gouv.fr:22", - "extracted-results": [ - "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.9" - ], - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:34.233734211Z", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "donnees.incubateur.anct.gouv.fr", - "matched-at": "donnees.incubateur.anct.gouv.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:36.355490907Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "donnees.incubateur.anct.gouv.fr", - "matched-at": "donnees.incubateur.anct.gouv.fr:443", - "extracted-results": [ - "donnees.incubateur.anct.gouv.fr" - ], - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:36.355604981Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "donnees.incubateur.anct.gouv.fr", - "matched-at": "donnees.incubateur.anct.gouv.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:38.575450651Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "donnees.incubateur.anct.gouv.fr", - "matched-at": "donnees.incubateur.anct.gouv.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "51.159.153.132", - "timestamp": "2023-12-17T21:04:39.76602494Z", - "matcher-status": true - } - ], - "lhr": null, - "screenshot": true, - "stats": { - "grade": "F", - "url": "null", - "uri": "" - }, - "github_repository": { - "grade": "A", - "url": "https://datahub.incubateur.tech", - "uri": "infrastructure" - }, - "budget_page": { - "grade": "F", - "url": "null", - "uri": "" - }, - "declaration-a11y": { - "mention": "Accessibilité : non conforme", - "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/accessibilite" - }, - "declaration-rgpd": [ - { - "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - }, - { - "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] - } - ], - "betagouv": { - "id": "données-et-territoires", - "type": "startup", - "attributes": { - "name": "Données et territoires", - "pitch": "Outiller et accompagner les agents publics dans leurs usages de la donnée", - "link": "https://donnees.incubateur.anct.gouv.fr", - "repository": "https://datahub.incubateur.tech/infrastructure/", - "contact": "donnees@anct.gouv.fr", - "content_url_encoded_markdown": "%23%23%20C%E2%80%99est%20quoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AUne%20%2A%2Amission%20de%20l%E2%80%99incubateur%20des%20territoires%20de%20l%E2%80%99ANCT%2A%2A%20%C3%A0%20destination%20des%20agents%2C%20des%20services%20et%20des%20collectivit%C3%A9s%20territoriales.%0A%0AL%27%C3%A9quipe%20de%20Donn%C3%A9es%20et%20Territoires%20con%C3%A7oit%2C%20d%C3%A9veloppe%2C%20maintient%20et%20contribue%20%C3%A0%20des%20outils%2C%20communs%20num%C3%A9riques%20dont%20l%E2%80%99objectif%20est%20de%20faciliter%20le%20quotidien%20des%20agents%20et%20de%20fluidifier%20la%20circulation%20de%20la%20donn%C3%A9e%20entre%20collectivit%C3%A9s%20et%20l%27%C3%89tat.%0A%0ASon%20%2A%2Aguichet%20Donn%C3%A9es%2A%2A%20accompagne%20les%20agents%20publics%20dans%20leurs%20besoins%20en%20manipulations%20de%20donn%C3%A9es.%20%0A%0A%5BContacter%20l%E2%80%99%C3%A9quipe%20par%20email%5D%28mailto%3Adonnees%40anct.gouv.fr%29.%0A%0A%23%23%20Pourquoi%20Donn%C3%A9es%20et%20Territoires%20%3F%0A%0AL%E2%80%99ANCT%2C%20missionn%C3%A9e%20par%20le%20rapport%20Bothorel%20pour%20%C2%AB%20accompagner%20les%20collectivit%C3%A9s%20territoriales%20dans%20la%20publication%20des%20donn%C3%A9es%20%C2%BB%2C%20au%20cours%20de%20ses%20diff%C3%A9rentes%20investigations%2C%20a%20rencontr%C3%A9%20de%20nombreuses%20probl%C3%A9matiques%20li%C3%A9es%20%C3%A0%20l%E2%80%99utilisation%20des%20donn%C3%A9es%20%3A%0A%0AIl%20y%20a%20une%20forte%20attente%20vis-%C3%A0-vis%20des%20collectivit%C3%A9s%20territoriales%20pour%20ouvrir%20et%20partager%20les%20donn%C3%A9es%20li%C3%A9es%20%C3%A0%20leurs%20activit%C3%A9s%2C%20mais%20souvent%20un%20manque%20de%20moyen%20humain%20et%20technique%20pour%20y%20r%C3%A9pondre%20au%20sein%20des%20collectivit%C3%A9s%0A%0ADe%20m%C3%AAme%2C%20les%20collectivit%C3%A9s%20territoriales%20elles-m%C3%AAmes%20sont%20demandeuses%20d%E2%80%99utilisation%20des%20donn%C3%A9es%20pour%20mieux%20r%C3%A9pondre%20%C3%A0%20leurs%20missions%2C%20sans%20avoir%20l%C3%A0%20non%20plus%20toujours%20les%20moyens%20humains%20et%20techniques%20pour%20le%20faire%0A%0ALa%20manipulation%20de%20donn%C3%A9es%20se%20fait%20souvent%20aujourd%E2%80%99hui%20de%20fa%C3%A7on%20isol%C3%A9e%20%28fichiers%20Excel%20sur%20le%20poste%20d%E2%80%99un%20agent%29%2C%20ayant%20pour%20cons%C3%A9quence%20une%20grande%20perte%20de%20temps%20dans%20le%20traitement%20de%20ces%20donn%C3%A9es%20%3A%20fichiers%20non%20normalis%C3%A9s%20donc%20beaucoup%20d%E2%80%99erreurs%2C%20difficile%20%C3%A0%20partager%2C%20%C3%A0%20corriger%2C%20%C3%A0%20tenir%20%C3%A0%20jour%2C%20etc.%0A%0ATr%C3%A8s%20souvent%2C%20les%20agents%20doivent%20saisir%20de%20la%20donn%C3%A9e%20pour%20un%20autre%20usage%20que%20le%20leur%2C%20ce%20qui%20est%20une%20perte%20de%20temps%20et%20un%20motif%20de%20frustration%2C%20par%20ailleurs%20la%20donn%C3%A9e%20qu%E2%80%99on%20saisit%20sans%20en%20comprendre%20la%20finalit%C3%A9%20est%20souvent%20mal%20saisie%0A%0ADonn%C3%A9es%20et%20Territoires%20intervient%20dans%20le%20but%20d%27aider%20%C3%A0%20faciliter%20la%20remont%C3%A9e%20d%27information%20et%20%C3%A0%20rendre%20les%20donn%C3%A9es%20publiques.%20Cela%20permet%20de%20soulager%20les%20personnes%20devant%20saisir%20ou%20collecter%20les%20informations%2C%20leur%20laissant%20la%20possibilit%C3%A9%20de%20se%20concentrer%20sur%20des%20questions%20au%20c%C5%93ur%20de%20leur%20m%C3%A9tier%2C%20et%20%C3%A0%20n%27importe%20qui%20d%27obtenir%20rapidement%20les%20donn%C3%A9es%20publiques%20les%20plus%20fra%C3%AEches.%0A%0A%3Cimg%20width%3D%22700%22%20alt%3D%22Image%20d%27illustration%20de%20l%27apport%20de%20Donn%C3%A9es%20et%20Territoires%20pr%C3%A9sentant%202%20organisations.%20Dans%20l%27organisation%20de%20gauche%20l%27illustration%2C%20une%20demande%20de%20chiffres%20descend%20du%20cabinet%20jusqu%27aux%20agents%20de%20terrain%2C%20avec%20plusieurs%20personnes%20m%C3%A9contentes%20%C3%A0%20cause%20de%20la%20latence%20ou%20des%20courtes%20%C3%A9ch%C3%A9ances%20et%20de%20la%20n%C3%A9cessit%C3%A9%20d%27aggr%C3%A9ger%20des%20donn%C3%A9es%20%28un%20travail%20fastidieux%29.%20Dans%20l%27organisation%20de%20droite%2C%20une%20personne%20tout%20en%20bas%20est%20%C3%A0%20l%27aise%20pour%20produire%20des%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20engineers%2C%20eux%20aussi%20%C3%A0%20l%27aise%20pour%20les%20injecter%20dans%20diff%C3%A9rentes%20plateformes%20%28ex.%20sur%20data.gouv.fr%29%2C%20et%20%C3%A0%20leur%20tour%20remontent%20les%20donn%C3%A9es%20aupr%C3%A8s%20de%20data%20analystes%2C%20eux%20aussi%20%C3%A0%20l%27aise%2C%20qui%20aggr%C3%A8gent%20et%20publient%20des%20catalogues%20d%27indicateurs%20%C3%A0%20destination%20de%20diff%C3%A9rents%20publics%20%28cabinets%2C%20pr%C3%A9fets%2C%20journalistes%2C%20citoyens%2C%20directeur%20de%20programmes%2C%20...%29%20et%20%C3%A0%20travers%20diff%C3%A9rents%20supports%20%28API%2C%20tableaux%20de%20bord%2C%20fiches%20de%20synth%C3%A8ses%2C%20visualisation%2C%20...%29%22%20src%3D%22https%3A%2F%2Fgithub.com%2Fbetagouv%2Fbeta.gouv.fr%2Fassets%2F371705%2Fccb0a93f-7dc1-4b03-a678-007c8edd6272%22%3E%0A%0A%23%23%20Quels%20sont%20les%20outils%20mis%20%C3%A0%20disposition%20par%20Donn%C3%A9es%20et%20Territoires%C2%A0%3F%0A%0ACes%20outils%20sont%20assez%20nombreux%20mais%20nous%20en%20d%C3%A9gageons%203%20principaux%C2%A0%3A%0A-%20%5B%2A%2AGrist%2A%2A%5D%28https%3A%2F%2Fgetgrist.com%29%20%3A%20il%20s%27agit%20non%20seulement%20d%27un%20puissant%20tableur%20collaboratif%20en%20ligne%20et%20open-source%2C%20mais%20%C3%A9galement%20d%27un%20outil%20de%20%5Bno-code%5D%28https%3A%2F%2Ffr.wikipedia.org%2Fwiki%2FD%25C3%25A9veloppement_No_code%29%20mettant%20%C3%A0%20disposition%20une%20palette%20de%20widgets%20%28calendrier%2C%20carte%20avec%20emplacements%2C%20wiki%2C%20...%29%20simples%20%C3%A0%20mettre%20en%20place.%20L%27incubateur%20propose%202%20instances%20auto-heberg%C3%A9es%20en%20France%20de%20ce%20service%2C%20%C3%A0%20destination%20des%20agents%20publics%20%3B%0A%20-%20%2A%2AinSITu%2A%2A%20%3A%20il%20s%27agit%20d%27un%20ETL%20r%C3%A9cup%C3%A9rant%20les%20donn%C3%A9es%20de%20diff%C3%A9rentes%20sources%20pour%20les%20normaliser%20et%20les%20agr%C3%A9ger%20dans%20sa%20base%20de%20donn%C3%A9es%C2%A0%3B%0A%20-%20%5B%2A%2ALe%20catalogue%20d%27indicateurs%2A%2A%5D%28https%3A%2F%2Fcatalogue-indicateurs.donnees.incubateur.anct.gouv.fr%2F%29%C2%A0%3A%20qui%20vous%20permet%20en%20quelques%20clics%20d%27afficher%20les%20indicateurs%20pour%20tous%20les%20programmes%20de%20l%27ANCT%2C%20et%20ce%20que%20vous%20soyez%20agent%20de%20la%20fonction%20publique%20ou%20non%C2%A0%3B%0A", - "events": [], - "phases": [ - { - "name": "investigation", - "start": "2021-07-01", - "end": "2022-01-01" - }, - { - "name": "construction", - "start": "2022-01-01", - "end": "" - } - ] - }, - "relationships": { - "incubator": { - "data": { - "type": "incubator", - "id": "anct" - } - } - } - }, - "ecoindex": null, - "sonarcloud": null, - "summary": { - "httpGrade": "D+", - "nmapGrade": "D", - "nmapOpenPortsCount": 5, - "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-03-09T20:47:00.000Z", - "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, - "trackersGrade": "A", - "trackersCount": 0, - "statsGrade": "F", - "githubRepositoryGrade": "A", - "budgetPageGrade": "F", - "declaration-a11y": "C", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F" - } - }, - { - "404": null, - "url": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "category": "startup", - "betaId": "données-et-territoires", - "http": { - "url": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 21:05:24 GMT", - "grade": "C+", - "hidden": false, - "likelihood_indicator": "MEDIUM", - "response_headers": { - "content-length": "5972", - "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:05:22 GMT", - "etag": "02aa4afcf6d91071e0e0b65ac1e60779", - "last-modified": "Tue, 13 Dec 2022 09:52:21 GMT", - "referrer-policy": "no-referrer", - "server": "uvicorn", - "strict-transport-security": "max-age=31536000", - "x-frame-options": "SAMEORIGIN" - }, - "scan_id": 45563489, - "score": 60, - "start_time": "Sun, 17 Dec 2023 21:05:20 GMT", - "state": "FINISHED", - "status_code": 200, - "tests_failed": 3, - "tests_passed": 9, - "tests_quantity": 12, - "details": { - "content-security-policy": { - "expectation": "csp-implemented-with-no-unsafe", - "name": "content-security-policy", - "output": { - "data": null, - "http": false, - "meta": false, - "numPolicies": 0, - "policy": null - }, - "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 - }, - "contribute": { - "expectation": "contribute-json-only-required-on-mozilla-properties", - "name": "contribute", - "output": { - "data": null - }, - "pass": true, - "result": "contribute-json-only-required-on-mozilla-properties", - "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", - "score_modifier": 0 - }, - "cookies": { - "expectation": "cookies-secure-with-httponly-sessions", - "name": "cookies", - "output": { - "data": null, - "sameSite": null - }, - "pass": true, - "result": "cookies-not-found", - "score_description": "No cookies detected", - "score_modifier": 0 - }, - "cross-origin-resource-sharing": { - "expectation": "cross-origin-resource-sharing-not-implemented", - "name": "cross-origin-resource-sharing", - "output": { - "data": { - "acao": "*", - "clientaccesspolicy": null, - "crossdomain": null - } - }, - "pass": true, - "result": "cross-origin-resource-sharing-implemented-with-public-access", - "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", - "score_modifier": 0 - }, - "public-key-pinning": { - "expectation": "hpkp-not-implemented", - "name": "public-key-pinning", - "output": { - "data": null, - "includeSubDomains": false, - "max-age": null, - "numPins": null, - "preloaded": false - }, - "pass": true, - "result": "hpkp-not-implemented", - "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", - "score_modifier": 0 - }, - "redirection": { - "expectation": "redirection-to-https", - "name": "redirection", - "output": { - "destination": "https://zonages.donnees.incubateur.anct.gouv.fr:443/", - "redirects": true, - "route": [ - "http://zonages.donnees.incubateur.anct.gouv.fr/", - "https://zonages.donnees.incubateur.anct.gouv.fr:443/" - ], - "status_code": 200 - }, - "pass": true, - "result": "redirection-to-https", - "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", - "score_modifier": 0 - }, - "referrer-policy": { - "expectation": "referrer-policy-private", - "name": "referrer-policy", - "output": { - "data": "no-referrer", - "http": true, - "meta": false - }, - "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 - }, - "strict-transport-security": { - "expectation": "hsts-implemented-max-age-at-least-six-months", - "name": "strict-transport-security", - "output": { - "data": "max-age=31536000", - "includeSubDomains": false, - "max-age": 31536000, - "preload": false, - "preloaded": false - }, - "pass": true, - "result": "hsts-implemented-max-age-at-least-six-months", - "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", - "score_modifier": 0 - }, - "subresource-integrity": { - "expectation": "sri-implemented-and-external-scripts-loaded-securely", - "name": "subresource-integrity", - "output": { - "data": {} - }, - "pass": true, - "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", - "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", - "score_modifier": 0 - }, - "x-content-type-options": { - "expectation": "x-content-type-options-nosniff", - "name": "x-content-type-options", - "output": { - "data": null - }, - "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", - "score_modifier": -5 - }, - "x-frame-options": { - "expectation": "x-frame-options-sameorigin-or-deny", - "name": "x-frame-options", - "output": { - "data": "SAMEORIGIN" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-1-mode-block", @@ -554610,104 +555202,163 @@ }, "updownio": null, "nmap": { - "host": "zonages.donnees.incubateur.anct.gouv.fr", + "host": "donnees.incubateur.anct.gouv.fr", "protocol": "tcp", - "closed_ports": "998", + "closed_ports": "995", "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.2p1 Ubuntu 4ubuntu0.10", + "vulnerabilities": [ + { + "id": "CVE-2020-15778", + "cvss": "6.8", + "type": "cve", + "is_exploit": "false" + }, + { + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "cvss": "6.8", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "cvss": "6.8", + "type": "githubexploit", + "is_exploit": "true" + }, + { + "id": "PRION:CVE-2020-12062", + "cvss": "5.0", + "type": "prion", + "is_exploit": "false" + }, + { + "id": "PRION:CVE-2016-20012", + "cvss": "5.0", + "type": "prion", + "is_exploit": "false" + }, + { + "id": "CVE-2020-12062", + "cvss": "5.0", + "type": "cve", + "is_exploit": "false" + } + ] + } + }, { "service": { "name": "http", + "product": "nginx", "id": "80", + "version": "1.18.0", "vulnerabilities": [] } }, { "service": { - "name": "https", - "product": "uvicorn", + "name": "http", + "product": "nginx", "id": "443", + "version": "1.18.0", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "postgresql", + "product": "PostgreSQL DB", + "id": "5432", + "version": "9.6.0 or later", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "http", + "product": "nginx", + "id": "8000", "vulnerabilities": [] } } ], - "grade": "A" + "grade": "D" }, "dependabot": null, "codescan": null, "testssl": [ { "id": "service", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered with final" }, - { - "id": "ALPN_HTTP2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", - "port": "443", - "severity": "OK", - "finding": "h2" - }, { "id": "ALPN", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -554715,7 +555366,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -554723,7 +555374,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -554731,7 +555382,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -554739,7 +555390,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -554747,7 +555398,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -554755,504 +555406,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" + "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "04B54F91460A80BF0F0C9B87A4EA0A3536DD" + "finding": "0450AA4E51BB2EEEEFD76074CE929CE2EB6D" }, { "id": "cert_serialNumberLen", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "99E7184B6247AA26DBDFF92ADCD1F81BE1220D1F" + "finding": "7212653730D5F8E9A09A26F72FCDACA5C6300552" }, { "id": "cert_fingerprintSHA256", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "B3B3E85082B86941277A6FD2A718F52513CF35C99E2844C26F2BE45D6E9FA025" + "finding": "EFA1CECDACAC1D364D0B5CE427909ABA37927CF2995C2D5E71D795AD2C83EF6F" }, { "id": "cert", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "zonages.donnees.incubateur.anct.gouv.fr" + "finding": "donnees.incubateur.anct.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "haproxy.gateway" + "finding": "addokadmin.sit.incubateur.tech" }, { "id": "cert_subjectAltName", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "zonages.donnees.incubateur.anct.gouv.fr" + "finding": "donnees.incubateur.anct.gouv.fr" }, { "id": "cert_trust", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "2023-12-05 03:32" + "finding": "2023-12-10 20:47" }, { "id": "cert_notAfter", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "2024-03-04 03:32" + "finding": "2024-03-09 20:47" }, { "id": "cert_extlifeSpan", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "1702847240" + "finding": "1703446033" }, { "id": "HSTS_time", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" + "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "uvicorn" + "finding": "nginx/1.18.0 (Ubuntu)" }, { "id": "banner_application", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { - "id": "X-Frame-Options", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "Referrer-Policy", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "id": "Cache-Control", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "no-referrer" + "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -555260,7 +555904,7 @@ }, { "id": "heartbleed", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -555269,7 +555913,7 @@ }, { "id": "CCS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -555278,7 +555922,7 @@ }, { "id": "ticketbleed", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -555287,7 +555931,7 @@ }, { "id": "ROBOT", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -555296,7 +555940,7 @@ }, { "id": "secure_renego", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -555304,7 +555948,7 @@ }, { "id": "secure_client_renego", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -555313,7 +555957,7 @@ }, { "id": "CRIME_TLS", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -555322,16 +555966,16 @@ }, { "id": "BREACH", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -555340,14 +555984,14 @@ }, { "id": "fallback_SCSV", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -555356,7 +556000,7 @@ }, { "id": "FREAK", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -555365,7 +556009,7 @@ }, { "id": "DROWN", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -555374,34 +556018,34 @@ }, { "id": "DROWN_hint", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B3B3E85082B86941277A6FD2A718F52513CF35C99E2844C26F2BE45D6E9FA025" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=EFA1CECDACAC1D364D0B5CE427909ABA37927CF2995C2D5E71D795AD2C83EF6F" }, { - "id": "LOGJAM-common_primes", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "id": "LOGJAM", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", - "severity": "INFO", + "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "RFC7919/ffdhe2048" + "finding": "not vulnerable, no DH EXPORT ciphers," }, { - "id": "LOGJAM", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "id": "LOGJAM-common_primes", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," + "finding": "no DH key with <= TLS 1.2" }, { "id": "BEAST", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -555410,7 +556054,7 @@ }, { "id": "LUCKY13", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -555419,7 +556063,7 @@ }, { "id": "winshock", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -555428,7 +556072,7 @@ }, { "id": "RC4", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -555437,410 +556081,337 @@ }, { "id": "clientsimulation-android_60", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "zonages.donnees.incubateur.anct.gouv.fr/51.159.10.161", + "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "138" + "finding": "139" } ], "thirdparties": { - "trackers": [ - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/dsfr.min.css", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/utility/utility.min.css", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/icons/system/external-link-line.svg", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Bold.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Regular.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Regular_Italic.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Bold.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Regular.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/@gouvfr/dsfr@1.5.1/dist/fonts/Marianne-Regular_Italic.woff2", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - } - ], + "trackers": [], "cookies": [ { - "name": "_pk_ses.266.bb96", + "name": "_pk_ses.73.8572", "value": "1", - "domain": "zonages.donnees.incubateur.anct.gouv.fr", + "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1702848956, - "size": 17, + "expires": 1703447752, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -555850,12 +556421,12 @@ "sourcePort": 443 }, { - "name": "_pk_id.266.bb96", - "value": "74ef8703ba7c4865.1702847157.", - "domain": "zonages.donnees.incubateur.anct.gouv.fr", + "name": "_pk_id.73.8572", + "value": "3f75e5919d4e644c.1703445952.", + "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1736802357, - "size": 43, + "expires": 1737401152, + "size": 42, "httpOnly": false, "secure": false, "session": false, @@ -555866,20 +556437,23 @@ } ], "headers": { - "content-length": "5972", + "cache-control": "max-age=600", + "connection": "keep-alive", + "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:05:54 GMT", - "etag": "02aa4afcf6d91071e0e0b65ac1e60779", - "last-modified": "Tue, 13 Dec 2022 09:52:21 GMT", - "referrer-policy": "no-referrer", - "server": "uvicorn", - "strict-transport-security": "max-age=31536000", - "x-frame-options": "SAMEORIGIN" + "date": "Sun, 24 Dec 2023 19:25:49 GMT", + "etag": "W/\"7674573191606f53b05ecaa6a47b59e867290da685331b2a3eba5a6cca4a6b70\"", + "expires": "Sun, 24 Dec 2023 19:35:49 UTC", + "last-modified": "Tue, 19 Dec 2023 16:31:33 GMT", + "server": "nginx/1.18.0 (Ubuntu)", + "strict-transport-security": "max-age=63072000", + "transfer-encoding": "chunked", + "vary": "Origin" }, "endpoints": [ { - "hostname": "zonages.donnees.incubateur.anct.gouv.fr", - "ip": "51.159.10.161", + "hostname": "donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", "geoip": { "city": { "geoname_id": 2988507, @@ -555924,7 +556498,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 1000, "latitude": 48.8323, "longitude": 2.4075, "time_zone": "Europe/Paris" @@ -555971,115 +556545,25 @@ } ] } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "146.75.93.229", - "geoip": { - "city": { - "geoname_id": 5368361, - "names": { - "de": "Los Angeles", - "en": "Los Angeles", - "es": "Los Ángeles", - "fr": "Los Angeles", - "ja": "ロサンゼルス", - "pt-BR": "Los Angeles", - "ru": "Лос-Анджелес", - "zh-CN": "洛杉矶" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 34.0544, - "longitude": -118.244, - "metro_code": 803, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "90012" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } } ] }, "wappalyzer": { "urls": { - "https://zonages.donnees.incubateur.anct.gouv.fr/ui/": { - "status": 301 - }, - "https://zonages.donnees.incubateur.anct.gouv.fr/": { + "https://donnees.incubateur.anct.gouv.fr/": { "status": 200 } }, "technologies": [ { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", "confidence": 100, "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", "categories": [ { "id": 27, @@ -556089,19 +556573,92 @@ ] }, { - "slug": "uvicorn", - "name": "Uvicorn", - "description": null, + "slug": "ubuntu", + "name": "Ubuntu", + "description": "Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.", "confidence": 100, "version": null, - "icon": "uvicorn.png", - "website": "https://www.uvicorn.org/", - "cpe": null, + "icon": "Ubuntu.svg", + "website": "https://www.ubuntu.com/server", + "cpe": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 28, + "slug": "operating-systems", + "name": "Operating systems" + } + ], + "rootPath": true + }, + { + "slug": "react", + "name": "React", + "description": "React is an open-source JavaScript library for building user interfaces or UI components.", + "confidence": 100, + "version": null, + "icon": "React.svg", + "website": "https://reactjs.org", + "cpe": "cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "next-js", + "name": "Next.js", + "description": "Next.js is a React framework for developing single page Javascript applications.", + "confidence": 100, + "version": "14.0.4", + "icon": "Next.js.svg", + "website": "https://nextjs.org", + "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "nginx", + "name": "Nginx", + "description": "Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.", + "confidence": 100, + "version": "1.18.0", + "icon": "Nginx.svg", + "website": "https://nginx.org/en", + "cpe": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*", "categories": [ { "id": 22, "slug": "web-servers", "name": "Web servers" + }, + { + "id": 64, + "slug": "reverse-proxies", + "name": "Reverse proxies" } ], "rootPath": true @@ -556125,19 +556682,19 @@ "rootPath": true }, { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "slug": "priority-hints", + "name": "Priority Hints", + "description": "Priority Hints exposes a mechanism for developers to signal a relative priority for browsers to consider when fetching resources.", "confidence": 100, "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", + "icon": "Priority Hints.svg", + "website": "https://wicg.github.io/priority-hints/", "cpe": null, "categories": [ { - "id": 31, - "slug": "cdn", - "name": "CDN" + "id": 92, + "slug": "performance", + "name": "Performance" } ], "rootPath": true @@ -556159,27 +556716,54 @@ } ], "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:04:49", + "@generated": "Sun, 24 Dec 2023 19:25:08", "site": [ { - "@name": "https://zonages.donnees.incubateur.anct.gouv.fr", - "@host": "zonages.donnees.incubateur.anct.gouv.fr", + "@name": "https://donnees.incubateur.anct.gouv.fr", + "@host": "donnees.incubateur.anct.gouv.fr", "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "Absence of Anti-CSRF Tokens", - "riskcode": "2", - "confidence": "1", - "riskdesc": "Medium (Low)", - "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" - }, { "name": "Content Security Policy (CSP) Header Not Set", "riskcode": "2", @@ -556188,18 +556772,11 @@ "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { - "name": "Sub Resource Integrity Attribute Missing", + "name": "Missing Anti-clickjacking Header", "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" - }, - { - "name": "Cross-Domain JavaScript Source File Inclusion", - "riskcode": "1", "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The page includes one or more script files from a third-party domain.

" + "riskdesc": "Medium (Medium)", + "desc": "

The response does not include either Content-Security-Policy with 'frame-ancestors' directive or X-Frame-Options to protect against 'ClickJacking' attacks.

" }, { "name": "Permissions Policy Header Not Set", @@ -556208,6 +556785,27 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" + }, + { + "name": "Strict-Transport-Security Header Not Set", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, { "name": "X-Content-Type-Options Header Missing", "riskcode": "1", @@ -556215,6 +556813,20 @@ "riskdesc": "Low (Medium)", "desc": "

The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

" }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, { "name": "Modern Web Application", "riskcode": "0", @@ -556269,6 +556881,45 @@ ] }, "nuclei": [ + { + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "info": { + "name": "MX Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "donnees.incubateur.anct.gouv.fr.", + "matched-at": "donnees.incubateur.anct.gouv.fr", + "extracted-results": [ + "0 blackhole.scw-tem.cloud." + ], + "timestamp": "2023-12-24T19:29:06.987196396Z", + "matcher-status": true + }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -556299,71 +556950,79 @@ } }, "type": "dns", - "host": "zonages.donnees.incubateur.anct.gouv.fr.", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr", - "timestamp": "2023-12-17T21:09:29.536804836Z", + "host": "donnees.incubateur.anct.gouv.fr.", + "matched-at": "donnees.incubateur.anct.gouv.fr", + "timestamp": "2023-12-24T19:29:07.294907215Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "DNS TXT Record Detected", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "txt" ], - "description": "A CNAME DNS record was discovered", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", - "host": "zonages.donnees.incubateur.anct.gouv.fr.", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr", + "host": "donnees.incubateur.anct.gouv.fr.", + "matched-at": "donnees.incubateur.anct.gouv.fr", "extracted-results": [ - "lb-kubernetes-prod.incubateur.anct.gouv.fr." + "\"v=spf1 include:_spf.scw-tem.cloud -all\"" ], - "timestamp": "2023-12-17T21:09:31.749730239Z", + "timestamp": "2023-12-24T19:29:07.994995138Z", "matcher-status": true }, { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "template": "http/technologies/nginx/nginx-version.yaml", + "template-url": "https://templates.nuclei.sh/public/nginx-version", + "template-id": "nginx-version", + "template-path": "/home/runner/nuclei-templates/http/technologies/nginx/nginx-version.yaml", "info": { - "name": "Wappalyzer Technology Detection", + "name": "Nginx version detect", "author": [ - "hakluke" + "philippedelteil", + "daffainfo" ], "tags": [ - "tech" + "tech", + "nginx" ], + "description": "Some nginx servers have the version on the response header. Useful when you need to find specific CVEs on your targets.", "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "jsdelivr", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:24.696107373Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "extracted-results": [ + "nginx/1.18.0" + ], + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:29:27.353872386Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556384,40 +557043,50 @@ "max-request": 1 } }, - "matcher-name": "uvicorn", + "matcher-name": "nginx", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:24.696156865Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:07.7051948Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Wappalyzer Technology Detection", + "name": "HTTP Missing Security Headers", "author": [ - "hakluke" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "tech" + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "uvicorn", + "matcher-name": "permissions-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:24.734468364Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.434890524Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556448,13 +557117,13 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-frame-options", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403481281Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.434947752Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556487,11 +557156,11 @@ }, "matcher-name": "cross-origin-embedder-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403546683Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.434968851Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556524,11 +557193,11 @@ }, "matcher-name": "cross-origin-opener-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403565227Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.434988318Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556559,13 +557228,13 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403740624Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.435009467Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556596,13 +557265,13 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403768065Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.43502717Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556633,13 +557302,13 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403791299Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.435042489Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556670,13 +557339,50 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403808341Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.435058008Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.435072936Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, { @@ -556707,13 +557413,185 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", - "host": "https://zonages.donnees.incubateur.anct.gouv.fr/ui/", - "matched-at": "https://zonages.donnees.incubateur.anct.gouv.fr/", - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:10:40.403825001Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zonages.donnees.incubateur.anct.gouv.fr/ui/'", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:20.435087814Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "ats", + "type": "http", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr/", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:59.440525377Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "nginxgeneric", + "type": "http", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr/", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:30:59.440578236Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/'", + "matcher-status": true + }, + { + "template": "network/detection/openssh-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/openssh-detect", + "template-id": "openssh-detect", + "template-path": "/home/runner/nuclei-templates/network/detection/openssh-detect.yaml", + "info": { + "name": "OpenSSH Service - Detect", + "author": [ + "r3dg33k", + "daffainfo", + "iamthefrogy" + ], + "tags": [ + "seclists", + "network", + "ssh", + "openssh", + "detect" + ], + "description": "OpenSSH service was detected.\n", + "reference": [ + "http://www.openwall.com/lists/oss-security/2016/08/01/2", + "http://www.openwall.com/lists/oss-security/2018/08/15/5", + "http://seclists.org/fulldisclosure/2016/jul/51", + "https://nvd.nist.gov/vuln/detail/cve-2016-6210", + "https://nvd.nist.gov/vuln/detail/cve-2018-15473" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "tcp", + "host": "donnees.incubateur.anct.gouv.fr:22", + "matched-at": "donnees.incubateur.anct.gouv.fr:22", + "extracted-results": [ + "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.10" + ], + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:32.027171093Z", + "matcher-status": true + }, + { + "template": "network/detection/pgsql-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/pgsql-detect", + "template-id": "pgsql-detect", + "template-path": "/home/runner/nuclei-templates/network/detection/pgsql-detect.yaml", + "info": { + "name": "PostgreSQL Authentication - Detect", + "author": [ + "nybble04", + "geeknik" + ], + "tags": [ + "network", + "postgresql", + "db", + "detect" + ], + "description": "PostgreSQL authentication error messages which could reveal information useful in formulating further attacks were detected.\n", + "reference": [ + "https://www.postgresql.org/docs/current/errcodes-appendix.html", + "https://www.postgresql.org/docs/current/client-authentication-problems.html" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "shodan-query": "port:5432 product:\"PostgreSQL\"", + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "tcp", + "host": "donnees.incubateur.anct.gouv.fr:5432", + "matched-at": "donnees.incubateur.anct.gouv.fr:5432", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:32.055983943Z", "matcher-status": true }, { @@ -556727,7 +557605,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -556736,13 +557615,13 @@ } }, "type": "ssl", - "host": "zonages.donnees.incubateur.anct.gouv.fr", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr:443", + "host": "donnees.incubateur.anct.gouv.fr", + "matched-at": "donnees.incubateur.anct.gouv.fr:443", "extracted-results": [ "Let's Encrypt" ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:11:51.977799715Z", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:35.722989446Z", "matcher-status": true }, { @@ -556756,7 +557635,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -556765,13 +557645,13 @@ } }, "type": "ssl", - "host": "zonages.donnees.incubateur.anct.gouv.fr", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr:443", + "host": "donnees.incubateur.anct.gouv.fr", + "matched-at": "donnees.incubateur.anct.gouv.fr:443", "extracted-results": [ - "zonages.donnees.incubateur.anct.gouv.fr" + "donnees.incubateur.anct.gouv.fr" ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:11:51.977916994Z", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:35.723122235Z", "matcher-status": true }, { @@ -556786,7 +557666,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -556795,13 +557676,13 @@ } }, "type": "ssl", - "host": "zonages.donnees.incubateur.anct.gouv.fr", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr:443", + "host": "donnees.incubateur.anct.gouv.fr", + "matched-at": "donnees.incubateur.anct.gouv.fr:443", "extracted-results": [ "tls12" ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:11:54.453079344Z", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:38.082575253Z", "matcher-status": true }, { @@ -556816,7 +557697,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -556825,17 +557707,171 @@ } }, "type": "ssl", - "host": "zonages.donnees.incubateur.anct.gouv.fr", - "matched-at": "zonages.donnees.incubateur.anct.gouv.fr:443", + "host": "donnees.incubateur.anct.gouv.fr", + "matched-at": "donnees.incubateur.anct.gouv.fr:443", "extracted-results": [ "tls13" ], - "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:11:54.846241315Z", + "ip": "51.159.153.132", + "timestamp": "2023-12-24T19:31:38.393136508Z", "matcher-status": true } ], - "lhr": null, + "lhr": [ + { + "requestedUrl": "https://donnees.incubateur.anct.gouv.fr/", + "finalUrl": "https://donnees.incubateur.anct.gouv.fr/", + "fetchTime": "2023-12-24T19:25:22.388Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.6506444931030273 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.4 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 14218, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 4114, + "firstMeaningfulPaint": 4114, + "largestContentfulPaint": 5268, + "interactive": 14218, + "speedIndex": 4729, + "totalBlockingTime": 50, + "maxPotentialFID": 106, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 369278570, + "observedNavigationStart": 0, + "observedNavigationStartTs": 369278570, + "observedFirstPaint": 1663, + "observedFirstPaintTs": 370941547, + "observedFirstContentfulPaint": 1663, + "observedFirstContentfulPaintTs": 370941547, + "observedFirstContentfulPaintAllFrames": 1663, + "observedFirstContentfulPaintAllFramesTs": 370941547, + "observedFirstMeaningfulPaint": 1663, + "observedFirstMeaningfulPaintTs": 370941547, + "observedLargestContentfulPaint": 1663, + "observedLargestContentfulPaintTs": 370941547, + "observedLargestContentfulPaintAllFrames": 1663, + "observedLargestContentfulPaintAllFramesTs": 370941547, + "observedTraceEnd": 5694, + "observedTraceEndTs": 374972088, + "observedLoad": 3018, + "observedLoadTs": 372296239, + "observedDomContentLoaded": 1634, + "observedDomContentLoadedTs": 370912448, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1639, + "observedFirstVisualChangeTs": 370917570, + "observedLastVisualChange": 1989, + "observedLastVisualChangeTs": 371267570, + "observedSpeedIndex": 1643, + "observedSpeedIndexTs": 370921996 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 45, + "numScripts": 14, + "numStylesheets": 3, + "numFonts": 3, + "numTasks": 1158, + "numTasksOver10ms": 9, + "numTasksOver25ms": 3, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 148.169, + "throughput": 11701633.643053584, + "maxRtt": 154.357, + "maxServerLatency": 1264.563, + "totalByteWeight": 2880205, + "totalTaskTime": 341.1799999999984, + "mainDocumentTransferSize": 12681 + } + ] + } + } + } + } + ], "screenshot": true, "stats": { "grade": "F", @@ -556853,7 +557889,8 @@ "uri": "" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://donnees.incubateur.anct.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -556909,21 +557946,31 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "C+", - "nmapGrade": "A", - "nmapOpenPortsCount": 2, - "nmapOpenPortsGrade": "A", + "httpGrade": "D+", + "nmapGrade": "D", + "nmapOpenPortsCount": 5, + "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, - "testsslExpireDate": "2024-03-04T03:32:00.000Z", + "testsslExpireDate": "2024-03-09T20:47:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 9, + "trackersGrade": "A", + "trackersCount": 0, + "lighthouse_performance": 0.6506444931030273, + "lighthouse_performanceGrade": "C", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.4, + "lighthouse_pwaGrade": "D", "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", + "declaration-a11y": "C", "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F" } @@ -556936,7 +557983,7 @@ "http": { "url": "https://mes-aides.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 21:17:29 GMT", + "end_time": "Sun, 24 Dec 2023 19:31:03 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -556944,10 +557991,10 @@ "Cache-Control": "s-maxage=31536000, stale-while-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", + "Content-Security-Policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 21:17:26 GMT", - "ETag": "\"a4tcxgturpa6o\"", + "Date": "Sun, 24 Dec 2023 19:31:00 GMT", + "ETag": "\"klt7sdl9pma6o\"", "Permissions-Policy": "", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", @@ -556958,9 +558005,9 @@ "X-XSS-Protection": "1; mode=block", "x-nextjs-cache": "HIT" }, - "scan_id": 45563652, + "scan_id": 45772099, "score": 60, - "start_time": "Sun, 17 Dec 2023 21:17:23 GMT", + "start_time": "Sun, 24 Dec 2023 19:30:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -556974,22 +558021,22 @@ "data": { "connect-src": [ "https://geo.api.gouv.fr/", - "https://hd.pe.fr/", "https://*.mapbox.com/", - "'self'" + "'self'", + "https://hd.pe.fr/" ], "default-src": [ - "'unsafe-eval'", - "'self'" + "'self'", + "'unsafe-eval'" ], "font-src": [ "'self'" ], "frame-ancestors": [ - "https://recette.1jeune1solution.gouv.fr/", + "https://1jeune1solution.gouv.fr/", "http://localhost:8080", - "'self'", - "https://1jeune1solution.gouv.fr/" + "https://recette.1jeune1solution.gouv.fr/", + "'self'" ], "frame-src": [ "https://www.youtube-nocookie.com/", @@ -556997,31 +558044,32 @@ ], "img-src": [ "https://manager.tagcommander.com/", - "data:", - "'self'" + "'self'", + "data:" ], "object-src": [ - "'self'", - "data" + "data", + "'self'" ], "script-src-elem": [ - "https://*.mapbox.com/", - "http://cdn.tagcommander.com/", + "https://cdn.trustcommander.net/", + "https://tag.aticdn.net/", "'self'", - "https://guidances-applicatives.pe-qvr.fr/", "https://guidances-applicatives.pole-emploi.fr/", - "https://tag.aticdn.net/", - "https://cdn.trustcommander.net/" + "https://privacy.trustcommander.net/", + "http://cdn.tagcommander.com/", + "https://*.mapbox.com/", + "https://guidances-applicatives.pe-qvr.fr/" ], "style-src": [ - "https://guidances-applicatives.pe-qvr.fr/", - "'unsafe-inline'", + "https://guidances-applicatives.pole-emploi.fr/", "'self'", - "https://guidances-applicatives.pole-emploi.fr/" + "https://guidances-applicatives.pe-qvr.fr/", + "'unsafe-inline'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": true, @@ -557205,9 +558253,9 @@ "vulnerabilities": [ { "is_exploit": "false", - "type": "prion", + "cvss": "5.0", "id": "PRION:CVE-2016-20012", - "cvss": "5.0" + "type": "prion" } ] } @@ -557236,23 +558284,23 @@ "vulnerabilities": [ { "owner": "superuser", - "addr": "0.0.0.0", - "port": "111" + "port": "111", + "addr": "::" }, { "owner": "superuser", - "addr": "0.0.0.0", - "port": "111" + "port": "111", + "addr": "0.0.0.0" }, { "owner": "superuser", - "addr": "::", - "port": "111" + "port": "111", + "addr": "::" }, { "owner": "superuser", - "addr": "::", - "port": "111" + "port": "111", + "addr": "0.0.0.0" } ] } @@ -557626,7 +558674,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "125 >= 60 days" + "finding": "118 >= 60 days" }, { "id": "cert_notBefore", @@ -557787,7 +558835,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "1702847937" + "finding": "1703446373" }, { "id": "HSTS_multiple", @@ -557857,7 +558905,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:" + "finding": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:" }, { "id": "Permissions-Policy", @@ -558392,7 +559440,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "74" + "finding": "118" } ], "thirdparties": { @@ -558415,21 +559463,33 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=lq9znsrfmb8l2tyq" + "url": "https://hd.pe.fr/event?s=624858&idclient=lqjvxwvybuprqyu2" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=lq9znsrfmb8l2tyq" + "url": "https://hd.pe.fr/event?s=624858&idclient=lqjvxwvybuprqyu2" + }, + { + "type": "unknown", + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=414&version=1847960380" + }, + { + "type": "unknown", + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/engine?pkgId=414&version=-1244703445" + }, + { + "type": "unknown", + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/data?pkgId=414&applicationLang=fr" } ], "cookies": [], "headers": { "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", - "content-security-policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", + "content-security-policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:17:58 GMT", - "etag": "\"a4tcxgturpa6o\"", + "date": "Sun, 24 Dec 2023 19:31:33 GMT", + "etag": "\"klt7sdl9pma6o\"", "permissions-policy": "", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=63072000; includeSubDomains; preload\nmax-age=15768000\nmax-age=63072000", @@ -558566,7 +559626,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.10", + "ip": "108.156.91.113", "geoip": { "continent": { "code": "NA", @@ -558744,7 +559804,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.49", + "ip": "13.226.22.93", "geoip": { "continent": { "code": "NA", @@ -559060,7 +560120,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:16:57", + "@generated": "Sun, 24 Dec 2023 19:30:31", "site": [ { "@name": "https://mes-aides.pole-emploi.fr", @@ -559179,22 +560239,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -559210,27 +560271,29 @@ "type": "dns", "host": "mes-aides.pole-emploi.fr.", "matched-at": "mes-aides.pole-emploi.fr", - "timestamp": "2023-12-17T21:20:27.524458272Z", + "extracted-results": [ + "10 213.32.73.220." + ], + "timestamp": "2023-12-24T19:34:54.258120971Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -559246,10 +560309,7 @@ "type": "dns", "host": "mes-aides.pole-emploi.fr.", "matched-at": "mes-aides.pole-emploi.fr", - "extracted-results": [ - "10 213.32.73.220." - ], - "timestamp": "2023-12-17T21:20:27.546965408Z", + "timestamp": "2023-12-24T19:34:54.299541669Z", "matcher-status": true }, { @@ -559288,7 +560348,7 @@ "\"sendinblue-code:fbe7fdcba6e7f5cae8d93d8c7d8f9ea7\"", "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com ip4:213.32.73.220 ?all\"" ], - "timestamp": "2023-12-17T21:20:28.730893434Z", + "timestamp": "2023-12-24T19:34:55.355840688Z", "matcher-status": true }, { @@ -559314,11 +560374,11 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "extracted-results": [ - "HEAD", - "GET" + "GET", + "HEAD" ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:20:41.083227231Z", + "timestamp": "2023-12-24T19:35:08.382085896Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559359,7 +560419,7 @@ "1; mode=block" ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:20:49.612117117Z", + "timestamp": "2023-12-24T19:35:17.38389499Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559386,7 +560446,7 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:33.08967491Z", + "timestamp": "2023-12-24T19:36:03.799121485Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559418,12 +560478,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.807855102Z", + "timestamp": "2023-12-24T19:36:20.775736111Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559455,12 +560515,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.80791878Z", + "timestamp": "2023-12-24T19:36:20.775781267Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559492,12 +560552,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.807934991Z", + "timestamp": "2023-12-24T19:36:20.775793079Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559529,12 +560589,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.807951792Z", + "timestamp": "2023-12-24T19:36:20.775829921Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559566,12 +560626,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.807968293Z", + "timestamp": "2023-12-24T19:36:20.775851602Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559603,12 +560663,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:21:47.80798285Z", + "timestamp": "2023-12-24T19:36:20.775867222Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -559636,67 +560696,67 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr/robots.txt", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:22:06.188756936Z", + "timestamp": "2023-12-24T19:36:40.80298719Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/robots.txt'", "matcher-status": true }, { - "template": "http/miscellaneous/sitemap-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/sitemap-detect", - "template-id": "sitemap-detect", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml", + "template": "http/miscellaneous/robots-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/robots-txt", + "template-id": "robots-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", "info": { - "name": "Sitemap Detection", + "name": "robots.txt file", "author": [ - "houdinis" + "caspergn", + "thezakman" ], "tags": [ "misc", - "generic", - "sitemap" + "generic" ], - "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n", "severity": "info", "metadata": { - "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd", - "max-request": 3, - "verified": true + "max-request": 1 } }, "type": "http", "host": "https://mes-aides.pole-emploi.fr", - "matched-at": "https://mes-aides.pole-emploi.fr/sitemap.xml", + "matched-at": "https://mes-aides.pole-emploi.fr/robots.txt", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:22:06.188785033Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/sitemap.xml'", + "timestamp": "2023-12-24T19:36:40.881874795Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/robots.txt'", "matcher-status": true }, { - "template": "http/miscellaneous/robots-txt.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt", - "template-id": "robots-txt", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", + "template": "http/miscellaneous/sitemap-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/sitemap-detect", + "template-id": "sitemap-detect", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml", "info": { - "name": "robots.txt file", + "name": "Sitemap Detection", "author": [ - "caspergn", - "thezakman" + "houdinis" ], "tags": [ "misc", - "generic" + "generic", + "sitemap" ], + "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n", "severity": "info", "metadata": { - "max-request": 1 + "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd", + "max-request": 3, + "verified": true } }, "type": "http", "host": "https://mes-aides.pole-emploi.fr", - "matched-at": "https://mes-aides.pole-emploi.fr/robots.txt", + "matched-at": "https://mes-aides.pole-emploi.fr/sitemap.xml", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:22:06.188804173Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/robots.txt'", + "timestamp": "2023-12-24T19:36:41.198797907Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/sitemap.xml'", "matcher-status": true }, { @@ -559745,7 +560805,7 @@ "SSH-2.0-OpenSSH_8.4p1 Ubuntu-5ubuntu1.2" ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:23:01.153725947Z", + "timestamp": "2023-12-24T19:37:41.382908753Z", "matcher-status": true }, { @@ -559786,7 +560846,7 @@ "host": "mes-aides.pole-emploi.fr:111", "matched-at": "mes-aides.pole-emploi.fr:111", "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:23:01.293594263Z", + "timestamp": "2023-12-24T19:37:41.496275153Z", "matcher-status": true }, { @@ -559800,7 +560860,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -559815,7 +560876,7 @@ "Entrust, Inc." ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:23:02.893192629Z", + "timestamp": "2023-12-24T19:37:43.557707342Z", "matcher-status": true }, { @@ -559829,7 +560890,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -559847,7 +560909,7 @@ "portail-mobilite-aides.pole-emploi.fr" ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:23:02.893335255Z", + "timestamp": "2023-12-24T19:37:43.557828441Z", "matcher-status": true }, { @@ -559862,7 +560924,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -559877,7 +560940,7 @@ "tls12" ], "ip": "51.83.34.111", - "timestamp": "2023-12-17T21:23:04.405205179Z", + "timestamp": "2023-12-24T19:37:45.119622512Z", "matcher-status": true } ], @@ -559885,7 +560948,7 @@ { "requestedUrl": "https://mes-aides.pole-emploi.fr/", "finalUrl": "https://mes-aides.pole-emploi.fr/", - "fetchTime": "2023-12-17T21:17:11.943Z", + "fetchTime": "2023-12-24T19:30:45.885Z", "runWarnings": [], "categories": { "performance": { @@ -559917,7 +560980,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.75 }, "seo": { "title": "SEO", @@ -559948,53 +561011,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6946, + "numericValue": 6996, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1335, - "firstMeaningfulPaint": 1658, - "largestContentfulPaint": 2731, - "interactive": 6946, - "speedIndex": 3044, - "totalBlockingTime": 551, - "maxPotentialFID": 246, + "firstContentfulPaint": 1370, + "firstMeaningfulPaint": 1717, + "largestContentfulPaint": 2587, + "interactive": 6996, + "speedIndex": 4783, + "totalBlockingTime": 424, + "maxPotentialFID": 245, "cumulativeLayoutShift": 0.008557400173611111, "cumulativeLayoutShiftMainFrame": 0.008557400173611111, "totalCumulativeLayoutShift": 0.008557400173611111, "observedTimeOrigin": 0, - "observedTimeOriginTs": 221823475, + "observedTimeOriginTs": 320381152, "observedNavigationStart": 0, - "observedNavigationStartTs": 221823475, - "observedFirstPaint": 789, - "observedFirstPaintTs": 222612201, - "observedFirstContentfulPaint": 789, - "observedFirstContentfulPaintTs": 222612201, - "observedFirstContentfulPaintAllFrames": 789, - "observedFirstContentfulPaintAllFramesTs": 222612201, - "observedFirstMeaningfulPaint": 789, - "observedFirstMeaningfulPaintTs": 222612201, - "observedLargestContentfulPaint": 789, - "observedLargestContentfulPaintTs": 222612201, - "observedLargestContentfulPaintAllFrames": 789, - "observedLargestContentfulPaintAllFramesTs": 222612201, - "observedTraceEnd": 3637, - "observedTraceEndTs": 225460498, - "observedLoad": 680, - "observedLoadTs": 222503415, - "observedDomContentLoaded": 680, - "observedDomContentLoadedTs": 222503334, + "observedNavigationStartTs": 320381152, + "observedFirstPaint": 927, + "observedFirstPaintTs": 321308644, + "observedFirstContentfulPaint": 927, + "observedFirstContentfulPaintTs": 321308644, + "observedFirstContentfulPaintAllFrames": 927, + "observedFirstContentfulPaintAllFramesTs": 321308644, + "observedFirstMeaningfulPaint": 927, + "observedFirstMeaningfulPaintTs": 321308644, + "observedLargestContentfulPaint": 927, + "observedLargestContentfulPaintTs": 321308644, + "observedLargestContentfulPaintAllFrames": 927, + "observedLargestContentfulPaintAllFramesTs": 321308644, + "observedTraceEnd": 5147, + "observedTraceEndTs": 325528313, + "observedLoad": 816, + "observedLoadTs": 321197271, + "observedDomContentLoaded": 816, + "observedDomContentLoadedTs": 321197134, "observedCumulativeLayoutShift": 0.008557400173611111, "observedCumulativeLayoutShiftMainFrame": 0.008557400173611111, "observedTotalCumulativeLayoutShift": 0.008557400173611111, - "observedFirstVisualChange": 800, - "observedFirstVisualChangeTs": 222623475, - "observedLastVisualChange": 1134, - "observedLastVisualChangeTs": 222957475, - "observedSpeedIndex": 874, - "observedSpeedIndexTs": 222697925 + "observedFirstVisualChange": 939, + "observedFirstVisualChangeTs": 321320152, + "observedLastVisualChange": 3072, + "observedLastVisualChangeTs": 323453152, + "observedSpeedIndex": 1045, + "observedSpeedIndexTs": 321426476 }, { "lcpInvalidated": false @@ -560012,23 +561075,23 @@ "type": "debugdata", "items": [ { - "numRequests": 101, - "numScripts": 34, - "numStylesheets": 3, - "numFonts": 3, - "numTasks": 1609, + "numRequests": 132, + "numScripts": 36, + "numStylesheets": 4, + "numFonts": 30, + "numTasks": 2131, "numTasksOver10ms": 13, - "numTasksOver25ms": 6, + "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.456000000000003, - "throughput": 20350972.19643899, - "maxRtt": 92.884, - "maxServerLatency": 90.89299999999999, - "totalByteWeight": 4919382, - "totalTaskTime": 641.9009999999997, - "mainDocumentTransferSize": 4248 + "rtt": 1.6209999999999987, + "throughput": 17425838.619369738, + "maxRtt": 113.867, + "maxServerLatency": 40.786000000000016, + "totalByteWeight": 5841812, + "totalTaskTime": 663.3389999999958, + "mainDocumentTransferSize": 4271 } ] } @@ -560128,13 +561191,13 @@ "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "C", - "trackersCount": 6, + "trackersCount": 9, "lighthouse_performance": 0, "lighthouse_performanceGrade": "F", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", + "lighthouse_best-practices": 0.75, + "lighthouse_best-practicesGrade": "B", "lighthouse_seo": 0.98, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.7, @@ -560188,13 +561251,13 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 21:17:56 GMT", - "etag": "W/\"655e3be5-2f7\"", - "last-modified": "Wed, 22 Nov 2023 17:35:33 GMT", + "date": "Sun, 24 Dec 2023 19:38:13 GMT", + "etag": "W/\"657cb0e4-2f7\"", + "last-modified": "Fri, 15 Dec 2023 20:02:44 GMT", "strict-transport-security": "max-age=31536000", "transfer-encoding": "chunked", "vary": "Accept-Encoding", - "x-request-id": "f21c14725346f045f972c15095ca7b05" + "x-request-id": "12ee8d44187211eaadf3cac29068f66a" }, "endpoints": [ { @@ -560286,7 +561349,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:17:15", + "@generated": "Sun, 24 Dec 2023 19:37:32", "site": [ { "@name": "https://mon.franceconnect.gouv.fr", @@ -560408,7 +561471,7 @@ "type": "dns", "host": "mon.franceconnect.gouv.fr.", "matched-at": "mon.franceconnect.gouv.fr", - "timestamp": "2023-12-17T21:29:10.490384012Z", + "timestamp": "2023-12-24T19:49:29.474216487Z", "matcher-status": true }, { @@ -560447,7 +561510,7 @@ "host": "https://mon.franceconnect.gouv.fr", "matched-at": "https://mon.franceconnect.gouv.fr/", "ip": "148.253.96.161", - "timestamp": "2023-12-17T21:30:33.933468358Z", + "timestamp": "2023-12-24T19:50:53.624156366Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mon.franceconnect.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon.franceconnect.gouv.fr/'", "matcher-status": true }, @@ -560462,7 +561525,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -560477,7 +561541,7 @@ "Let's Encrypt" ], "ip": "148.253.96.161", - "timestamp": "2023-12-17T21:32:19.279029901Z", + "timestamp": "2023-12-24T19:52:39.955114816Z", "matcher-status": true }, { @@ -560491,7 +561555,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -560506,7 +561571,7 @@ "mon.franceconnect.gouv.fr" ], "ip": "148.253.96.161", - "timestamp": "2023-12-17T21:32:19.279170512Z", + "timestamp": "2023-12-24T19:52:39.955244918Z", "matcher-status": true }, { @@ -560521,7 +561586,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -560536,7 +561602,7 @@ "tls13" ], "ip": "148.253.96.161", - "timestamp": "2023-12-17T21:32:22.822279792Z", + "timestamp": "2023-12-24T19:52:42.066793274Z", "matcher-status": true } ], @@ -560544,7 +561610,7 @@ { "requestedUrl": "https://mon.franceconnect.gouv.fr/", "finalUrl": "https://tableaudebord.franceconnect.gouv.fr/", - "fetchTime": "2023-12-17T21:17:29.494Z", + "fetchTime": "2023-12-24T19:37:46.421Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mon.franceconnect.gouv.fr/) was redirected to https://tableaudebord.franceconnect.gouv.fr/. Try testing the second URL directly." ], @@ -560609,53 +561675,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4285, + "numericValue": 3436, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2500, - "firstMeaningfulPaint": 2908, - "largestContentfulPaint": 3712, - "interactive": 4285, - "speedIndex": 4019, - "totalBlockingTime": 66, - "maxPotentialFID": 87, - "cumulativeLayoutShift": 0.54580029296875, - "cumulativeLayoutShiftMainFrame": 0.54580029296875, - "totalCumulativeLayoutShift": 0.54580029296875, + "firstContentfulPaint": 2523, + "firstMeaningfulPaint": 2930, + "largestContentfulPaint": 3929, + "interactive": 3436, + "speedIndex": 4241, + "totalBlockingTime": 14, + "maxPotentialFID": 78, + "cumulativeLayoutShift": 0.6039919425116645, + "cumulativeLayoutShiftMainFrame": 0.6039919425116645, + "totalCumulativeLayoutShift": 0.6039919425116645, "observedTimeOrigin": 0, - "observedTimeOriginTs": 238564214, + "observedTimeOriginTs": 283313620, "observedNavigationStart": 0, - "observedNavigationStartTs": 238564214, - "observedFirstPaint": 1246, - "observedFirstPaintTs": 239809950, - "observedFirstContentfulPaint": 1246, - "observedFirstContentfulPaintTs": 239809950, - "observedFirstContentfulPaintAllFrames": 1246, - "observedFirstContentfulPaintAllFramesTs": 239809950, - "observedFirstMeaningfulPaint": 1246, - "observedFirstMeaningfulPaintTs": 239809950, - "observedLargestContentfulPaint": 1381, - "observedLargestContentfulPaintTs": 239945198, - "observedLargestContentfulPaintAllFrames": 1381, - "observedLargestContentfulPaintAllFramesTs": 239945198, - "observedTraceEnd": 3788, - "observedTraceEndTs": 242352496, - "observedLoad": 1208, - "observedLoadTs": 239771923, - "observedDomContentLoaded": 1208, - "observedDomContentLoadedTs": 239771887, - "observedCumulativeLayoutShift": 0.54580029296875, - "observedCumulativeLayoutShiftMainFrame": 0.54580029296875, - "observedTotalCumulativeLayoutShift": 0.54580029296875, - "observedFirstVisualChange": 1259, - "observedFirstVisualChangeTs": 239823214, - "observedLastVisualChange": 1792, - "observedLastVisualChangeTs": 240356214, - "observedSpeedIndex": 1338, - "observedSpeedIndexTs": 239901904 + "observedNavigationStartTs": 283313620, + "observedFirstPaint": 1417, + "observedFirstPaintTs": 284730417, + "observedFirstContentfulPaint": 1417, + "observedFirstContentfulPaintTs": 284730417, + "observedFirstContentfulPaintAllFrames": 1417, + "observedFirstContentfulPaintAllFramesTs": 284730417, + "observedFirstMeaningfulPaint": 1417, + "observedFirstMeaningfulPaintTs": 284730417, + "observedLargestContentfulPaint": 1532, + "observedLargestContentfulPaintTs": 284845777, + "observedLargestContentfulPaintAllFrames": 1532, + "observedLargestContentfulPaintAllFramesTs": 284845777, + "observedTraceEnd": 3937, + "observedTraceEndTs": 287250220, + "observedLoad": 1380, + "observedLoadTs": 284693121, + "observedDomContentLoaded": 1379, + "observedDomContentLoadedTs": 284693083, + "observedCumulativeLayoutShift": 0.6039919425116645, + "observedCumulativeLayoutShiftMainFrame": 0.6039919425116645, + "observedTotalCumulativeLayoutShift": 0.6039919425116645, + "observedFirstVisualChange": 1424, + "observedFirstVisualChangeTs": 284737620, + "observedLastVisualChange": 1791, + "observedLastVisualChangeTs": 285104620, + "observedSpeedIndex": 1500, + "observedSpeedIndexTs": 284813940 }, { "lcpInvalidated": false @@ -560677,19 +561743,19 @@ "numScripts": 1, "numStylesheets": 3, "numFonts": 2, - "numTasks": 292, - "numTasksOver10ms": 5, - "numTasksOver25ms": 1, + "numTasks": 311, + "numTasksOver10ms": 3, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.644, - "throughput": 9799714.789521515, - "maxRtt": 86.712, - "maxServerLatency": 15.935000000000002, - "totalByteWeight": 335952, - "totalTaskTime": 172.7349999999996, - "mainDocumentTransferSize": 755 + "rtt": 82.817, + "throughput": 9081710.710500875, + "maxRtt": 84.733, + "maxServerLatency": 26.098, + "totalByteWeight": 335116, + "totalTaskTime": 110.87800000000011, + "mainDocumentTransferSize": 754 } ] } @@ -560778,7 +561844,7 @@ "http": { "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 02:39:25 GMT", + "end_time": "Sun, 24 Dec 2023 02:38:54 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -560787,19 +561853,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 02:39:23 GMT", + "Date": "Sun, 24 Dec 2023 02:38:52 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "a833e9fd-f5d0-45ca-8996-c6f89c60d044", + "X-Request-ID": "c5831cc4-802b-4ca3-ac74-e37c831199f7", "link": "; rel=\"alternate\"; hreflang=\"fr\", ; rel=\"alternate\"; hreflang=\"en\", ; rel=\"alternate\"; hreflang=\"x-default\"", - "set-cookie": "NEXT_LOCALE=fr; Path=/; Expires=Mon, 16 Dec 2024 02:39:23 GMT; Max-Age=31536000; SameSite=strict", + "set-cookie": "NEXT_LOCALE=fr; Path=/; Expires=Mon, 23 Dec 2024 02:38:52 GMT; Max-Age=31536000; SameSite=strict", "x-middleware-rewrite": "/fr" }, - "scan_id": 45538135, + "scan_id": 45753400, "score": 35, - "start_time": "Sun, 17 Dec 2023 02:39:20 GMT", + "start_time": "Sun, 24 Dec 2023 02:38:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -560839,7 +561905,7 @@ "data": { "NEXT_LOCALE": { "domain": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "expires": 1734316763, + "expires": 1734921532, "httponly": false, "max-age": null, "path": "/", @@ -561004,77 +562070,77 @@ "testssl": [ { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561082,7 +562148,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561090,7 +562156,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561098,7 +562164,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561106,7 +562172,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -561114,7 +562180,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -561122,476 +562188,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702848464" + "finding": "1703447269" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -561599,7 +562665,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -561608,7 +562674,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -561617,7 +562683,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -561626,7 +562692,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -561635,7 +562701,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -561643,7 +562709,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -561652,7 +562718,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -561661,7 +562727,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -561670,7 +562736,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -561679,14 +562745,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -561695,7 +562761,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -561704,7 +562770,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -561713,7 +562779,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -561722,7 +562788,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -561731,7 +562797,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -561740,7 +562806,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -561749,7 +562815,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -561758,7 +562824,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -561767,7 +562833,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -561776,392 +562842,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -562169,7 +563235,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -562177,7 +563243,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -562185,7 +563251,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -562193,7 +563259,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -562201,7 +563267,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -562209,476 +563275,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702848559" + "finding": "1703447322" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -562686,7 +563752,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -562695,7 +563761,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -562704,7 +563770,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -562713,7 +563779,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -562722,7 +563788,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -562730,7 +563796,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -562739,7 +563805,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -562748,7 +563814,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -562757,7 +563823,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -562766,14 +563832,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -562782,7 +563848,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -562791,7 +563857,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -562800,7 +563866,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -562809,7 +563875,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -562818,7 +563884,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -562827,7 +563893,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -562836,7 +563902,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -562845,7 +563911,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -562854,7 +563920,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -562863,315 +563929,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" @@ -563383,7 +564449,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -563530,7 +564596,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "HIGH", - "finding": "expires < 30 days (26)" + "finding": "expires < 30 days (19)" }, { "id": "cert_notBefore", @@ -563691,7 +564757,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702848655" + "finding": "1703447375" }, { "id": "HSTS_time", @@ -564265,77 +565331,77 @@ }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -564343,7 +565409,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -564351,7 +565417,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -564359,7 +565425,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -564367,7 +565433,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -564375,7 +565441,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -564383,476 +565449,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702848750" + "finding": "1703447429" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -564860,7 +565926,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -564869,7 +565935,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -564878,7 +565944,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -564887,7 +565953,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -564896,7 +565962,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -564904,7 +565970,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -564913,7 +565979,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -564922,7 +565988,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -564931,7 +565997,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -564940,14 +566006,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -564956,7 +566022,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -564965,7 +566031,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -564974,7 +566040,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -564983,7 +566049,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -564992,7 +566058,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -565001,7 +566067,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -565010,7 +566076,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -565019,7 +566085,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -565028,7 +566094,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -565037,325 +566103,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "384" + "finding": "216" } ], "thirdparties": { @@ -565366,7 +566432,7 @@ "value": "en", "domain": "mfc-web-dev.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1734384390.99858, + "expires": 1734983229.527609, "size": 13, "httpOnly": false, "secure": false, @@ -565381,18 +566447,18 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:26:31 GMT", + "date": "Sun, 24 Dec 2023 19:47:09 GMT", "link": "; rel=\"alternate\"; hreflang=\"fr\", ; rel=\"alternate\"; hreflang=\"en\", ; rel=\"alternate\"; hreflang=\"x-default\"", "strict-transport-security": "max-age=31536000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "x-middleware-rewrite": "/en", "x-powered-by": "Next.js", - "x-request-id": "915643df-5a77-43d3-9fca-3647910a392e" + "x-request-id": "8bd0ce44-017d-40e0-ae2b-37308f21404b" }, "endpoints": [ { "hostname": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -565597,7 +566663,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:25:50", + "@generated": "Sun, 24 Dec 2023 19:46:28", "site": [ { "@name": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", @@ -565761,7 +566827,7 @@ "extracted-results": [ "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." ], - "timestamp": "2023-12-17T21:34:16.203444973Z", + "timestamp": "2023-12-24T19:51:52.544666344Z", "matcher-status": true }, { @@ -565796,7 +566862,7 @@ "type": "dns", "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io.", "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "timestamp": "2023-12-17T21:34:16.210904111Z", + "timestamp": "2023-12-24T19:51:53.547728325Z", "matcher-status": true }, { @@ -565827,12 +566893,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813085971Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024428881Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -565864,12 +566930,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813128591Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.02447671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -565901,12 +566967,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813146223Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024488391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -565938,12 +567004,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813162013Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024500423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -565975,12 +567041,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813174786Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.02450912Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566012,12 +567078,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813186588Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024517746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566049,12 +567115,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.81319824Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024531812Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566086,12 +567152,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813213018Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024547892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566123,12 +567189,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813227715Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024561267Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566160,12 +567226,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.813241201Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.024574401Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566197,12 +567263,86 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814487084Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026282425Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026307602Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026320726Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566234,12 +567374,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814516919Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026332839Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566271,12 +567411,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814531026Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026344971Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566308,12 +567448,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814543138Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026357224Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566349,8 +567489,8 @@ "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814556714Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026374536Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566386,82 +567526,8 @@ "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814573525Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814591609Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814606376Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026387641Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566493,12 +567559,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814621114Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026399352Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566530,12 +567596,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:35:30.814636603Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:52:43.026411595Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -566550,7 +567616,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -566564,8 +567631,8 @@ "extracted-results": [ "Gandi" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:42:02.549066102Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:58:52.375210816Z", "matcher-status": true }, { @@ -566579,7 +567646,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -566594,8 +567662,8 @@ "*.osc-secnum-fr1.scalingo.io", "osc-secnum-fr1.scalingo.io" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:42:02.549182138Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:58:52.375310872Z", "matcher-status": true }, { @@ -566629,8 +567697,8 @@ "CN: *.osc-secnum-fr1.scalingo.io", " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:42:02.549251918Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:58:52.375359292Z", "matcher-status": true }, { @@ -566645,7 +567713,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -566659,8 +567728,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:42:04.908448793Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:58:53.585901876Z", "matcher-status": true }, { @@ -566675,7 +567744,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -566689,8 +567759,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T21:42:05.465952963Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T19:58:53.811676835Z", "matcher-status": true } ], @@ -566698,7 +567768,7 @@ { "requestedUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2023-12-17T21:26:04.614Z", + "fetchTime": "2023-12-24T19:46:42.349Z", "runWarnings": [], "categories": { "performance": { @@ -566761,53 +567831,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3086, + "numericValue": 3016, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1365, - "firstMeaningfulPaint": 1365, - "largestContentfulPaint": 3465, - "interactive": 3086, - "speedIndex": 2007, - "totalBlockingTime": 77, - "maxPotentialFID": 116, - "cumulativeLayoutShift": 0.0019619140625, - "cumulativeLayoutShiftMainFrame": 0.0019619140625, - "totalCumulativeLayoutShift": 0.0019619140625, + "firstContentfulPaint": 1362, + "firstMeaningfulPaint": 1362, + "largestContentfulPaint": 2862, + "interactive": 3016, + "speedIndex": 1557, + "totalBlockingTime": 15, + "maxPotentialFID": 79, + "cumulativeLayoutShift": 0.0018484700520833334, + "cumulativeLayoutShiftMainFrame": 0.0018484700520833334, + "totalCumulativeLayoutShift": 0.0018484700520833334, "observedTimeOrigin": 0, - "observedTimeOriginTs": 336215306, + "observedTimeOriginTs": 279313846, "observedNavigationStart": 0, - "observedNavigationStartTs": 336215306, - "observedFirstPaint": 886, - "observedFirstPaintTs": 337101763, - "observedFirstContentfulPaint": 886, - "observedFirstContentfulPaintTs": 337101763, - "observedFirstContentfulPaintAllFrames": 886, - "observedFirstContentfulPaintAllFramesTs": 337101763, - "observedFirstMeaningfulPaint": 886, - "observedFirstMeaningfulPaintTs": 337101763, - "observedLargestContentfulPaint": 1261, - "observedLargestContentfulPaintTs": 337476451, - "observedLargestContentfulPaintAllFrames": 1261, - "observedLargestContentfulPaintAllFramesTs": 337476451, - "observedTraceEnd": 3649, - "observedTraceEndTs": 339864746, - "observedLoad": 1298, - "observedLoadTs": 337513449, - "observedDomContentLoaded": 874, - "observedDomContentLoadedTs": 337089759, - "observedCumulativeLayoutShift": 0.0019619140625, - "observedCumulativeLayoutShiftMainFrame": 0.0019619140625, - "observedTotalCumulativeLayoutShift": 0.0019619140625, - "observedFirstVisualChange": 887, - "observedFirstVisualChangeTs": 337102306, - "observedLastVisualChange": 3471, - "observedLastVisualChangeTs": 339686306, - "observedSpeedIndex": 979, - "observedSpeedIndexTs": 337193845 + "observedNavigationStartTs": 279313846, + "observedFirstPaint": 593, + "observedFirstPaintTs": 279906614, + "observedFirstContentfulPaint": 593, + "observedFirstContentfulPaintTs": 279906614, + "observedFirstContentfulPaintAllFrames": 593, + "observedFirstContentfulPaintAllFramesTs": 279906614, + "observedFirstMeaningfulPaint": 593, + "observedFirstMeaningfulPaintTs": 279906614, + "observedLargestContentfulPaint": 706, + "observedLargestContentfulPaintTs": 280019799, + "observedLargestContentfulPaintAllFrames": 706, + "observedLargestContentfulPaintAllFramesTs": 280019799, + "observedTraceEnd": 3164, + "observedTraceEndTs": 282477543, + "observedLoad": 830, + "observedLoadTs": 280144072, + "observedDomContentLoaded": 524, + "observedDomContentLoadedTs": 279837962, + "observedCumulativeLayoutShift": 0.0018484700520833334, + "observedCumulativeLayoutShiftMainFrame": 0.0018484700520833334, + "observedTotalCumulativeLayoutShift": 0.0018484700520833334, + "observedFirstVisualChange": 591, + "observedFirstVisualChangeTs": 279904846, + "observedLastVisualChange": 3158, + "observedLastVisualChangeTs": 282471846, + "observedSpeedIndex": 659, + "observedSpeedIndexTs": 279972467 }, { "lcpInvalidated": false @@ -566829,19 +567899,19 @@ "numScripts": 15, "numStylesheets": 2, "numFonts": 3, - "numTasks": 738, + "numTasks": 730, "numTasksOver10ms": 4, - "numTasksOver25ms": 2, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 136.582, - "throughput": 7932711.506047791, - "maxRtt": 136.582, - "maxServerLatency": 14.891999999999996, - "totalByteWeight": 471800, - "totalTaskTime": 231.3179999999996, - "mainDocumentTransferSize": 9563 + "rtt": 82.803, + "throughput": 11418695.879670242, + "maxRtt": 82.803, + "maxServerLatency": 11.840000000000003, + "totalByteWeight": 471919, + "totalTaskTime": 255.96499999999943, + "mainDocumentTransferSize": 9567 } ] } @@ -566866,7 +567936,7 @@ "uri": "" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme" + "mention": "Accessibilité : totalement conforme" }, "declaration-rgpd": [ { @@ -566914,7 +567984,7 @@ "statsGrade": "F", "githubRepositoryGrade": "F", "budgetPageGrade": "F", - "declaration-a11y": "D", + "declaration-a11y": "F", "declaration-rgpd-ml": "F", "declaration-rgpd-pc": "F" } @@ -566934,22 +568004,22 @@ "http": { "url": "https://collectivite.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 00:35:15 GMT", + "end_time": "Sun, 24 Dec 2023 00:34:03 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "content-type": "text/html", - "date": "Sun, 17 Dec 2023 00:35:13 GMT", + "date": "Sun, 24 Dec 2023 00:34:01 GMT", "keep-alive": "timeout=5", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "transfer-encoding": "chunked", "x-frame-options": "SAMEORIGIN" }, - "scan_id": 45535445, + "scan_id": 45750728, "score": 60, - "start_time": "Sun, 17 Dec 2023 00:35:09 GMT", + "start_time": "Sun, 24 Dec 2023 00:33:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -567488,7 +568558,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -567691,7 +568761,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1702849088" + "finding": "1703447645" }, { "id": "HSTS_time", @@ -568261,7 +569331,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "98" + "finding": "135" } ], "thirdparties": { @@ -568272,7 +569342,7 @@ "value": "1", "domain": "collectivite.fr", "path": "/", - "expires": 1702850812, + "expires": 1703449346, "size": 15, "httpOnly": false, "secure": false, @@ -568284,10 +569354,10 @@ }, { "name": "_pk_id.6.88ba", - "value": "3a2ee08c11971f5f.1702849012.", + "value": "786ea0b3e91f962c.1703447546.", "domain": "collectivite.fr", "path": "/", - "expires": 1736804212, + "expires": 1737402746, "size": 41, "httpOnly": false, "secure": false, @@ -568300,7 +569370,7 @@ ], "headers": { "content-type": "text/html", - "date": "Sun, 17 Dec 2023 21:36:51 GMT", + "date": "Sun, 24 Dec 2023 19:52:24 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "x-frame-options": "SAMEORIGIN" @@ -568510,7 +569580,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:36:10", + "@generated": "Sun, 24 Dec 2023 19:51:43", "site": [ { "@name": "https://collectivite.fr", @@ -568608,23 +569678,20 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -568640,30 +569707,29 @@ "host": "collectivite.fr.", "matched-at": "collectivite.fr", "extracted-results": [ - "\"google-site-verification=5czdtdebjHmPb8k6_ahd9eAFkHr97DD4ycgFLTi02WQ\"", - "\"v=spf1 include:_spf.scw-tem.cloud ip4:51.159.128.187 +a +mx ~all\"" + "ns1.dom.scw.cloud.", + "ns0.dom.scw.cloud." ], - "timestamp": "2023-12-17T21:39:57.770041974Z", + "timestamp": "2023-12-24T19:56:12.70921465Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -568679,29 +569745,27 @@ "type": "dns", "host": "collectivite.fr.", "matched-at": "collectivite.fr", - "extracted-results": [ - "0 mx.collectivite.fr." - ], - "timestamp": "2023-12-17T21:39:57.871800322Z", + "timestamp": "2023-12-24T19:56:13.007311996Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -568717,24 +569781,30 @@ "type": "dns", "host": "collectivite.fr.", "matched-at": "collectivite.fr", - "timestamp": "2023-12-17T21:39:58.294180729Z", + "extracted-results": [ + "0 mx.collectivite.fr." + ], + "timestamp": "2023-12-24T19:56:13.215878357Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -568750,10 +569820,10 @@ "host": "collectivite.fr.", "matched-at": "collectivite.fr", "extracted-results": [ - "ns0.dom.scw.cloud.", - "ns1.dom.scw.cloud." + "\"google-site-verification=5czdtdebjHmPb8k6_ahd9eAFkHr97DD4ycgFLTi02WQ\"", + "\"v=spf1 include:_spf.scw-tem.cloud ip4:51.159.128.187 +a +mx ~all\"" ], - "timestamp": "2023-12-17T21:39:59.276844273Z", + "timestamp": "2023-12-24T19:56:13.584449932Z", "matcher-status": true }, { @@ -568792,7 +569862,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:16.448638603Z", + "timestamp": "2023-12-24T19:56:36.941972063Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -568811,7 +569881,8 @@ "novnc", "cve", "cve2021", - "seclists" + "seclists", + "openstack" ], "description": "Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.", "reference": [ @@ -568837,7 +569908,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss-score": 6.1, "epss-score": 0.92596, - "epss-percentile": 0.98754, + "epss-percentile": 0.98773, "cpe": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*" }, "remediation": "Apply the latest security patches or updates provided by the vendor to fix the open redirect vulnerability in the Nova noVNC application.\n" @@ -568846,7 +569917,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr//interact.sh/%2f..", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:26.047128236Z", + "timestamp": "2023-12-24T19:56:49.246572294Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr//interact.sh/%2f..'", "matcher-status": true }, @@ -568880,7 +569951,7 @@ "Astro v3.5.0" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:47.590400579Z", + "timestamp": "2023-12-24T19:57:18.040506119Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -568907,7 +569978,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:47.65164488Z", + "timestamp": "2023-12-24T19:57:18.095096624Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -568939,12 +570010,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169093689Z", + "timestamp": "2023-12-24T19:57:34.290947731Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -568976,12 +570047,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169141839Z", + "timestamp": "2023-12-24T19:57:34.291009206Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569013,12 +570084,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169161325Z", + "timestamp": "2023-12-24T19:57:34.291031468Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569050,12 +570121,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169175482Z", + "timestamp": "2023-12-24T19:57:34.291053719Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569087,12 +570158,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.16919058Z", + "timestamp": "2023-12-24T19:57:34.2910701Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569124,12 +570195,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169203935Z", + "timestamp": "2023-12-24T19:57:34.29108632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569161,12 +570232,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.169215437Z", + "timestamp": "2023-12-24T19:57:34.291105005Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569198,12 +570269,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:40:59.16952146Z", + "timestamp": "2023-12-24T19:57:34.291124121Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -569231,7 +570302,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr/robots.txt", "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:41:14.169919973Z", + "timestamp": "2023-12-24T19:57:54.233748677Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr/robots.txt'", "matcher-status": true }, @@ -569269,15 +570340,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrationDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "Agence nationale de la cohesion des territoires" + "2010-06-20T09:30:09Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157743827Z", + "timestamp": "2023-12-24T19:57:54.789070957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569315,15 +570386,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "expirationDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "Agence nationale de la cohesion des territoires" + "2024-06-20T09:30:09Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157787358Z", + "timestamp": "2023-12-24T19:57:54.789117774Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569361,15 +570432,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantPhone", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "94a60aaa87ebf9a5.1927334@spamfree.bookmyname.com" + "+33.185586003" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157806324Z", + "timestamp": "2023-12-24T19:57:54.789134155Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569407,16 +570478,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantAddress", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "ns0.dom.scw.cloud", - "ns1.dom.scw.cloud" + "20 Avenue de Segur", + "PARIS", + "75007", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157821121Z", + "timestamp": "2023-12-24T19:57:54.78914738Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569454,15 +570527,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2023-03-20T13:28:31.515637Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157865995Z", + "timestamp": "2023-12-24T19:57:54.789163229Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569500,15 +570573,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "status", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2024-06-20T09:30:09Z" + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157887285Z", + "timestamp": "2023-12-24T19:57:54.789181804Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569546,15 +570619,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantName", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "+33.185586003" + "Agence nationale de la cohesion des territoires" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157904207Z", + "timestamp": "2023-12-24T19:57:54.789199237Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569592,18 +570665,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "registrantOrg", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "20 Avenue de Segur", - "PARIS", - "75007", - "FR" + "Agence nationale de la cohesion des territoires" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157921539Z", + "timestamp": "2023-12-24T19:57:54.789215266Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569641,15 +570711,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantEmail", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "FR" + "94a60aaa87ebf9a5.1927334@spamfree.bookmyname.com" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157940936Z", + "timestamp": "2023-12-24T19:57:54.789232168Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569687,15 +570757,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "nameServers", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "false" + "ns1.dom.scw.cloud", + "ns0.dom.scw.cloud" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157956915Z", + "timestamp": "2023-12-24T19:57:54.789248529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569733,15 +570804,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "secureDNS", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "client transfer prohibited" + "false" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157972585Z", + "timestamp": "2023-12-24T19:57:54.78926552Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569779,15 +570850,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2010-06-20T09:30:09Z" + "2023-03-20T13:28:31.515637Z" ], "ip": "45.77.228.254", - "timestamp": "2023-12-17T21:41:15.157987693Z", + "timestamp": "2023-12-24T19:57:54.789281109Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -569832,7 +570903,7 @@ "redirect": "/evil.com/%2F.." }, "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:41:58.317224742Z", + "timestamp": "2023-12-24T19:58:41.841790975Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr//evil.com/%2F..'", "matcher-status": true }, @@ -569847,7 +570918,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -569862,7 +570934,7 @@ "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:42:08.664241424Z", + "timestamp": "2023-12-24T19:59:39.51572836Z", "matcher-status": true }, { @@ -569876,7 +570948,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -569891,7 +570964,7 @@ "collectivite.fr" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:42:08.664378049Z", + "timestamp": "2023-12-24T19:59:39.515862681Z", "matcher-status": true }, { @@ -569906,7 +570979,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -569921,7 +570995,7 @@ "tls12" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:42:48.890125034Z", + "timestamp": "2023-12-24T19:59:58.853489546Z", "matcher-status": true }, { @@ -569936,7 +571010,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -569951,7 +571026,7 @@ "tls13" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T21:42:54.195917243Z", + "timestamp": "2023-12-24T20:00:02.295319503Z", "matcher-status": true } ], @@ -569959,7 +571034,7 @@ { "requestedUrl": "https://collectivite.fr/", "finalUrl": "https://collectivite.fr/", - "fetchTime": "2023-12-17T21:36:24.042Z", + "fetchTime": "2023-12-24T19:51:57.165Z", "runWarnings": [], "categories": { "performance": { @@ -569970,7 +571045,7 @@ "snapshot" ], "id": "performance", - "score": 0.9496294021606445 + "score": 0.9496019363403321 }, "accessibility": { "title": "Accessibility", @@ -570022,53 +571097,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7729, + "numericValue": 7068, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5576, - "firstMeaningfulPaint": 5576, - "largestContentfulPaint": 6040, - "interactive": 7729, - "speedIndex": 5576, - "totalBlockingTime": 199, - "maxPotentialFID": 448, + "firstContentfulPaint": 5415, + "firstMeaningfulPaint": 5415, + "largestContentfulPaint": 6344, + "interactive": 7068, + "speedIndex": 5415, + "totalBlockingTime": 78, + "maxPotentialFID": 206, "cumulativeLayoutShift": 0.1810907236735026, "cumulativeLayoutShiftMainFrame": 0.1810907236735026, "totalCumulativeLayoutShift": 0.1810907236735026, "observedTimeOrigin": 0, - "observedTimeOriginTs": 208382667, + "observedTimeOriginTs": 283042428, "observedNavigationStart": 0, - "observedNavigationStartTs": 208382667, - "observedFirstPaint": 1048, - "observedFirstPaintTs": 209431030, - "observedFirstContentfulPaint": 1048, - "observedFirstContentfulPaintTs": 209431030, - "observedFirstContentfulPaintAllFrames": 1048, - "observedFirstContentfulPaintAllFramesTs": 209431030, - "observedFirstMeaningfulPaint": 1068, - "observedFirstMeaningfulPaintTs": 209451080, - "observedLargestContentfulPaint": 1216, - "observedLargestContentfulPaintTs": 209598487, - "observedLargestContentfulPaintAllFrames": 1216, - "observedLargestContentfulPaintAllFramesTs": 209598487, - "observedTraceEnd": 4380, - "observedTraceEndTs": 212762866, - "observedLoad": 2073, - "observedLoadTs": 210455511, - "observedDomContentLoaded": 1067, - "observedDomContentLoadedTs": 209449503, + "observedNavigationStartTs": 283042428, + "observedFirstPaint": 1333, + "observedFirstPaintTs": 284374930, + "observedFirstContentfulPaint": 1333, + "observedFirstContentfulPaintTs": 284374930, + "observedFirstContentfulPaintAllFrames": 1333, + "observedFirstContentfulPaintAllFramesTs": 284374930, + "observedFirstMeaningfulPaint": 1352, + "observedFirstMeaningfulPaintTs": 284394858, + "observedLargestContentfulPaint": 1496, + "observedLargestContentfulPaintTs": 284538504, + "observedLargestContentfulPaintAllFrames": 1496, + "observedLargestContentfulPaintAllFramesTs": 284538504, + "observedTraceEnd": 4687, + "observedTraceEndTs": 287729603, + "observedLoad": 2378, + "observedLoadTs": 285420845, + "observedDomContentLoaded": 1350, + "observedDomContentLoadedTs": 284392917, "observedCumulativeLayoutShift": 0.1810907236735026, "observedCumulativeLayoutShiftMainFrame": 0.1810907236735026, "observedTotalCumulativeLayoutShift": 0.1810907236735026, - "observedFirstVisualChange": 1058, - "observedFirstVisualChangeTs": 209440667, - "observedLastVisualChange": 1492, - "observedLastVisualChangeTs": 209874667, - "observedSpeedIndex": 1165, - "observedSpeedIndexTs": 209547284 + "observedFirstVisualChange": 1329, + "observedFirstVisualChangeTs": 284371428, + "observedLastVisualChange": 1646, + "observedLastVisualChangeTs": 284688428, + "observedSpeedIndex": 1437, + "observedSpeedIndexTs": 284479287 }, { "lcpInvalidated": false @@ -570090,18 +571165,18 @@ "numScripts": 11, "numStylesheets": 3, "numFonts": 4, - "numTasks": 797, - "numTasksOver10ms": 4, + "numTasks": 809, + "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.646, - "throughput": 16570889.351765387, - "maxRtt": 112.925, - "maxServerLatency": 175.82, - "totalByteWeight": 1312663, - "totalTaskTime": 274.20599999999996, + "rtt": 136.195, + "throughput": 12292401.794975203, + "maxRtt": 140.98999999999998, + "maxServerLatency": 7.061000000000007, + "totalByteWeight": 1312807, + "totalTaskTime": 200.1489999999997, "mainDocumentTransferSize": 17301 } ] @@ -570168,7 +571243,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9496294021606445, + "lighthouse_performance": 0.9496019363403321, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -570198,7 +571273,191 @@ "annuaire-collectivites", "anct" ], - "http": null, + "http": { + "url": "https://marcenais-33620.collectivite.fr", + "algorithm_version": 2, + "end_time": "Sun, 24 Dec 2023 20:04:45 GMT", + "grade": "C+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "content-type": "text/html", + "date": "Sun, 24 Dec 2023 20:04:43 GMT", + "keep-alive": "timeout=5", + "referrer-policy": "no-referrer", + "strict-transport-security": "max-age=31536000", + "transfer-encoding": "chunked", + "x-frame-options": "SAMEORIGIN" + }, + "scan_id": 45772449, + "score": 60, + "start_time": "Sun, 24 Dec 2023 20:04:34 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://collectivite.fr/marcenais", + "redirects": true, + "route": [ + "http://marcenais-33620.collectivite.fr/", + "https://marcenais-33620.collectivite.fr:443/", + "https://collectivite.fr/marcenais" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "marcenais-33620.collectivite.fr", @@ -570579,7 +571838,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", @@ -570782,7 +572041,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1702850433" + "finding": "1703448383" }, { "id": "HSTS_time", @@ -571352,7 +572611,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "141" + "finding": "74" } ], "thirdparties": { @@ -571385,6 +572644,14 @@ "type": "unknown", "url": "https://commons.wikimedia.org/wiki/Special:FilePath/Blason%20d%C3%A9partement%20fr%20Gironde.svg" }, + { + "type": "unknown", + "url": "https://collectivite.fr/dsfr/artwork/pictograms/system/information.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/dsfr/artwork/pictograms/document/document.svg" + }, { "type": "unknown", "url": "https://commons.wikimedia.org/wiki/Special:FilePath/Blason_d%C3%A9partement_fr_Gironde.svg" @@ -571399,11 +572666,11 @@ }, { "type": "unknown", - "url": "https://collectivite.fr/dsfr/artwork/pictograms/system/information.svg" + "url": "https://collectivite.fr/_astro/hoisted.d1fad544.js" }, { "type": "unknown", - "url": "https://collectivite.fr/dsfr/artwork/pictograms/document/document.svg" + "url": "https://collectivite.fr/_astro/Infos.astro_astro_type_script_index_0_lang.932d7958.js" }, { "type": "unknown", @@ -571421,14 +572688,6 @@ "type": "unknown", "url": "https://collectivite.fr/scripts/matomo.js" }, - { - "type": "unknown", - "url": "https://collectivite.fr/_astro/hoisted.d1fad544.js" - }, - { - "type": "unknown", - "url": "https://collectivite.fr/_astro/Infos.astro_astro_type_script_index_0_lang.932d7958.js" - }, { "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/icons/system/menu-fill.svg" @@ -571449,18 +572708,6 @@ "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular.woff2" }, - { - "type": "unknown", - "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Bold.woff2" - }, - { - "type": "unknown", - "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Medium.woff2" - }, - { - "type": "unknown", - "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular.woff2" - }, { "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/icons/buildings/government-line.svg" @@ -571509,6 +572756,22 @@ "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/icons/map/car-line.svg" }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular_Italic.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular.woff2" + }, { "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/icons/system/fr--info-fill.svg" @@ -571528,10 +572791,6 @@ { "type": "unknown", "url": "https://collectivite.fr/styles/dsfr/icons/communication/question-answer-line.svg" - }, - { - "type": "unknown", - "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular_Italic.woff2" } ], "cookies": [ @@ -571540,7 +572799,7 @@ "value": "1", "domain": "collectivite.fr", "path": "/", - "expires": 1702852119, + "expires": 1703450113, "size": 15, "httpOnly": false, "secure": false, @@ -571552,10 +572811,10 @@ }, { "name": "_pk_id.6.88ba", - "value": "3a36621d1c167883.1702850319.", + "value": "082f05eb162195b9.1703448314.", "domain": "collectivite.fr", "path": "/", - "expires": 1736805519, + "expires": 1737403514, "size": 41, "httpOnly": false, "secure": false, @@ -571568,7 +572827,7 @@ ], "headers": { "content-type": "text/html", - "date": "Sun, 17 Dec 2023 21:58:37 GMT", + "date": "Sun, 24 Dec 2023 20:05:12 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "x-frame-options": "SAMEORIGIN" @@ -571766,7 +573025,7 @@ }, { "hostname": "commons.wikimedia.org", - "ip": "198.35.26.96", + "ip": "208.80.154.224", "geoip": { "continent": { "code": "NA", @@ -571820,7 +573079,7 @@ }, { "hostname": "upload.wikimedia.org", - "ip": "198.35.26.112", + "ip": "208.80.154.240", "geoip": { "continent": { "code": "NA", @@ -571905,7 +573164,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:44:12", + "@generated": "Sun, 24 Dec 2023 20:04:07", "site": [ { "@name": "https://marcenais-33620.collectivite.fr", @@ -572055,7 +573314,7 @@ "type": "dns", "host": "marcenais-33620.collectivite.fr.", "matched-at": "marcenais-33620.collectivite.fr", - "timestamp": "2023-12-17T22:02:46.691121511Z", + "timestamp": "2023-12-24T20:07:53.097043914Z", "matcher-status": true }, { @@ -572090,7 +573349,7 @@ "extracted-results": [ "lb-kubernetes-prod.incubateur.anct.gouv.fr." ], - "timestamp": "2023-12-17T22:02:47.821423317Z", + "timestamp": "2023-12-24T20:07:53.388666336Z", "matcher-status": true }, { @@ -572108,7 +573367,8 @@ "novnc", "cve", "cve2021", - "seclists" + "seclists", + "openstack" ], "description": "Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.", "reference": [ @@ -572134,7 +573394,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss-score": 6.1, "epss-score": 0.92596, - "epss-percentile": 0.98754, + "epss-percentile": 0.98773, "cpe": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*" }, "remediation": "Apply the latest security patches or updates provided by the vendor to fix the open redirect vulnerability in the Nova noVNC application.\n" @@ -572143,7 +573403,7 @@ "host": "https://marcenais-33620.collectivite.fr", "matched-at": "https://marcenais-33620.collectivite.fr//interact.sh/%2f..", "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:03:28.304738438Z", + "timestamp": "2023-12-24T20:08:20.700767876Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr//interact.sh/%2f..'", "matcher-status": true }, @@ -572171,7 +573431,7 @@ "host": "https://marcenais-33620.collectivite.fr", "matched-at": "https://marcenais-33620.collectivite.fr/robots.txt", "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:04:40.58121922Z", + "timestamp": "2023-12-24T20:09:10.875071841Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr/robots.txt'", "matcher-status": true }, @@ -572216,84 +573476,89 @@ "redirect": "/evil.com/%2F.." }, "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:05:33.870472692Z", + "timestamp": "2023-12-24T20:09:55.911530452Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr//evil.com/%2F..'", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "marcenais-33620.collectivite.fr", "matched-at": "marcenais-33620.collectivite.fr:443", "extracted-results": [ - "tls12" + "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:05:58.694216302Z", + "timestamp": "2023-12-24T20:10:46.216805302Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "marcenais-33620.collectivite.fr", "matched-at": "marcenais-33620.collectivite.fr:443", "extracted-results": [ - "tls13" + "*.collectivite.fr" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:05:59.020922074Z", + "timestamp": "2023-12-24T20:10:46.216915878Z", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/wildcard-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/wildcard-tls", + "template-id": "wildcard-tls", + "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "Wildcard TLS Certificate", "author": [ - "lingtren" + "lucky0x0d" ], "tags": [ - "ssl" + "ssl", + "wildcard", + "tls" + ], + "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -572303,74 +573568,73 @@ "host": "marcenais-33620.collectivite.fr", "matched-at": "marcenais-33620.collectivite.fr:443", "extracted-results": [ - "Let's Encrypt" + " SAN: [*.collectivite.fr]", + "CN: *.collectivite.fr" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:06:15.397624712Z", + "timestamp": "2023-12-24T20:10:46.216980728Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "marcenais-33620.collectivite.fr", "matched-at": "marcenais-33620.collectivite.fr:443", "extracted-results": [ - "*.collectivite.fr" + "tls12" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:06:15.397887101Z", + "timestamp": "2023-12-24T20:10:57.901771405Z", "matcher-status": true }, { - "template": "ssl/wildcard-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/wildcard-tls", - "template-id": "wildcard-tls", - "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Wildcard TLS Certificate", + "name": "TLS Version - Detect", "author": [ - "lucky0x0d" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", - "wildcard", "tls" ], - "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" - ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "marcenais-33620.collectivite.fr", "matched-at": "marcenais-33620.collectivite.fr:443", "extracted-results": [ - "CN: *.collectivite.fr", - " SAN: [*.collectivite.fr]" + "tls13" ], "ip": "51.159.10.161", - "timestamp": "2023-12-17T22:06:15.397934129Z", + "timestamp": "2023-12-24T20:10:58.097928652Z", "matcher-status": true } ], @@ -572378,7 +573642,7 @@ { "requestedUrl": "https://marcenais-33620.collectivite.fr/", "finalUrl": "https://collectivite.fr/marcenais", - "fetchTime": "2023-12-17T21:44:27.150Z", + "fetchTime": "2023-12-24T20:04:21.005Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://marcenais-33620.collectivite.fr/) was redirected to https://collectivite.fr/marcenais. Try testing the second URL directly." ], @@ -572391,7 +573655,7 @@ "snapshot" ], "id": "performance", - "score": 0.956760025024414 + "score": 0.956745719909668 }, "accessibility": { "title": "Accessibility", @@ -572443,53 +573707,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11601, + "numericValue": 10430, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7847, - "firstMeaningfulPaint": 7877, - "largestContentfulPaint": 9386, - "interactive": 11601, - "speedIndex": 12009, - "totalBlockingTime": 513, - "maxPotentialFID": 1055, + "firstContentfulPaint": 6920, + "firstMeaningfulPaint": 6920, + "largestContentfulPaint": 8270, + "interactive": 10430, + "speedIndex": 9286, + "totalBlockingTime": 20, + "maxPotentialFID": 89, "cumulativeLayoutShift": 0.06648058372073702, "cumulativeLayoutShiftMainFrame": 0.06648058372073702, "totalCumulativeLayoutShift": 0.06648058372073702, "observedTimeOrigin": 0, - "observedTimeOriginTs": 337959747, + "observedTimeOriginTs": 262299860, "observedNavigationStart": 0, - "observedNavigationStartTs": 337959747, - "observedFirstPaint": 4539, - "observedFirstPaintTs": 342498999, - "observedFirstContentfulPaint": 4539, - "observedFirstContentfulPaintTs": 342498999, - "observedFirstContentfulPaintAllFrames": 4539, - "observedFirstContentfulPaintAllFramesTs": 342498999, - "observedFirstMeaningfulPaint": 4577, - "observedFirstMeaningfulPaintTs": 342536372, - "observedLargestContentfulPaint": 4577, - "observedLargestContentfulPaintTs": 342536372, - "observedLargestContentfulPaintAllFrames": 4577, - "observedLargestContentfulPaintAllFramesTs": 342536372, - "observedTraceEnd": 8092, - "observedTraceEndTs": 346051910, - "observedLoad": 5783, - "observedLoadTs": 343742955, - "observedDomContentLoaded": 4528, - "observedDomContentLoadedTs": 342487513, + "observedNavigationStartTs": 262299860, + "observedFirstPaint": 3548, + "observedFirstPaintTs": 265848140, + "observedFirstContentfulPaint": 3548, + "observedFirstContentfulPaintTs": 265848140, + "observedFirstContentfulPaintAllFrames": 3548, + "observedFirstContentfulPaintAllFramesTs": 265848140, + "observedFirstMeaningfulPaint": 3592, + "observedFirstMeaningfulPaintTs": 265891844, + "observedLargestContentfulPaint": 3592, + "observedLargestContentfulPaintTs": 265891844, + "observedLargestContentfulPaintAllFrames": 3592, + "observedLargestContentfulPaintAllFramesTs": 265891844, + "observedTraceEnd": 6394, + "observedTraceEndTs": 268693575, + "observedLoad": 4087, + "observedLoadTs": 266387299, + "observedDomContentLoaded": 3660, + "observedDomContentLoadedTs": 265959556, "observedCumulativeLayoutShift": 0.06648058372073702, "observedCumulativeLayoutShiftMainFrame": 0.06648058372073702, "observedTotalCumulativeLayoutShift": 0.06648058372073702, - "observedFirstVisualChange": 4509, - "observedFirstVisualChangeTs": 342468747, - "observedLastVisualChange": 4826, - "observedLastVisualChangeTs": 342785747, - "observedSpeedIndex": 4590, - "observedSpeedIndexTs": 342550131 + "observedFirstVisualChange": 3556, + "observedFirstVisualChangeTs": 265855860, + "observedLastVisualChange": 3872, + "observedLastVisualChangeTs": 266171860, + "observedSpeedIndex": 3599, + "observedSpeedIndexTs": 265898364 }, { "lcpInvalidated": false @@ -572511,19 +573775,19 @@ "numScripts": 6, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1165, - "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasks": 1106, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.377, - "throughput": 9377290.80946678, - "maxRtt": 154.204, - "maxServerLatency": 254.408, - "totalByteWeight": 1275278, - "totalTaskTime": 492.4929999999972, - "mainDocumentTransferSize": 90433 + "rtt": 22.85, + "throughput": 14722888.008035475, + "maxRtt": 80.752, + "maxServerLatency": 252.76499999999993, + "totalByteWeight": 1275353, + "totalTaskTime": 203.93699999999922, + "mainDocumentTransferSize": 90442 } ] } @@ -572583,6 +573847,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "C+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -572593,7 +573858,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 44, - "lighthouse_performance": 0.956760025024414, + "lighthouse_performance": 0.956745719909668, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", @@ -572616,7 +573881,257 @@ "url": "https://a-just.beta.gouv.fr", "category": "startup", "betaId": "a-just", - "http": null, + "http": { + "url": "https://a-just.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 24 Dec 2023 20:11:03 GMT", + "grade": "D", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 24 Dec 2023 20:11:02 GMT", + "Strict-Transport-Security": "max-age=15552000; includeSubDomains", + "Transfer-Encoding": "chunked", + "Vary": "Origin, Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-DNS-Prefetch-Control": "off", + "X-Download-Options": "noopen", + "X-Frame-Options": "SAMEORIGIN", + "X-RateLimit-Limit": "1000", + "X-RateLimit-Remaining": "980", + "X-RateLimit-Reset": "1703448827", + "X-Request-ID": "149e535b-29e5-4b9e-bf94-89ae1035aebf", + "X-XSS-Protection": "1; mode=block" + }, + "scan_id": 45772529, + "score": 30, + "start_time": "Sun, 24 Dec 2023 20:10:59 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 10, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "*.stonly.com", + "https://api.mapbox.com", + "https://api.gitbook.com", + "https://forms-eu1.hsforms.com", + "https://hubspot-forms-static-embed-eu1.s3.amazonaws.com", + "'self'", + "stonly.com", + "https://www.google-analytics.com/j/collect", + "https://stats.beta-gouv.cloud-ed.fr", + "https://events.mapbox.com", + "https://stats.beta.gouv.fr" + ], + "font-src": [ + "https://fonts.gstatic.com", + "'self'", + "data:" + ], + "frame-src": [ + "*.stonly.com", + "https://meta.a-just.beta.gouv.fr", + "https://forms-eu1.hsforms.com/", + "stonly.com", + "https://docs.a-just.beta.gouv.fr", + "https://calendly.com" + ], + "img-src": [ + "https://forms-eu1.hsforms.com", + "https://forms.hsforms.com", + "'self'", + "data:", + "https://api.hubspot.com", + "https://js-eu1.hsforms.net" + ], + "script-src": [ + "'none'" + ], + "style-src": [ + "'self'", + "'unsafe-inline'" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, + "meta": true, + "numPolicies": 2, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "https://http-observatory.security.mozilla.org", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": false, + "result": "cross-origin-resource-sharing-implemented-with-universal-access", + "score_description": "Content is visible via cross-origin resource sharing (CORS) file or headers", + "score_modifier": -50 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://a-just.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://a-just.beta.gouv.fr/", + "https://a-just.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=15552000; includeSubDomains", + "includeSubDomains": true, + "max-age": 15552000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, "updownio": { "token": "2uyb", "url": "https://a-just.beta.gouv.fr/", @@ -572637,15 +574152,15 @@ "email:3205808100", "slack_compatible:4124784183" ], - "last_check_at": "2023-12-17T22:22:04Z", - "next_check_at": "2023-12-17T22:27:03Z", + "last_check_at": "2023-12-24T20:24:20Z", + "next_check_at": "2023-12-24T20:29:18Z", "mute_until": null, "favicon_url": "https://a-just.beta.gouv.fr/favicon.ico", "custom_headers": {}, "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2023-12-17T21:37:18Z", + "tested_at": "2023-12-24T20:24:20Z", "expires_at": "2024-02-05T10:49:07Z", "valid": true, "error": null @@ -572654,11 +574169,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 88, - "connection": 72, - "handshake": 104, - "response": 78, - "total": 342 + "namelookup": 146, + "connection": 154, + "handshake": 158, + "response": 158, + "total": 616 } }, "uptimeGrade": "A", @@ -572691,77 +574206,77 @@ "testssl": [ { "id": "service", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572769,7 +574284,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572777,7 +574292,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572785,7 +574300,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572793,7 +574308,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -572801,7 +574316,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -572809,518 +574324,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-07 10:49" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-02-05 10:49" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702851009" + "finding": "1703448796" }, { "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" + "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" }, { "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -573328,7 +574843,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -573337,7 +574852,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -573346,7 +574861,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -573355,7 +574870,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -573364,7 +574879,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -573372,7 +574887,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -573381,7 +574896,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -573390,7 +574905,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -573399,7 +574914,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -573408,14 +574923,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -573424,7 +574939,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -573433,7 +574948,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -573442,7 +574957,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -573451,7 +574966,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -573460,7 +574975,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -573469,7 +574984,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -573478,7 +574993,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -573487,7 +575002,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -573496,7 +575011,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -573505,392 +575020,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573898,7 +575413,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573906,7 +575421,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573914,7 +575429,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573922,7 +575437,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -573930,7 +575445,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -573938,518 +575453,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-07 10:49" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-05 10:49" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702851106" + "finding": "1703448895" }, { "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" + "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" }, { "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -574457,7 +575972,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -574466,7 +575981,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -574475,7 +575990,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -574484,7 +575999,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -574493,7 +576008,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -574501,7 +576016,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -574510,7 +576025,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -574519,7 +576034,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -574528,7 +576043,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -574537,14 +576052,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -574553,7 +576068,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -574562,7 +576077,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -574571,7 +576086,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -574580,7 +576095,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -574589,7 +576104,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -574598,7 +576113,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -574607,7 +576122,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -574616,7 +576131,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -574625,7 +576140,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -574634,392 +576149,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -575027,7 +576542,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -575035,7 +576550,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -575043,7 +576558,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -575051,7 +576566,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -575059,7 +576574,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -575067,518 +576582,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-07 10:49" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-05 10:49" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702851203" + "finding": "1703448994" }, { "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" + "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" }, { "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -575586,7 +577101,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -575595,7 +577110,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -575604,7 +577119,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -575613,7 +577128,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -575622,7 +577137,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -575630,7 +577145,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -575639,7 +577154,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -575648,7 +577163,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -575657,7 +577172,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -575666,14 +577181,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -575682,7 +577197,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -575691,7 +577206,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -575700,7 +577215,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -575709,7 +577224,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -575718,7 +577233,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -575727,7 +577242,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -575736,7 +577251,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -575745,7 +577260,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -575754,7 +577269,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -575763,392 +577278,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -576156,7 +577671,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -576164,7 +577679,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -576172,7 +577687,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -576180,7 +577695,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -576188,7 +577703,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -576196,518 +577711,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "42 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-07 10:49" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-02-05 10:49" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702851300" + "finding": "1703449094" }, { "id": "HSTS_time", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "180 days (=15552000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" + "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:" }, { "id": "X-XSS-Protection", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -576715,7 +578230,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -576724,7 +578239,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -576733,7 +578248,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -576742,7 +578257,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -576751,7 +578266,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -576759,7 +578274,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -576768,7 +578283,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -576777,7 +578292,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -576786,7 +578301,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -576795,14 +578310,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -576811,7 +578326,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -576820,7 +578335,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -576829,7 +578344,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -576838,7 +578353,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -576847,7 +578362,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -576856,7 +578371,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -576865,7 +578380,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -576874,7 +578389,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -576883,7 +578398,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -576892,325 +578407,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "392" + "finding": "400" } ], "thirdparties": { @@ -577221,7 +578736,7 @@ "value": "1", "domain": "a-just.beta.gouv.fr", "path": "/", - "expires": 1702852713, + "expires": 1703450497, "size": 16, "httpOnly": false, "secure": false, @@ -577233,10 +578748,10 @@ }, { "name": "_pk_id.65.6e7b", - "value": "648880bb613aa5da.1702850913.", + "value": "974883dfe22a207b.1703448697.", "domain": "a-just.beta.gouv.fr", "path": "/", - "expires": 1736806113, + "expires": 1737403897, "size": 42, "httpOnly": false, "secure": false, @@ -577249,9 +578764,9 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:", + "content-security-policy": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com;style-src 'self' 'unsafe-inline';worker-src blob:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 22:08:30 GMT", + "date": "Sun, 24 Dec 2023 20:11:34 GMT", "strict-transport-security": "max-age=15552000; includeSubDomains", "vary": "Origin, Accept-Encoding", "x-content-type-options": "nosniff", @@ -577259,15 +578774,15 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-ratelimit-limit": "1000", - "x-ratelimit-remaining": "999", - "x-ratelimit-reset": "1702851211", - "x-request-id": "09c0721d-cce7-47d1-a955-8380bb4ef584", + "x-ratelimit-remaining": "997", + "x-ratelimit-reset": "1703448738", + "x-request-id": "562c4414-e87c-4b15-87b4-48aa42c6e471", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "a-just.beta.gouv.fr", - "ip": "185.21.194.105", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -577636,7 +579151,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:54:02", + "@generated": "Sun, 24 Dec 2023 20:10:31", "site": [ { "@name": "https://a-just.beta.gouv.fr", @@ -577776,23 +579291,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -577808,11 +579322,7 @@ "type": "dns", "host": "a-just.beta.gouv.fr.", "matched-at": "a-just.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2023-12-17T22:16:47.558610065Z", + "timestamp": "2023-12-24T20:20:05.252024659Z", "matcher-status": true }, { @@ -577850,7 +579360,7 @@ "extracted-results": [ "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T22:16:47.716588351Z", + "timestamp": "2023-12-24T20:20:05.25228621Z", "matcher-status": true }, { @@ -577890,24 +579400,28 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2023-12-17T22:16:47.718120812Z", + "timestamp": "2023-12-24T20:20:05.41346913Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -577923,30 +579437,27 @@ "host": "a-just.beta.gouv.fr.", "matched-at": "a-just.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2023-12-17T22:16:48.41697469Z", + "timestamp": "2023-12-24T20:20:05.450549438Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -577961,7 +579472,11 @@ "type": "dns", "host": "a-just.beta.gouv.fr.", "matched-at": "a-just.beta.gouv.fr", - "timestamp": "2023-12-17T22:16:48.552208414Z", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2023-12-24T20:20:06.25222101Z", "matcher-status": true }, { @@ -578000,8 +579515,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:05.48963443Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:20:24.676230166Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578038,8 +579553,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:38.821266951Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:02.085990262Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578075,8 +579590,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.279741215Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.115965395Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578112,8 +579627,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.279788032Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116008846Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578149,8 +579664,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.27980855Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116029184Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578186,8 +579701,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.279824249Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116042419Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578223,8 +579738,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.279838616Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116056375Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578260,8 +579775,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.279853324Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116071072Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578297,8 +579812,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:17:52.27986766Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:17.116084598Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -578337,8 +579852,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:18:26.743449025Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:21:55.750507272Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: a-just.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr/'", "matcher-status": true }, @@ -578377,11 +579892,11 @@ "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", "meta": { - "cors_origin": "https://fqimfbeta.gouv.fr" + "cors_origin": "https://mxpm6beta.gouv.fr" }, - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:18:34.075816372Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: a-just.beta.gouv.fr' -H 'Origin: https://fqimfbeta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:22:04.005331413Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: a-just.beta.gouv.fr' -H 'Origin: https://mxpm6beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, { @@ -578395,7 +579910,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -578409,8 +579925,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:24:15.695707839Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:27:47.909220614Z", "matcher-status": true }, { @@ -578424,7 +579940,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -578438,8 +579955,8 @@ "extracted-results": [ "a-just.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:24:15.695818005Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:27:47.909322955Z", "matcher-status": true }, { @@ -578454,7 +579971,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -578468,8 +579986,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:24:18.338180127Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:27:50.353600049Z", "matcher-status": true }, { @@ -578484,7 +580002,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -578498,8 +580017,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:24:18.743820381Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:27:50.66664009Z", "matcher-status": true } ], @@ -578507,7 +580026,7 @@ { "requestedUrl": "https://a-just.beta.gouv.fr/", "finalUrl": "https://a-just.beta.gouv.fr/", - "fetchTime": "2023-12-17T21:54:16.775Z", + "fetchTime": "2023-12-24T20:10:45.634Z", "runWarnings": [], "categories": { "performance": { @@ -578518,7 +580037,7 @@ "snapshot" ], "id": "performance", - "score": 0.8073707580566406 + "score": 0.8071910858154296 }, "accessibility": { "title": "Accessibility", @@ -578539,7 +580058,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.83 + "score": 1 }, "seo": { "title": "SEO", @@ -578570,53 +580089,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10671, + "numericValue": 11024, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7207, - "firstMeaningfulPaint": 7207, - "largestContentfulPaint": 10958, - "interactive": 10671, - "speedIndex": 7785, - "totalBlockingTime": 671, - "maxPotentialFID": 531, + "firstContentfulPaint": 7346, + "firstMeaningfulPaint": 7346, + "largestContentfulPaint": 11241, + "interactive": 11024, + "speedIndex": 9007, + "totalBlockingTime": 1057, + "maxPotentialFID": 1017, "cumulativeLayoutShift": 0.020806369251675075, "cumulativeLayoutShiftMainFrame": 0.020806369251675075, "totalCumulativeLayoutShift": 0.020806369251675075, "observedTimeOrigin": 0, - "observedTimeOriginTs": 242051929, + "observedTimeOriginTs": 386376296, "observedNavigationStart": 0, - "observedNavigationStartTs": 242051929, - "observedFirstPaint": 1025, - "observedFirstPaintTs": 243076865, - "observedFirstContentfulPaint": 2041, - "observedFirstContentfulPaintTs": 244093059, - "observedFirstContentfulPaintAllFrames": 2041, - "observedFirstContentfulPaintAllFramesTs": 244093059, - "observedFirstMeaningfulPaint": 2041, - "observedFirstMeaningfulPaintTs": 244093059, - "observedLargestContentfulPaint": 2187, - "observedLargestContentfulPaintTs": 244239176, - "observedLargestContentfulPaintAllFrames": 2187, - "observedLargestContentfulPaintAllFramesTs": 244239176, - "observedTraceEnd": 5046, - "observedTraceEndTs": 247097782, - "observedLoad": 2737, - "observedLoadTs": 244788909, - "observedDomContentLoaded": 1857, - "observedDomContentLoadedTs": 243908955, + "observedNavigationStartTs": 386376296, + "observedFirstPaint": 1864, + "observedFirstPaintTs": 388240671, + "observedFirstContentfulPaint": 2795, + "observedFirstContentfulPaintTs": 389171763, + "observedFirstContentfulPaintAllFrames": 2795, + "observedFirstContentfulPaintAllFramesTs": 389171763, + "observedFirstMeaningfulPaint": 2795, + "observedFirstMeaningfulPaintTs": 389171763, + "observedLargestContentfulPaint": 3007, + "observedLargestContentfulPaintTs": 389382815, + "observedLargestContentfulPaintAllFrames": 3007, + "observedLargestContentfulPaintAllFramesTs": 389382815, + "observedTraceEnd": 5774, + "observedTraceEndTs": 392150514, + "observedLoad": 3466, + "observedLoadTs": 389842154, + "observedDomContentLoaded": 2598, + "observedDomContentLoadedTs": 388974723, "observedCumulativeLayoutShift": 0.020806369251675075, "observedCumulativeLayoutShiftMainFrame": 0.020806369251675075, "observedTotalCumulativeLayoutShift": 0.020806369251675075, - "observedFirstVisualChange": 2054, - "observedFirstVisualChangeTs": 244105929, - "observedLastVisualChange": 2204, - "observedLastVisualChangeTs": 244255929, - "observedSpeedIndex": 2184, - "observedSpeedIndexTs": 244236397 + "observedFirstVisualChange": 2808, + "observedFirstVisualChangeTs": 389184296, + "observedLastVisualChange": 3024, + "observedLastVisualChangeTs": 389400296, + "observedSpeedIndex": 2965, + "observedSpeedIndexTs": 389341426 }, { "lcpInvalidated": false @@ -578634,23 +580153,23 @@ "type": "debugdata", "items": [ { - "numRequests": 20, + "numRequests": 21, "numScripts": 8, "numStylesheets": 1, "numFonts": 3, - "numTasks": 510, - "numTasksOver10ms": 6, - "numTasksOver25ms": 5, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasks": 518, + "numTasksOver10ms": 8, + "numTasksOver25ms": 6, + "numTasksOver50ms": 2, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 136.316, - "throughput": 12897950.104832763, - "maxRtt": 146.76000000000002, - "maxServerLatency": 10.146999999999963, - "totalByteWeight": 2058508, - "totalTaskTime": 481.32499999999936, - "mainDocumentTransferSize": 2173 + "rtt": 148.514, + "throughput": 12082260.514116459, + "maxRtt": 150.35400000000004, + "maxServerLatency": 10.954000000000008, + "totalByteWeight": 2059450, + "totalTaskTime": 645.5550000000002, + "mainDocumentTransferSize": 2243 } ] } @@ -578740,6 +580259,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "D", "apdex": 1, "apdexGrade": "A", "uptime": 99.977, @@ -578754,12 +580274,12 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.8073707580566406, + "lighthouse_performance": 0.8071910858154296, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.86, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.78, "lighthouse_seoGrade": "B", "lighthouse_pwa": 0.3, @@ -578788,7 +580308,7 @@ "http": { "url": "https://dotations.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 01:09:10 GMT", + "end_time": "Sun, 24 Dec 2023 00:58:50 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -578796,16 +580316,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 01:09:09 GMT", + "Date": "Sun, 24 Dec 2023 00:58:48 GMT", "ETag": "\"nqv8a0gusi1nr\"", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "80df3047-8ece-4fd2-a302-dd84cedce8b1" + "X-Request-ID": "dd893ac1-0933-4eef-81f4-ab985a449d03" }, - "scan_id": 45536282, + "scan_id": 45751315, "score": 0, - "start_time": "Sun, 17 Dec 2023 01:09:02 GMT", + "start_time": "Sun, 24 Dec 2023 00:58:35 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -578998,77 +580518,77 @@ "testssl": [ { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -579076,7 +580596,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -579084,7 +580604,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -579092,7 +580612,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -579100,7 +580620,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -579108,7 +580628,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -579116,441 +580636,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-10 15:42" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-08 15:42" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1702850428" + "finding": "1703449088" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -579558,7 +581078,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -579567,7 +581087,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -579576,7 +581096,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -579585,7 +581105,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -579594,7 +581114,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -579602,7 +581122,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -579611,7 +581131,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -579620,7 +581140,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -579629,7 +581149,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -579638,14 +581158,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -579654,7 +581174,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -579663,7 +581183,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -579672,7 +581192,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -579681,7 +581201,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -579690,7 +581210,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -579699,7 +581219,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -579708,7 +581228,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -579717,7 +581237,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -579726,7 +581246,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -579735,399 +581255,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -580135,7 +581655,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -580143,7 +581663,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -580151,7 +581671,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -580159,7 +581679,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -580167,7 +581687,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -580175,441 +581695,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-10 15:42" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-08 15:42" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1702850524" + "finding": "1703449187" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -580617,7 +582137,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -580626,7 +582146,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -580635,7 +582155,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -580644,7 +582164,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -580653,7 +582173,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -580661,7 +582181,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -580670,7 +582190,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -580679,7 +582199,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -580688,7 +582208,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -580697,14 +582217,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -580713,7 +582233,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -580722,7 +582242,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -580731,7 +582251,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -580740,7 +582260,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -580749,7 +582269,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -580758,7 +582278,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -580767,7 +582287,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -580776,7 +582296,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -580785,7 +582305,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -580794,399 +582314,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -581194,7 +582714,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -581202,7 +582722,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -581210,7 +582730,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -581218,7 +582738,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -581226,7 +582746,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -581234,441 +582754,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-10 15:42" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-08 15:42" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1702850619" + "finding": "1703449285" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -581676,7 +583196,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -581685,7 +583205,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -581694,7 +583214,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -581703,7 +583223,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -581712,7 +583232,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -581720,7 +583240,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -581729,7 +583249,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -581738,7 +583258,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -581747,7 +583267,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -581756,14 +583276,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -581772,7 +583292,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -581781,7 +583301,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -581790,7 +583310,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -581799,7 +583319,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -581808,7 +583328,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -581817,7 +583337,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -581826,7 +583346,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -581835,7 +583355,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -581844,7 +583364,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -581853,399 +583373,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -582253,7 +583773,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -582261,7 +583781,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -582269,7 +583789,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -582277,7 +583797,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -582285,7 +583805,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -582293,441 +583813,441 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "45 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-10 15:42" }, { "id": "cert_notAfter", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-08 15:42" }, { "id": "cert_extlifeSpan", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1702850713" + "finding": "1703449383" }, { "id": "HSTS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -582735,7 +584255,7 @@ }, { "id": "heartbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -582744,7 +584264,7 @@ }, { "id": "CCS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -582753,7 +584273,7 @@ }, { "id": "ticketbleed", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -582762,7 +584282,7 @@ }, { "id": "ROBOT", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -582771,7 +584291,7 @@ }, { "id": "secure_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -582779,7 +584299,7 @@ }, { "id": "secure_client_renego", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -582788,7 +584308,7 @@ }, { "id": "CRIME_TLS", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -582797,7 +584317,7 @@ }, { "id": "BREACH", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -582806,7 +584326,7 @@ }, { "id": "POODLE_SSL", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -582815,14 +584335,14 @@ }, { "id": "fallback_SCSV", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -582831,7 +584351,7 @@ }, { "id": "FREAK", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -582840,7 +584360,7 @@ }, { "id": "DROWN", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -582849,7 +584369,7 @@ }, { "id": "DROWN_hint", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -582858,7 +584378,7 @@ }, { "id": "LOGJAM", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -582867,7 +584387,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -582876,7 +584396,7 @@ }, { "id": "BEAST", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -582885,7 +584405,7 @@ }, { "id": "LUCKY13", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -582894,7 +584414,7 @@ }, { "id": "winshock", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -582903,7 +584423,7 @@ }, { "id": "RC4", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -582912,332 +584432,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "388" + "finding": "398" } ], "thirdparties": { @@ -583291,17 +584811,257 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 21:59:00 GMT", + "date": "Sun, 24 Dec 2023 20:16:35 GMT", "etag": "\"nqv8a0gusi1nr\"", "vary": "Accept-Encoding", "x-powered-by": "Next.js", - "x-request-id": "dcc3e837-32c7-4e14-9a3a-fa7b500b3cc2" + "x-request-id": "9325bc4b-ce91-4493-9775-992800cb0ba8" }, "endpoints": [ { "hostname": "dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 47.6376, + "longitude": 7.4798, + "time_zone": "Europe/Paris" + }, + "postal": { + "code": "68870" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "151.101.41.229", + "geoip": { + "city": { + "geoname_id": 5392171, + "names": { + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "95141" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "territoires.leximpact.dev", + "ip": "51.15.157.233", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "dotations-locales-back.osc-fr1.scalingo.io", + "ip": "5.104.101.30", + "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -583333,10 +585093,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -583351,207 +585114,29 @@ "ru": "Франция", "zh-CN": "法国" } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "146.75.93.229", - "geoip": { - "city": { - "geoname_id": 5368361, - "names": { - "de": "Los Angeles", - "en": "Los Angeles", - "es": "Los Ángeles", - "fr": "Los Angeles", - "ja": "ロサンゼルス", - "pt-BR": "Los Angeles", - "ru": "Лос-Анджелес", - "zh-CN": "洛杉矶" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 34.0544, - "longitude": -118.244, - "metro_code": 803, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "90012" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 11071622, + "iso_code": "GES", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" } } ] } - }, - { - "hostname": "territoires.leximpact.dev", - "ip": "51.15.157.233", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "dotations-locales-back.osc-fr1.scalingo.io", - "ip": "109.232.233.130", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } } ] }, @@ -583769,7 +585354,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 21:58:15", + "@generated": "Sun, 24 Dec 2023 20:15:54", "site": [ { "@name": "https://dotations.incubateur.anct.gouv.fr", @@ -583916,73 +585501,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "dotations.incubateur.anct.gouv.fr.", "matched-at": "dotations.incubateur.anct.gouv.fr", - "timestamp": "2023-12-17T22:07:03.823119877Z", + "extracted-results": [ + "dotations-locales-app.osc-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T20:24:53.942301281Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "dotations.incubateur.anct.gouv.fr.", "matched-at": "dotations.incubateur.anct.gouv.fr", - "extracted-results": [ - "dotations-locales-app.osc-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T22:07:04.279898132Z", + "timestamp": "2023-12-24T20:24:54.324808784Z", "matcher-status": true }, { @@ -584011,8 +585596,8 @@ "GET", "HEAD" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:07:14.616485508Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:25:05.486671463Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584034,12 +585619,12 @@ "max-request": 1 } }, - "matcher-name": "jsdelivr", + "matcher-name": "next.js", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:07:55.092091015Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:25:50.407379096Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584061,12 +585646,12 @@ "max-request": 1 } }, - "matcher-name": "next.js", + "matcher-name": "jsdelivr", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:07:55.092129116Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:25:50.407427005Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584098,12 +585683,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-frame-options", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382361404Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240555892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584135,12 +585720,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382411217Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240595766Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584172,12 +585757,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382429792Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240606596Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584209,12 +585794,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382442696Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240620862Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584246,12 +585831,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "content-security-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382457434Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240742298Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584283,12 +585868,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382473714Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240762495Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584320,12 +585905,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382487149Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240776101Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584357,12 +585942,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382501085Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240789185Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584394,12 +585979,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382515512Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240802459Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584431,12 +586016,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382531852Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240815534Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584468,12 +586053,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:09.382544486Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:06.240828428Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -584500,8 +586085,8 @@ "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr/robots.txt", - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:08:24.494308044Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:26:22.923964514Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr/robots.txt'", "matcher-status": true }, @@ -584516,7 +586101,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -584530,8 +586116,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:14:33.894189137Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:32:37.59909115Z", "matcher-status": true }, { @@ -584545,7 +586131,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -584559,8 +586146,8 @@ "extracted-results": [ "dotations.incubateur.anct.gouv.fr" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:14:33.894310112Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:32:37.599231952Z", "matcher-status": true }, { @@ -584575,7 +586162,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -584589,8 +586177,8 @@ "extracted-results": [ "tls12" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:14:36.246271522Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:32:39.777277243Z", "matcher-status": true }, { @@ -584605,7 +586193,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -584619,8 +586208,8 @@ "extracted-results": [ "tls13" ], - "ip": "5.104.101.30", - "timestamp": "2023-12-17T22:14:36.634969253Z", + "ip": "148.253.75.120", + "timestamp": "2023-12-24T20:32:40.097403031Z", "matcher-status": true } ], @@ -584628,7 +586217,7 @@ { "requestedUrl": "https://dotations.incubateur.anct.gouv.fr/", "finalUrl": "https://dotations.incubateur.anct.gouv.fr/", - "fetchTime": "2023-12-17T21:58:29.679Z", + "fetchTime": "2023-12-24T20:16:08.474Z", "runWarnings": [], "categories": { "performance": { @@ -584691,53 +586280,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6741, + "numericValue": 6857, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2062, - "firstMeaningfulPaint": 2846, - "largestContentfulPaint": 4071, - "interactive": 6741, - "speedIndex": 4649, - "totalBlockingTime": 353, - "maxPotentialFID": 243, + "firstContentfulPaint": 2221, + "firstMeaningfulPaint": 2936, + "largestContentfulPaint": 4127, + "interactive": 6857, + "speedIndex": 5204, + "totalBlockingTime": 619, + "maxPotentialFID": 282, "cumulativeLayoutShift": 0.000041549682617187505, "cumulativeLayoutShiftMainFrame": 0.000041549682617187505, "totalCumulativeLayoutShift": 0.000041549682617187505, "observedTimeOrigin": 0, - "observedTimeOriginTs": 211650821, + "observedTimeOriginTs": 527537308, "observedNavigationStart": 0, - "observedNavigationStartTs": 211650821, - "observedFirstPaint": 1260, - "observedFirstPaintTs": 212910647, - "observedFirstContentfulPaint": 1260, - "observedFirstContentfulPaintTs": 212910647, - "observedFirstContentfulPaintAllFrames": 1260, - "observedFirstContentfulPaintAllFramesTs": 212910647, - "observedFirstMeaningfulPaint": 1260, - "observedFirstMeaningfulPaintTs": 212910647, - "observedLargestContentfulPaint": 1260, - "observedLargestContentfulPaintTs": 212910647, - "observedLargestContentfulPaintAllFrames": 1260, - "observedLargestContentfulPaintAllFramesTs": 212910647, - "observedTraceEnd": 4118, - "observedTraceEndTs": 215768602, - "observedLoad": 1163, - "observedLoadTs": 212814222, - "observedDomContentLoaded": 1159, - "observedDomContentLoadedTs": 212809904, + "observedNavigationStartTs": 527537308, + "observedFirstPaint": 1952, + "observedFirstPaintTs": 529489220, + "observedFirstContentfulPaint": 1952, + "observedFirstContentfulPaintTs": 529489220, + "observedFirstContentfulPaintAllFrames": 1952, + "observedFirstContentfulPaintAllFramesTs": 529489220, + "observedFirstMeaningfulPaint": 1952, + "observedFirstMeaningfulPaintTs": 529489220, + "observedLargestContentfulPaint": 1952, + "observedLargestContentfulPaintTs": 529489220, + "observedLargestContentfulPaintAllFrames": 1952, + "observedLargestContentfulPaintAllFramesTs": 529489220, + "observedTraceEnd": 4873, + "observedTraceEndTs": 532410016, + "observedLoad": 1847, + "observedLoadTs": 529383898, + "observedDomContentLoaded": 1842, + "observedDomContentLoadedTs": 529379448, "observedCumulativeLayoutShift": 0.000041549682617187505, "observedCumulativeLayoutShiftMainFrame": 0.000041549682617187505, "observedTotalCumulativeLayoutShift": 0.000041549682617187505, - "observedFirstVisualChange": 1257, - "observedFirstVisualChangeTs": 212907821, - "observedLastVisualChange": 1890, - "observedLastVisualChangeTs": 213540821, - "observedSpeedIndex": 1313, - "observedSpeedIndexTs": 212964148 + "observedFirstVisualChange": 1958, + "observedFirstVisualChangeTs": 529495308, + "observedLastVisualChange": 2591, + "observedLastVisualChangeTs": 530128308, + "observedSpeedIndex": 2048, + "observedSpeedIndexTs": 529585316 }, { "lcpInvalidated": false @@ -584759,18 +586348,18 @@ "numScripts": 8, "numStylesheets": 2, "numFonts": 4, - "numTasks": 663, - "numTasksOver10ms": 5, + "numTasks": 641, + "numTasksOver10ms": 6, "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, + "numTasksOver50ms": 3, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0, - "throughput": 9024033.003178256, - "maxRtt": 149.23700000000002, - "maxServerLatency": 8.143999999999998, - "totalByteWeight": 791994, - "totalTaskTime": 293.3499999999993, + "rtt": 0.7039999999999997, + "throughput": 5514096.057316599, + "maxRtt": 153.644, + "maxServerLatency": 121.44500000000005, + "totalByteWeight": 792307, + "totalTaskTime": 461.7150000000002, "mainDocumentTransferSize": 1133 } ] @@ -584891,7 +586480,264 @@ "staging" ], "betaId": "data-subvention", - "http": null, + "http": { + "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "algorithm_version": 2, + "end_time": "Sun, 24 Dec 2023 20:25:56 GMT", + "grade": "C+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 24 Dec 2023 20:25:55 GMT", + "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains; preload", + "Transfer-Encoding": "chunked", + "X-Request-ID": "6fca3619-7b6e-40e4-9f30-1ace1e239a64", + "access-control-allow-origin": "*", + "cache-control": "max-age 1800", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-P3Gp2J0GvV+ltgL/cn6IRQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "etag": "W/\"l14otd\"", + "link": "<./_app/immutable/entry/start.abe7a536.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.1895b7ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.85ffb9a0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.31490321.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.d5dd2597.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.545cbe0b.js>; rel=\"modulepreload\"; nopush", + "x-content-type-options": "nosniff", + "x-frame-options": "SAMEORIGIN", + "x-sveltekit-page": "true" + }, + "scan_id": 45772735, + "score": 60, + "start_time": "Sun, 24 Dec 2023 20:25:53 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "https://client.crisp.chat/", + "wss://stream.relay.crisp.chat", + "'self'", + "https://storage.crisp.chat", + "https://stats.data.gouv.fr", + "wss://client.relay.crisp.chat/w/b1/", + "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", + "https://geo.api.gouv.fr", + "https://sentry.incubateur.net" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "'self'", + "https://client.crisp.chat" + ], + "frame-src": [ + "https://game.crisp.chat", + "'self'" + ], + "img-src": [ + "data:", + "https://storage.crisp.chat", + "'self'", + "https://client.crisp.chat", + "https://image.crisp.chat" + ], + "report-to": [ + "'csp-endpoint'" + ], + "report-uri": [ + "https://sentry.incubateur.net" + ], + "script-src": [ + "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", + "'self'", + "https://client.crisp.chat", + "'nonce-p3gp2j0gvv+ltgl/cn6irq=='", + "https://stats.data.gouv.fr", + "'unsafe-eval'", + "https://settings.crisp.chat", + "https://sentry.incubateur.net" + ], + "style-src": [ + "'unsafe-inline'", + "'self'", + "https://client.crisp.chat" + ], + "worker-src": [ + "blob:" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": false, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-eval", + "score_description": "Content Security Policy (CSP) implemented, but allows 'unsafe-eval'", + "score_modifier": -10 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": "*", + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-implemented-with-public-access", + "score_description": "Public content is visible via cross-origin resource sharing (CORS) Access-Control-Allow-Origin header", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "redirects": true, + "route": [ + "http://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", + "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000, max-age=63072000; includeSubDomains; preload", + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-header-invalid", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", @@ -584920,77 +586766,77 @@ "testssl": [ { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -584998,7 +586844,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -585006,7 +586852,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -585014,7 +586860,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -585022,7 +586868,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -585030,7 +586876,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -585038,497 +586884,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIF6TCCA9GgAwIBAgIQBeTcO5Q4qzuFl8umoZhQ4zANBgkqhkiG9w0BAQwFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTQwOTEyMDAwMDAwWhcNMjQwOTExMjM1OTU5WjBfMQswCQYDVQQGEwJGUjEOMAwGA1UECBMFUGFyaXMxDjAMBgNVBAcTBVBhcmlzMQ4wDAYDVQQKEwVHYW5kaTEgMB4GA1UEAxMXR2FuZGkgU3RhbmRhcmQgU1NMIENBIDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUBC2meZV0/9UAPPWu2JSxKXzAjwsLibmCg5duNyj1ohrP0pILm6jTh5RzhBCf3DXLwi2SrCG5yzv8QMHBgyHwv/j2nPqcghDA0I5O5Q1MsJFckLSkQFEW2uSEEi0FXKEfFxkkUap66uEHG4aNAXLy59SDIzme4OFMH2sio7QQZrDtgpbXbmq08j+1QvzdirWrui0dOnWbMdw+naxb00ENbLAb9Tr1eeohovj0M1JLJC0epJmxbUi8uBL+cnB89/sCdfSN3tbawKAyGlLfOGsuRTg/PwSWAP2h9KK71RfWJ3wbWFmVXooS/ZyrgT5SKEhRhWvzkbKGPym1bgNi7tYFAgMBAAGjggF1MIIBcTAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUs5Cn2MmvTs1hPJ98rV1/Qf1pMOowDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAWGf9crJq13xhlhl+2UNG0SZ9yFP6ZrBrLafTqlb3OojQO3LJUP33WbKqaPWMcwO7lWUXzi8c3ZgTopHJ7qFAbjyY1lzzsiI8Le4bpOHeICQW8owRc5E69vrOJAKHypPstLbIFhfFcvwnQPYT/pOmnVHvPCvYd1ebjGU6NSU2t7WKY28HJ5OxYI2A25bUeo8tqxyIyW5+1mUfr13KFj8oRtygNeX56eXVlogMT8a3d2dIhCe2H7Bo26y/d7CQuKLJHDJdArolQ4FCR7vY4Y8MDEZf7kYzawMUgtN+zY+vkNaOJH1AQrRqahfGlZfh8jjNp+20J0CT33KpuMZmYzc4ZCIwojvxuch7yPspOqsactIGEk72gtQjbz7Dk+XYtsDe3CMW1hMwt6CaDixVBgBwAc/qOR2A24j3pSC4W/0xJmmPLQphgzpHphNULB7j7UTKvGofKA5R2d4On3XNDgOVyvnFqSot/kGkoUeuDcL5OWYzSlvhhChZbH2UF3bkRYKtcCD90m9jqNf6oDP6N8v3smWe2lBvP+Sn845dWDKXcCMu5/3EFZucJ48y7RetWIExKREam9T8bJUox04FB6b9HbwZ4ui3uRGKLXASUoWNjDNKD/yZkuBjcNqllEdjB+dYxzFfBT02Vf6Dsuimrdfp5gJ0iHRc2jTbkNJtUQoj1iM=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702852739" + "finding": "1703449664" }, { "id": "HSTS_multiple", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-2h5CbAtgXShhTfU3jIzptA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-AxNN+aH10my/hueU2WUwnA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -585536,7 +587382,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -585545,7 +587391,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -585554,7 +587400,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -585563,7 +587409,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -585572,7 +587418,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -585580,7 +587426,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -585589,7 +587435,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -585598,7 +587444,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -585607,7 +587453,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -585616,14 +587462,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -585632,7 +587478,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -585641,7 +587487,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -585650,7 +587496,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -585659,7 +587505,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -585668,7 +587514,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -585677,7 +587523,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -585686,7 +587532,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -585695,7 +587541,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -585704,7 +587550,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -585713,315 +587559,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -586380,7 +588226,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "HIGH", - "finding": "expires < 30 days (26)" + "finding": "expires < 30 days (19)" }, { "id": "cert_notBefore", @@ -586534,14 +588380,14 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702852791" + "finding": "1703449759" }, { "id": "HSTS_multiple", @@ -586618,7 +588464,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-a6/Pj6I2sVxJqZc48/hkrg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-zarbnjIfFUc3slvNv81RsQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", @@ -587136,77 +588982,77 @@ }, { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -587214,7 +589060,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -587222,7 +589068,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -587230,7 +589076,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -587238,7 +589084,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -587246,7 +589092,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -587254,497 +589100,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702852845" + "finding": "1703449854" }, { "id": "HSTS_multiple", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-Jh+25Q4280YBdT2y/WxkSA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-QgelM27cAMJ3clOHJu0c+g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -587752,7 +589598,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -587761,7 +589607,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -587770,7 +589616,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -587779,7 +589625,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -587788,7 +589634,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -587796,7 +589642,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -587805,7 +589651,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -587814,7 +589660,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -587823,7 +589669,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -587832,14 +589678,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -587848,7 +589694,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -587857,7 +589703,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -587866,7 +589712,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -587875,7 +589721,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -587884,7 +589730,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -587893,7 +589739,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -587902,7 +589748,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -587911,7 +589757,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -587920,7 +589766,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -587929,392 +589775,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -588322,7 +590168,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -588330,7 +590176,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -588338,7 +590184,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -588346,7 +590192,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -588354,7 +590200,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -588362,497 +590208,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIF6TCCA9GgAwIBAgIQBeTcO5Q4qzuFl8umoZhQ4zANBgkqhkiG9w0BAQwFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTQwOTEyMDAwMDAwWhcNMjQwOTExMjM1OTU5WjBfMQswCQYDVQQGEwJGUjEOMAwGA1UECBMFUGFyaXMxDjAMBgNVBAcTBVBhcmlzMQ4wDAYDVQQKEwVHYW5kaTEgMB4GA1UEAxMXR2FuZGkgU3RhbmRhcmQgU1NMIENBIDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUBC2meZV0/9UAPPWu2JSxKXzAjwsLibmCg5duNyj1ohrP0pILm6jTh5RzhBCf3DXLwi2SrCG5yzv8QMHBgyHwv/j2nPqcghDA0I5O5Q1MsJFckLSkQFEW2uSEEi0FXKEfFxkkUap66uEHG4aNAXLy59SDIzme4OFMH2sio7QQZrDtgpbXbmq08j+1QvzdirWrui0dOnWbMdw+naxb00ENbLAb9Tr1eeohovj0M1JLJC0epJmxbUi8uBL+cnB89/sCdfSN3tbawKAyGlLfOGsuRTg/PwSWAP2h9KK71RfWJ3wbWFmVXooS/ZyrgT5SKEhRhWvzkbKGPym1bgNi7tYFAgMBAAGjggF1MIIBcTAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUs5Cn2MmvTs1hPJ98rV1/Qf1pMOowDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAWGf9crJq13xhlhl+2UNG0SZ9yFP6ZrBrLafTqlb3OojQO3LJUP33WbKqaPWMcwO7lWUXzi8c3ZgTopHJ7qFAbjyY1lzzsiI8Le4bpOHeICQW8owRc5E69vrOJAKHypPstLbIFhfFcvwnQPYT/pOmnVHvPCvYd1ebjGU6NSU2t7WKY28HJ5OxYI2A25bUeo8tqxyIyW5+1mUfr13KFj8oRtygNeX56eXVlogMT8a3d2dIhCe2H7Bo26y/d7CQuKLJHDJdArolQ4FCR7vY4Y8MDEZf7kYzawMUgtN+zY+vkNaOJH1AQrRqahfGlZfh8jjNp+20J0CT33KpuMZmYzc4ZCIwojvxuch7yPspOqsactIGEk72gtQjbz7Dk+XYtsDe3CMW1hMwt6CaDixVBgBwAc/qOR2A24j3pSC4W/0xJmmPLQphgzpHphNULB7j7UTKvGofKA5R2d4On3XNDgOVyvnFqSot/kGkoUeuDcL5OWYzSlvhhChZbH2UF3bkRYKtcCD90m9jqNf6oDP6N8v3smWe2lBvP+Sn845dWDKXcCMu5/3EFZucJ48y7RetWIExKREam9T8bJUox04FB6b9HbwZ4ui3uRGKLXASUoWNjDNKD/yZkuBjcNqllEdjB+dYxzFfBT02Vf6Dsuimrdfp5gJ0iHRc2jTbkNJtUQoj1iM=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702852898" + "finding": "1703449950" }, { "id": "HSTS_multiple", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-DG3XYOZp/plmLO9MpgNaKA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-wxM2lDsGJrYxCEkheRQb2g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -588860,7 +590706,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -588869,7 +590715,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -588878,7 +590724,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -588887,7 +590733,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -588896,7 +590742,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -588904,7 +590750,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -588913,7 +590759,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -588922,7 +590768,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -588931,7 +590777,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -588940,14 +590786,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -588956,7 +590802,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -588965,7 +590811,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -588974,7 +590820,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -588983,7 +590829,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -588992,7 +590838,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -589001,7 +590847,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -589010,7 +590856,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -589019,7 +590865,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -589028,7 +590874,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -589037,325 +590883,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "215" + "finding": "384" } ], "thirdparties": { @@ -589366,19 +591212,19 @@ }, { "type": "unknown", - "url": "https://sentry.incubateur.net/api/101/envelope/?sentry_key=5d47efb730804541a53e916f0bd27cea&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.74.0" + "url": "https://client.crisp.chat/static/javascripts/client.js?2940d8d" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?2940d8d" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?2940d8d" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?2940d8d" + "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-20-26" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-22-38" + "url": "https://sentry.incubateur.net/api/101/envelope/?sentry_key=5d47efb730804541a53e916f0bd27cea&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.74.0" }, { "type": "unknown", @@ -589438,21 +591284,21 @@ "access-control-allow-origin": "*", "cache-control": "max-age 1800", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-J7nAV5ac+hh/u6DOqQvcQQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-UDpQNHKr2FuwPWt7Ksd0ew=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 22:38:17 GMT", - "etag": "W/\"11wg7z5\"", - "link": "<./_app/immutable/entry/start.131534a3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.cc595ab3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.11265877.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.ec067c7b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.131f4fd9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.44360820.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 24 Dec 2023 20:26:30 GMT", + "etag": "W/\"wk8pax\"", + "link": "<./_app/immutable/entry/start.abe7a536.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.1895b7ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.85ffb9a0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.31490321.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.d5dd2597.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.545cbe0b.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "62c1cba3-dfcc-4eae-ab87-0c0ef184daca", + "x-request-id": "3722a9bb-0e89-4788-8d89-99ff6a53a02a", "x-sveltekit-page": "true" }, "endpoints": [ { "hostname": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -589826,7 +591672,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 22:24:12", + "@generated": "Sun, 24 Dec 2023 20:25:25", "site": [ { "@name": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", @@ -589973,73 +591819,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "timestamp": "2023-12-17T22:43:01.016001659Z", + "extracted-results": [ + "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." + ], + "timestamp": "2023-12-24T20:34:18.171774275Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." - ], - "timestamp": "2023-12-17T22:43:01.072270125Z", + "timestamp": "2023-12-24T20:34:18.173272222Z", "matcher-status": true }, { @@ -590068,7 +591914,7 @@ "GET, HEAD, OPTIONS" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:07.708560162Z", + "timestamp": "2023-12-24T20:34:28.222664537Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590103,12 +591949,12 @@ "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "extracted-results": [ - "\"SENTRY_AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"", "\"NODE_ENV\":\"production\"", - "AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"" + "AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"", + "\"SENTRY_AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:33.960222409Z", + "timestamp": "2023-12-24T20:35:08.588221199Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590146,7 +591992,7 @@ "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:34.00345574Z", + "timestamp": "2023-12-24T20:35:08.63261343Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590178,12 +592024,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.360754711Z", + "timestamp": "2023-12-24T20:35:22.125508598Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590215,12 +592061,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.360812498Z", + "timestamp": "2023-12-24T20:35:22.125550477Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590252,12 +592098,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.360829009Z", + "timestamp": "2023-12-24T20:35:22.1255683Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590289,12 +592135,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.360841923Z", + "timestamp": "2023-12-24T20:35:22.125582947Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590326,12 +592172,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.3608566Z", + "timestamp": "2023-12-24T20:35:22.125597675Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590363,12 +592209,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.360870456Z", + "timestamp": "2023-12-24T20:35:22.125611441Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590400,12 +592246,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:43:42.36088324Z", + "timestamp": "2023-12-24T20:35:22.125624395Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -590420,7 +592266,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -590435,7 +592282,7 @@ "Gandi" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:49:43.048546168Z", + "timestamp": "2023-12-24T20:41:45.862240315Z", "matcher-status": true }, { @@ -590449,7 +592296,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -590461,11 +592309,11 @@ "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", "extracted-results": [ - "*.osc-secnum-fr1.scalingo.io", - "osc-secnum-fr1.scalingo.io" + "osc-secnum-fr1.scalingo.io", + "*.osc-secnum-fr1.scalingo.io" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:49:43.048656974Z", + "timestamp": "2023-12-24T20:41:45.862372182Z", "matcher-status": true }, { @@ -590500,7 +592348,7 @@ " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:49:43.04870274Z", + "timestamp": "2023-12-24T20:41:45.862431543Z", "matcher-status": true }, { @@ -590515,7 +592363,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -590530,7 +592379,7 @@ "tls12" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:49:44.080857888Z", + "timestamp": "2023-12-24T20:41:47.95116503Z", "matcher-status": true }, { @@ -590545,7 +592394,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -590560,7 +592410,7 @@ "tls13" ], "ip": "185.21.194.105", - "timestamp": "2023-12-17T22:49:44.319120462Z", + "timestamp": "2023-12-24T20:41:48.380206579Z", "matcher-status": true } ], @@ -590568,7 +592418,7 @@ { "requestedUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2023-12-17T22:24:25.813Z", + "fetchTime": "2023-12-24T20:25:40.889Z", "runWarnings": [], "categories": { "performance": { @@ -590631,53 +592481,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4103, + "numericValue": 4608, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2619, - "firstMeaningfulPaint": 2732, - "largestContentfulPaint": 4312, - "interactive": 4103, - "speedIndex": 3451, - "totalBlockingTime": 136, - "maxPotentialFID": 136, - "cumulativeLayoutShift": 0.5413816479576958, - "cumulativeLayoutShiftMainFrame": 0.5413816479576958, - "totalCumulativeLayoutShift": 0.5413816479576958, + "firstContentfulPaint": 2769, + "firstMeaningfulPaint": 2769, + "largestContentfulPaint": 4001, + "interactive": 4608, + "speedIndex": 4347, + "totalBlockingTime": 222, + "maxPotentialFID": 196, + "cumulativeLayoutShift": 0.0634908718532986, + "cumulativeLayoutShiftMainFrame": 0.0634908718532986, + "totalCumulativeLayoutShift": 0.0634908718532986, "observedTimeOrigin": 0, - "observedTimeOriginTs": 369442986, + "observedTimeOriginTs": 294970806, "observedNavigationStart": 0, - "observedNavigationStartTs": 369442986, - "observedFirstPaint": 831, - "observedFirstPaintTs": 370274265, - "observedFirstContentfulPaint": 831, - "observedFirstContentfulPaintTs": 370274265, - "observedFirstContentfulPaintAllFrames": 831, - "observedFirstContentfulPaintAllFramesTs": 370274265, - "observedFirstMeaningfulPaint": 831, - "observedFirstMeaningfulPaintTs": 370274265, - "observedLargestContentfulPaint": 881, - "observedLargestContentfulPaintTs": 370324362, - "observedLargestContentfulPaintAllFrames": 881, - "observedLargestContentfulPaintAllFramesTs": 370324362, - "observedTraceEnd": 4507, - "observedTraceEndTs": 373949944, - "observedLoad": 358, - "observedLoadTs": 369800902, - "observedDomContentLoaded": 322, - "observedDomContentLoadedTs": 369764498, - "observedCumulativeLayoutShift": 0.5413816479576958, - "observedCumulativeLayoutShiftMainFrame": 0.5413816479576958, - "observedTotalCumulativeLayoutShift": 0.5413816479576958, - "observedFirstVisualChange": 842, - "observedFirstVisualChangeTs": 370284986, - "observedLastVisualChange": 1175, - "observedLastVisualChangeTs": 370617986, - "observedSpeedIndex": 915, - "observedSpeedIndexTs": 370357518 + "observedNavigationStartTs": 294970806, + "observedFirstPaint": 1329, + "observedFirstPaintTs": 296299429, + "observedFirstContentfulPaint": 1329, + "observedFirstContentfulPaintTs": 296299429, + "observedFirstContentfulPaintAllFrames": 1329, + "observedFirstContentfulPaintAllFramesTs": 296299429, + "observedFirstMeaningfulPaint": 1329, + "observedFirstMeaningfulPaintTs": 296299429, + "observedLargestContentfulPaint": 1329, + "observedLargestContentfulPaintTs": 296299429, + "observedLargestContentfulPaintAllFrames": 1329, + "observedLargestContentfulPaintAllFramesTs": 296299429, + "observedTraceEnd": 5152, + "observedTraceEndTs": 300122521, + "observedLoad": 486, + "observedLoadTs": 295457049, + "observedDomContentLoaded": 443, + "observedDomContentLoadedTs": 295413546, + "observedCumulativeLayoutShift": 0.0634908718532986, + "observedCumulativeLayoutShiftMainFrame": 0.0634908718532986, + "observedTotalCumulativeLayoutShift": 0.0634908718532986, + "observedFirstVisualChange": 1334, + "observedFirstVisualChangeTs": 296304806, + "observedLastVisualChange": 1484, + "observedLastVisualChangeTs": 296454806, + "observedSpeedIndex": 1344, + "observedSpeedIndexTs": 296314314 }, { "lcpInvalidated": false @@ -590699,19 +592549,19 @@ "numScripts": 36, "numStylesheets": 6, "numFonts": 4, - "numTasks": 1406, - "numTasksOver10ms": 11, - "numTasksOver25ms": 6, - "numTasksOver50ms": 1, + "numTasks": 1409, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.199000000000001, - "throughput": 23707648.540989835, - "maxRtt": 84.85, - "maxServerLatency": 11.821999999999996, - "totalByteWeight": 546891, - "totalTaskTime": 471.22499999999764, - "mainDocumentTransferSize": 4369 + "rtt": 8.63, + "throughput": 10683747.529607302, + "maxRtt": 149.67299999999997, + "maxServerLatency": 10.389999999999999, + "totalByteWeight": 546670, + "totalTaskTime": 409.2339999999992, + "mainDocumentTransferSize": 4373 } ] } @@ -590793,6 +592643,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "C+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -590837,7 +592688,7 @@ "http": { "url": "https://app.datasubvention.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 22:39:22 GMT", + "end_time": "Sun, 24 Dec 2023 20:45:00 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -590845,22 +592696,22 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 22:39:21 GMT", + "Date": "Sun, 24 Dec 2023 20:44:59 GMT", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains; preload", "Transfer-Encoding": "chunked", - "X-Request-ID": "bd12dcad-92a1-4ce4-a511-a8098109000e", + "X-Request-ID": "7fbb2174-b1b7-4612-a508-6fe0e483e967", "access-control-allow-origin": "*", "cache-control": "max-age 1800", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-nzpTD7Y6GiqjctARgMOvVg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "etag": "W/\"1hunrt4\"", - "link": "<./_app/immutable/entry/start.a30dc64d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.e76eb2af.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.c3564572.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.6e74a0cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.ce1c5882.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.fed36857.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.1ef47a0a.js>; rel=\"modulepreload\"; nopush", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-BcWFhJjjCpET61sp3ONEAg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "etag": "W/\"13edkqc\"", + "link": "<./_app/immutable/entry/start.abe7a536.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.1895b7ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.85ffb9a0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33e12219.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.d5dd2597.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.fed36857.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.545cbe0b.js>; rel=\"modulepreload\"; nopush", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-sveltekit-page": "true" }, - "scan_id": 45564678, + "scan_id": 45773010, "score": 60, - "start_time": "Sun, 17 Dec 2023 22:26:41 GMT", + "start_time": "Sun, 24 Dec 2023 20:44:56 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -590873,15 +592724,15 @@ "output": { "data": { "connect-src": [ - "https://geo.api.gouv.fr", - "https://stats.data.gouv.fr", + "https://client.crisp.chat/", + "wss://stream.relay.crisp.chat", "'self'", + "https://storage.crisp.chat", + "https://stats.data.gouv.fr", "wss://client.relay.crisp.chat/w/b1/", - "https://client.crisp.chat/", "https://api.datasubvention.beta.gouv.fr", - "wss://stream.relay.crisp.chat", - "https://sentry.incubateur.net", - "https://storage.crisp.chat" + "https://geo.api.gouv.fr", + "https://sentry.incubateur.net" ], "default-src": [ "'self'" @@ -590895,11 +592746,11 @@ "'self'" ], "img-src": [ - "'self'", "data:", - "https://image.crisp.chat", "https://storage.crisp.chat", - "https://client.crisp.chat" + "'self'", + "https://client.crisp.chat", + "https://image.crisp.chat" ], "report-to": [ "'csp-endpoint'" @@ -590908,18 +592759,18 @@ "https://sentry.incubateur.net" ], "script-src": [ - "https://sentry.incubateur.net", - "'unsafe-eval'", - "https://stats.data.gouv.fr", + "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", "'self'", - "'nonce-nzptd7y6giqjctargmovvg=='", + "https://client.crisp.chat", + "https://stats.data.gouv.fr", + "'unsafe-eval'", "https://settings.crisp.chat", - "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", - "https://client.crisp.chat" + "'nonce-bcwfhjjjcpet61sp3oneag=='", + "https://sentry.incubateur.net" ], "style-src": [ - "'self'", "'unsafe-inline'", + "'self'", "https://client.crisp.chat" ], "worker-src": [ @@ -591120,77 +592971,77 @@ "testssl": [ { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -591198,7 +593049,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -591206,7 +593057,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -591214,7 +593065,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -591222,7 +593073,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -591230,7 +593081,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -591238,532 +593089,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-10-29 08:03" }, { "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-27 08:03" }, { "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702852866" + "finding": "1703450779" }, { "id": "HSTS_multiple", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-J16WDpy+y02XM70LNLeAZA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-UbiVavd8WGsFGSE4B1uYXw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -591771,7 +593622,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -591780,7 +593631,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -591789,7 +593640,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -591798,7 +593649,7 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -591807,7 +593658,7 @@ }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -591815,7 +593666,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -591824,7 +593675,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -591833,7 +593684,7 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -591842,7 +593693,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -591851,14 +593702,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -591867,7 +593718,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -591876,7 +593727,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -591885,7 +593736,7 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -591894,7 +593745,7 @@ }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -591903,7 +593754,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -591912,7 +593763,7 @@ }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -591921,7 +593772,7 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -591930,7 +593781,7 @@ }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -591939,7 +593790,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -591948,392 +593799,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -592341,7 +594192,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -592349,7 +594200,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -592357,7 +594208,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -592365,7 +594216,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -592373,7 +594224,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -592381,532 +594232,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-10-29 08:03" }, { "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-27 08:03" }, { "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702852963" + "finding": "1703450837" }, { "id": "HSTS_multiple", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-t67DJRnXfSR3EtBsnmJPrQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-A7FNpGKPSUljY3tvv8agog=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -592914,7 +594765,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -592923,7 +594774,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -592932,7 +594783,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -592941,7 +594792,7 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -592950,7 +594801,7 @@ }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -592958,7 +594809,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -592967,7 +594818,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -592976,7 +594827,7 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -592985,7 +594836,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -592994,14 +594845,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -593010,7 +594861,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -593019,7 +594870,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -593028,7 +594879,7 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -593037,7 +594888,7 @@ }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -593046,7 +594897,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -593055,7 +594906,7 @@ }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -593064,7 +594915,7 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -593073,7 +594924,7 @@ }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -593082,7 +594933,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -593091,315 +594942,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", + "ip": "app.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" @@ -593604,14 +595455,14 @@ "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -593751,7 +595602,7 @@ "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "40 >= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", @@ -593954,7 +595805,7 @@ "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702853059" + "finding": "1703450895" }, { "id": "HSTS_multiple", @@ -594031,7 +595882,7 @@ "ip": "app.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-ojm3OOMHJ1xTytgUNSquJg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-CmIu5Go5gGuhie/m+/aRpg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", @@ -594549,77 +596400,77 @@ }, { "id": "service", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -594627,7 +596478,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -594635,7 +596486,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -594643,7 +596494,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -594651,7 +596502,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -594659,7 +596510,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -594667,532 +596518,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-10-29 08:03" }, { "id": "cert_notAfter", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-27 08:03" }, { "id": "cert_extlifeSpan", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702853156" + "finding": "1703450953" }, { "id": "HSTS_multiple", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-7+zjDU0BY1+TpzwHTaFPWA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-QL+DrkLuYfKnOtTM3dQGvA=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -595200,7 +597051,7 @@ }, { "id": "heartbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -595209,7 +597060,7 @@ }, { "id": "CCS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -595218,7 +597069,7 @@ }, { "id": "ticketbleed", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -595227,7 +597078,7 @@ }, { "id": "ROBOT", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -595236,7 +597087,7 @@ }, { "id": "secure_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -595244,7 +597095,7 @@ }, { "id": "secure_client_renego", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -595253,7 +597104,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -595262,7 +597113,7 @@ }, { "id": "BREACH", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -595271,7 +597122,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -595280,14 +597131,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -595296,7 +597147,7 @@ }, { "id": "FREAK", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -595305,7 +597156,7 @@ }, { "id": "DROWN", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -595314,7 +597165,7 @@ }, { "id": "DROWN_hint", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -595323,7 +597174,7 @@ }, { "id": "LOGJAM", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -595332,7 +597183,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -595341,7 +597192,7 @@ }, { "id": "BEAST", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -595350,7 +597201,7 @@ }, { "id": "LUCKY13", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -595359,7 +597210,7 @@ }, { "id": "winshock", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -595368,7 +597219,7 @@ }, { "id": "RC4", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -595377,325 +597228,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "app.datasubvention.beta.gouv.fr/80.247.13.145", + "ip": "app.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "391" + "finding": "234" } ], "thirdparties": { @@ -595704,10 +597555,6 @@ "type": "unknown", "url": "https://client.crisp.chat/l.js" }, - { - "type": "unknown", - "url": "https://sentry.incubateur.net/api/101/envelope/?sentry_key=5d47efb730804541a53e916f0bd27cea&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.74.0" - }, { "type": "unknown", "url": "https://client.crisp.chat/static/javascripts/client.js?2940d8d" @@ -595718,7 +597565,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-22-39" + "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-20-45" }, { "type": "unknown", @@ -595740,6 +597587,10 @@ "type": "unknown", "url": "https://client.crisp.chat/static/javascripts/locales/en.js?2940d8d" }, + { + "type": "unknown", + "url": "https://sentry.incubateur.net/api/101/envelope/?sentry_key=5d47efb730804541a53e916f0bd27cea&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.74.0" + }, { "type": "unknown", "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fdf82169218f89000%2F1555594446856_1fvlg5p.jpeg&width=60&height=60&1702285946014" @@ -595771,6 +597622,10 @@ { "type": "unknown", "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?2940d8d" + }, + { + "type": "unknown", + "url": "https://sentry.incubateur.net/api/101/envelope/?sentry_key=5d47efb730804541a53e916f0bd27cea&sentry_version=7&sentry_client=sentry.javascript.sveltekit%2F7.74.0" } ], "cookies": [ @@ -595779,7 +597634,7 @@ "value": "1", "domain": "app.datasubvention.beta.gouv.fr", "path": "/", - "expires": 1702854590, + "expires": 1703452534, "size": 17, "httpOnly": false, "secure": false, @@ -595791,10 +597646,10 @@ }, { "name": "_pk_id.256.9f88", - "value": "9d85b8f0e95b303b.1702852790.", + "value": "8b72f7e2bf526491.1703450735.", "domain": "app.datasubvention.beta.gouv.fr", "path": "/", - "expires": 1736807990, + "expires": 1737405935, "size": 43, "httpOnly": false, "secure": false, @@ -595803,27 +597658,42 @@ "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 + }, + { + "name": "crisp-client%2Fsession%2F9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058", + "value": "session_53f80c8b-fb21-4cc0-8d74-01cf70eb629b", + "domain": ".beta.gouv.fr", + "path": "/", + "expires": 1719218734, + "size": 105, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], "headers": { "access-control-allow-origin": "*", "cache-control": "max-age 1800", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-wdSoVkcQzljkqEukvOcSsw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api.datasubvention.beta.gouv.fr https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://stats.data.gouv.fr https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://stats.data.gouv.fr https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-4BMZsGbSvjZOCm4bys6/oQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 22:39:48 GMT", - "etag": "W/\"1l9jscg\"", - "link": "<./_app/immutable/entry/start.a30dc64d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.e76eb2af.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.c3564572.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.6e74a0cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.ce1c5882.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.fed36857.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.1ef47a0a.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 24 Dec 2023 20:45:33 GMT", + "etag": "W/\"8fbsl4\"", + "link": "<./_app/immutable/entry/start.abe7a536.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.bb78aeef.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.1895b7ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.c207924c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.85ffb9a0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33e12219.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.d5dd2597.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.cf722f60.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.fed36857.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.545cbe0b.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "a7937bdd-8225-48ff-84e0-817b8330f100", + "x-request-id": "068ad2af-7065-4f2e-9359-7f4a6d879a67", "x-sveltekit-page": "true" }, "endpoints": [ { "hostname": "app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -596197,7 +598067,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 22:26:14", + "@generated": "Sun, 24 Dec 2023 20:44:30", "site": [ { "@name": "https://app.datasubvention.beta.gouv.fr", @@ -596344,73 +598214,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "app.datasubvention.beta.gouv.fr.", "matched-at": "app.datasubvention.beta.gouv.fr", - "timestamp": "2023-12-17T22:47:42.9723768Z", + "extracted-results": [ + "front-data-subvention-prod.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2023-12-24T20:50:42.64154398Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "app.datasubvention.beta.gouv.fr.", "matched-at": "app.datasubvention.beta.gouv.fr", - "extracted-results": [ - "front-data-subvention-prod.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2023-12-17T22:47:43.74575115Z", + "timestamp": "2023-12-24T20:50:42.912277362Z", "matcher-status": true }, { @@ -596438,8 +598308,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:47:53.335031183Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:50:50.603213395Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596478,8 +598348,8 @@ "\"SENTRY_AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"", "\"NODE_ENV\":\"production\"" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:33.481746098Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:21.45338302Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596516,8 +598386,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:33.525803807Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:21.495433239Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596553,8 +598423,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105138686Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064235423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596590,8 +598460,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105186586Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064289945Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596627,8 +598497,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105205982Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064307057Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596664,8 +598534,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105219358Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064321434Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596701,8 +598571,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105235288Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064362191Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596738,8 +598608,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.105249955Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064395874Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596775,8 +598645,8 @@ "type": "http", "host": "https://app.datasubvention.beta.gouv.fr", "matched-at": "https://app.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:48:47.10526318Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:51:32.064423005Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -596791,7 +598661,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -596805,8 +598676,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:55:10.739536388Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:57:40.956644042Z", "matcher-status": true }, { @@ -596820,7 +598691,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -596834,8 +598706,8 @@ "extracted-results": [ "app.datasubvention.beta.gouv.fr" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:55:10.739658347Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:57:40.956766199Z", "matcher-status": true }, { @@ -596850,7 +598722,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -596864,8 +598737,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:55:12.90983006Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:57:42.28611408Z", "matcher-status": true }, { @@ -596880,7 +598753,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -596894,8 +598768,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2023-12-17T22:55:13.286239343Z", + "ip": "185.21.194.105", + "timestamp": "2023-12-24T20:57:42.544481104Z", "matcher-status": true } ], @@ -596903,7 +598777,7 @@ { "requestedUrl": "https://app.datasubvention.beta.gouv.fr/", "finalUrl": "https://app.datasubvention.beta.gouv.fr/", - "fetchTime": "2023-12-17T22:26:29.246Z", + "fetchTime": "2023-12-24T20:44:44.533Z", "runWarnings": [], "categories": { "performance": { @@ -596966,53 +598840,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4814, + "numericValue": 4770, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2833, - "firstMeaningfulPaint": 2833, - "largestContentfulPaint": 4015, - "interactive": 4814, - "speedIndex": 4394, - "totalBlockingTime": 142, - "maxPotentialFID": 175, - "cumulativeLayoutShift": 0.10051787651909722, - "cumulativeLayoutShiftMainFrame": 0.10051787651909722, - "totalCumulativeLayoutShift": 0.10051787651909722, + "firstContentfulPaint": 2739, + "firstMeaningfulPaint": 2739, + "largestContentfulPaint": 4623, + "interactive": 4770, + "speedIndex": 4024, + "totalBlockingTime": 167, + "maxPotentialFID": 155, + "cumulativeLayoutShift": 0.10365437761942545, + "cumulativeLayoutShiftMainFrame": 0.10365437761942545, + "totalCumulativeLayoutShift": 0.10365437761942545, "observedTimeOrigin": 0, - "observedTimeOriginTs": 265006279, + "observedTimeOriginTs": 469363179, "observedNavigationStart": 0, - "observedNavigationStartTs": 265006279, - "observedFirstPaint": 1265, - "observedFirstPaintTs": 266271391, - "observedFirstContentfulPaint": 1265, - "observedFirstContentfulPaintTs": 266271391, - "observedFirstContentfulPaintAllFrames": 1265, - "observedFirstContentfulPaintAllFramesTs": 266271391, - "observedFirstMeaningfulPaint": 1265, - "observedFirstMeaningfulPaintTs": 266271391, - "observedLargestContentfulPaint": 1265, - "observedLargestContentfulPaintTs": 266271391, - "observedLargestContentfulPaintAllFrames": 1265, - "observedLargestContentfulPaintAllFramesTs": 266271391, - "observedTraceEnd": 5043, - "observedTraceEndTs": 270049127, - "observedLoad": 509, - "observedLoadTs": 265514887, - "observedDomContentLoaded": 465, - "observedDomContentLoadedTs": 265470802, - "observedCumulativeLayoutShift": 0.10051787651909722, - "observedCumulativeLayoutShiftMainFrame": 0.10051787651909722, - "observedTotalCumulativeLayoutShift": 0.10051787651909722, - "observedFirstVisualChange": 1266, - "observedFirstVisualChangeTs": 266272279, - "observedLastVisualChange": 1466, - "observedLastVisualChangeTs": 266472279, - "observedSpeedIndex": 1279, - "observedSpeedIndexTs": 266285348 + "observedNavigationStartTs": 469363179, + "observedFirstPaint": 1028, + "observedFirstPaintTs": 470390890, + "observedFirstContentfulPaint": 1028, + "observedFirstContentfulPaintTs": 470390890, + "observedFirstContentfulPaintAllFrames": 1028, + "observedFirstContentfulPaintAllFramesTs": 470390890, + "observedFirstMeaningfulPaint": 1028, + "observedFirstMeaningfulPaintTs": 470390890, + "observedLargestContentfulPaint": 1028, + "observedLargestContentfulPaintTs": 470390890, + "observedLargestContentfulPaintAllFrames": 1028, + "observedLargestContentfulPaintAllFramesTs": 470390890, + "observedTraceEnd": 4729, + "observedTraceEndTs": 474091874, + "observedLoad": 373, + "observedLoadTs": 469736233, + "observedDomContentLoaded": 352, + "observedDomContentLoadedTs": 469714751, + "observedCumulativeLayoutShift": 0.10365437761942545, + "observedCumulativeLayoutShiftMainFrame": 0.10365437761942545, + "observedTotalCumulativeLayoutShift": 0.10365437761942545, + "observedFirstVisualChange": 1034, + "observedFirstVisualChangeTs": 470397179, + "observedLastVisualChange": 1317, + "observedLastVisualChangeTs": 470680179, + "observedSpeedIndex": 1114, + "observedSpeedIndexTs": 470476847 }, { "lcpInvalidated": false @@ -597034,19 +598908,19 @@ "numScripts": 37, "numStylesheets": 6, "numFonts": 4, - "numTasks": 1453, + "numTasks": 1459, "numTasksOver10ms": 8, "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 8.732, - "throughput": 7862313.275353431, - "maxRtt": 152.42100000000002, - "maxServerLatency": 10.016000000000002, - "totalByteWeight": 568174, - "totalTaskTime": 447.23599999999857, - "mainDocumentTransferSize": 4316 + "rtt": 1.698, + "throughput": 14090105.826499922, + "maxRtt": 103.072, + "maxServerLatency": 9.695, + "totalByteWeight": 568689, + "totalTaskTime": 474.5259999999984, + "mainDocumentTransferSize": 4319 } ] } @@ -597135,10 +599009,10 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-01-27T08:03:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "B", - "cookiesCount": 2, + "cookiesGrade": "C", + "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 18, + "trackersCount": 19, "lighthouse_performance": 0.5, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.91, @@ -597174,7 +599048,7 @@ "http": { "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 22:39:10 GMT", + "end_time": "Sun, 24 Dec 2023 20:45:37 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -597186,17 +599060,17 @@ "Content-Length": "174", "Content-Security-Policy": "default-src 'none'", "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 17 Dec 2023 22:39:09 GMT", + "Date": "Sun, 24 Dec 2023 20:45:36 GMT", "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Powered-By": "Express", - "X-Request-ID": "074ea661-56bf-4ae9-8260-ec0c73f20e17" + "X-Request-ID": "74d145f9-52d4-48e5-a57a-6521a5acc986" }, - "scan_id": 45564811, + "scan_id": 45773025, "score": 80, - "start_time": "Sun, 17 Dec 2023 22:36:40 GMT", + "start_time": "Sun, 24 Dec 2023 20:45:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -597405,77 +599279,77 @@ "testssl": [ { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597483,7 +599357,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597491,7 +599365,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597499,7 +599373,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597507,7 +599381,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -597515,7 +599389,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -597523,490 +599397,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702852851" + "finding": "1703450811" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -598014,7 +599888,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -598023,7 +599897,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -598032,7 +599906,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -598041,7 +599915,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -598050,7 +599924,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -598058,7 +599932,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -598067,7 +599941,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -598076,7 +599950,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -598085,7 +599959,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -598094,14 +599968,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -598110,7 +599984,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -598119,7 +599993,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -598128,7 +600002,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -598137,7 +600011,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -598146,7 +600020,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -598155,7 +600029,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -598164,7 +600038,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -598173,7 +600047,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -598182,7 +600056,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -598191,392 +600065,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598584,7 +600458,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598592,7 +600466,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598600,7 +600474,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598608,7 +600482,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -598616,7 +600490,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -598624,1591 +600498,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "2014-09-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "2024-09-11 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1702852946" - }, - { - "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "X-Powered-By: Express" - }, - { - "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "*" - }, - { - "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "max-age 1800" - }, - { - "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", "finding": "supported" }, - { - "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=49F13112563F535D6DB53451677A8BAE439458BD9CAA99ED7324F51807A3DA89" - }, - { - "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702853041" + "finding": "1703450861" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -600216,7 +600989,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -600225,7 +600998,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -600234,7 +601007,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -600243,7 +601016,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -600252,7 +601025,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -600260,7 +601033,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -600269,7 +601042,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -600278,7 +601051,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -600287,7 +601060,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -600296,14 +601069,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -600312,7 +601085,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -600321,7 +601094,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -600330,7 +601103,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -600339,7 +601112,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -600348,7 +601121,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -600357,7 +601130,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -600366,7 +601139,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -600375,7 +601148,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -600384,7 +601157,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -600393,315 +601166,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -600906,7 +601679,7 @@ "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -601060,7 +601833,7 @@ "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "HIGH", - "finding": "expires < 30 days (26)" + "finding": "expires < 30 days (19)" }, { "id": "cert_notBefore", @@ -601221,7 +601994,7 @@ "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702853135" + "finding": "1703450911" }, { "id": "HSTS_time", @@ -601807,12 +602580,1113 @@ "severity": "OK", "finding": "A+" }, + { + "id": "service", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "2014-09-12 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "2024-09-11 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "1703450961" + }, + { + "id": "HSTS_time", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "X-Powered-By: Express" + }, + { + "id": "cookie_count", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "default-src 'none'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" + }, + { + "id": "banner_reverseproxy", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=49F13112563F535D6DB53451677A8BAE439458BD9CAA99ED7324F51807A3DA89" + }, + { + "id": "LOGJAM", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "scanTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "383" + "finding": "203" } ], "thirdparties": { @@ -601825,18 +603699,18 @@ "content-length": "174", "content-security-policy": "default-src 'none'", "content-type": "application/json; charset=utf-8", - "date": "Sun, 17 Dec 2023 22:39:37 GMT", + "date": "Sun, 24 Dec 2023 20:46:12 GMT", "etag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Express", - "x-request-id": "ebfea2fa-d8ba-4ad5-96d5-24095f43a331" + "x-request-id": "e7ddb58d-6fed-448b-936b-3813e2ededae" }, "endpoints": [ { "hostname": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -601962,7 +603836,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 22:36:10", + "@generated": "Sun, 24 Dec 2023 20:45:05", "site": [ { "@name": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", @@ -602046,73 +603920,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", "matched-at": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." - ], - "timestamp": "2023-12-17T22:47:21.930077978Z", + "timestamp": "2023-12-24T20:50:41.368537613Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", "matched-at": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "timestamp": "2023-12-17T22:47:21.941108816Z", + "extracted-results": [ + "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." + ], + "timestamp": "2023-12-24T20:50:41.369496212Z", "matcher-status": true }, { @@ -602137,8 +604011,8 @@ "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:17.879486757Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:14.941665053Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602170,12 +604044,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963209729Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027110152Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602207,12 +604081,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963247249Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.02715685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602244,12 +604118,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963259191Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027181105Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602281,12 +604155,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963269801Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027232611Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602318,12 +604192,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963285911Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027254272Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602355,12 +604229,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963350792Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027273428Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602392,12 +604266,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:48:32.963367262Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:24.027292273Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -602436,8 +604310,8 @@ "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:49:10.854071743Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:51:45.934282571Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api-datasubvention-preprod.osc-secnum-fr1.scalingo.io' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -602452,7 +604326,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -602466,8 +604341,8 @@ "extracted-results": [ "Gandi" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:55:02.590556975Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:57:25.229825686Z", "matcher-status": true }, { @@ -602481,7 +604356,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -602496,8 +604372,8 @@ "*.osc-secnum-fr1.scalingo.io", "osc-secnum-fr1.scalingo.io" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:55:02.590668573Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:57:25.229944298Z", "matcher-status": true }, { @@ -602531,8 +604407,8 @@ "CN: *.osc-secnum-fr1.scalingo.io", " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:55:02.590713987Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:57:25.229990594Z", "matcher-status": true }, { @@ -602547,7 +604423,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -602561,8 +604438,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:55:05.254169148Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:57:26.435967669Z", "matcher-status": true }, { @@ -602577,7 +604454,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -602591,8 +604469,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T22:55:05.660812075Z", + "ip": "80.247.12.255", + "timestamp": "2023-12-24T20:57:26.657037752Z", "matcher-status": true } ], @@ -602707,7 +604585,7 @@ "http": { "url": "http://api.datasubvention.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:01:41 GMT", + "end_time": "Sun, 24 Dec 2023 20:53:45 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -602719,17 +604597,17 @@ "Content-Length": "174", "Content-Security-Policy": "default-src 'none'", "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 17 Dec 2023 23:01:40 GMT", + "Date": "Sun, 24 Dec 2023 20:53:44 GMT", "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Powered-By": "Express", - "X-Request-ID": "41ece992-59ae-4970-b5bc-2d77afea1b53" + "X-Request-ID": "b87b10f0-cb9a-4115-990d-58f9a0a91815" }, - "scan_id": 45565380, + "scan_id": 45773256, "score": 80, - "start_time": "Sun, 17 Dec 2023 23:01:38 GMT", + "start_time": "Sun, 24 Dec 2023 20:53:42 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -603206,7 +605084,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "044F85C8CFC6CFA62753D288590329F3DC3C" + "finding": "04E6DD7E29891C4D0AEB1A5CD655D66AD335" }, { "id": "cert_serialNumberLen", @@ -603220,21 +605098,21 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "F26F640FC0CCD6B91C6789A28D321DAF718BACB8" + "finding": "577B262C346A78EF4EE57956FD3AE02FC67415EB" }, { "id": "cert_fingerprintSHA256", "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "cert", "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISBObdfimJHE0K6xpc1lXWatM1MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMTkxNDA3MDhaFw0yNDAzMTgxNDA3MDdaMCoxKDAmBgNVBAMTH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCot5e+CHX12BQUGcULg/haqZJ8hz/3eEz2LE1l3TkpW6h42B8kA2g3rYXtA+F5P8GKgy6i1+NpqNHthJ7k+JNweXQG92vNkQpAi8U0iH+DSv+nmw5Gqha8bzbQNm05vDvOGv7keiroGa/AX3LzjqAIhCc7ncJwswPW+/x2rejJSsJZ7C1230Qy19S6DIareboZvas6J73AEpQuLJSRMJsVam1cN6rm32JOMg7jkMk6jpQgL/hUIL/o46JQMti5jQWtbcg/xkNC/dqFRYiVNRMa1dX4ezPWH5bDSWZ5qTOJnqNzdxVTyIIiQ8+jcOvIBMGAtjmXO4vcCx+/aiPmGj3/AgMBAAGjggIgMIICHDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFnSruuiB2xh+IgoPhCeiYU1C0eLMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYyCncwiAAAEAwBGMEQCIAaqeuk//MzAHasjcc+dJiu4noBOyjLq00odwNzlXH1MAiBMecjTWYUtoA7wLDSA3H1TyztNQImU0bk4PX20+fG12QB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjIKdzCQAAAQDAEcwRQIgVKjnqZm5FYyBP47zVMWF7U26ipjBxkULxFNepThxBFwCIQDAe+NPPLohCvccMcTTqiIYfccjTE9m+QzutnFDbtcQbDANBgkqhkiG9w0BAQsFAAOCAQEAdamqNLOFfOgXopDTECQF0sZM8TtVrV2PiO09OREnvB+uCObQHhiogBxrAAWdwAZyFHfNbB+DYufSXRTjAtngAkvtyoXrl+S14K5I4ToFzpSsANOptZOz4L28Sp30wGY1W6ZsFRF2PzQ3eKT0BPDikhrGUKK7gEbDX8W2ET5UgySqcaCnk1jooIn6LcVFmzHAgcnUwr4fz82Kd96bP/NQiAKonEshee2s3xI0cq6sD/ukIWozT3zJev6YTR6mnwZwaon36btDPBMxK1trkbTm3j7Q2Z1iKCMnH2rNhm291wIIXGGqw5hShcYDF2oVFXBMXWz5IHqS2hxGYVoo97iOdA==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -603283,21 +605161,21 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "2023-10-20 14:06" + "finding": "2023-12-19 14:07" }, { "id": "cert_notAfter", "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "2024-01-18 14:06" + "finding": "2024-03-18 14:07" }, { "id": "cert_extlifeSpan", @@ -603486,7 +605364,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702854173" + "finding": "1703451297" }, { "id": "HSTS_time", @@ -603701,7 +605579,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "LOGJAM", @@ -604074,77 +605952,77 @@ }, { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -604152,7 +606030,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -604160,7 +606038,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -604168,7 +606046,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -604176,7 +606054,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -604184,7 +606062,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -604192,525 +606070,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2023-10-20 14:06" + "finding": "2023-12-19 14:07" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "2024-01-18 14:06" + "finding": "2024-03-18 14:07" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702854226" + "finding": "1703451348" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -604718,7 +606596,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -604727,7 +606605,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -604736,7 +606614,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -604745,7 +606623,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -604754,7 +606632,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -604762,7 +606640,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -604771,7 +606649,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -604780,7 +606658,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -604789,7 +606667,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -604798,14 +606676,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -604814,7 +606692,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -604823,7 +606701,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -604832,16 +606710,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -604850,7 +606728,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -604859,7 +606737,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -604868,7 +606746,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -604877,7 +606755,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -604886,7 +606764,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -604895,392 +606773,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -605288,7 +607166,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -605296,7 +607174,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -605304,7 +607182,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -605312,7 +607190,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -605320,7 +607198,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -605328,525 +607206,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "2023-10-20 14:06" + "finding": "2023-12-19 14:07" }, { "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "2024-01-18 14:06" + "finding": "2024-03-18 14:07" }, { "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702854278" + "finding": "1703451399" }, { "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -605854,7 +607732,7 @@ }, { "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -605863,7 +607741,7 @@ }, { "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -605872,7 +607750,7 @@ }, { "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -605881,7 +607759,7 @@ }, { "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -605890,7 +607768,7 @@ }, { "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -605898,7 +607776,7 @@ }, { "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -605907,7 +607785,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -605916,7 +607794,7 @@ }, { "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -605925,7 +607803,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -605934,14 +607812,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -605950,7 +607828,7 @@ }, { "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -605959,7 +607837,7 @@ }, { "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -605968,16 +607846,16 @@ }, { "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -605986,7 +607864,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -605995,7 +607873,7 @@ }, { "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -606004,7 +607882,7 @@ }, { "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -606013,7 +607891,7 @@ }, { "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -606022,7 +607900,7 @@ }, { "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -606031,315 +607909,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", + "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -606551,7 +608429,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -606614,7 +608492,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "044F85C8CFC6CFA62753D288590329F3DC3C" + "finding": "04E6DD7E29891C4D0AEB1A5CD655D66AD335" }, { "id": "cert_serialNumberLen", @@ -606628,21 +608506,21 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "F26F640FC0CCD6B91C6789A28D321DAF718BACB8" + "finding": "577B262C346A78EF4EE57956FD3AE02FC67415EB" }, { "id": "cert_fingerprintSHA256", "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "cert", "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFCzCCA/OgAwIBAgISBE+FyM/Gz6YnU9KIWQMp89w8MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEwMjAxNDA2MDhaFw0yNDAxMTgxNDA2MDdaMCoxKDAmBgNVBAMTH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmC0Cl/p/2NzH433OAXdUIwVBjzksZUMhFLOIuHKcRBaptIb8cUwlkc60GyhHdOI0QxUllQ07e0mRc8zc3RXNssFGvQR4i2Wqe0JkPsDG+VtSWhfrqfvE4ozmFCFAGsnEzRJYH718c6CScYGPONlkddOCqvPAw85sq7x64XHmxfr1Q1InN18Vg8Et6b6N9u6gm2vIxabR3jEFSBeH4oPUtrWuLzlMBgj94LTWwsBQwljpFhijluwKtjso82Ag9IhA92HJvKiVyHLCK3A/N0fw5ogzucCKDzDwdjoejGV9QlrsHEnaXq3mt1C+3Dqc6AFaVCfeF3WbySe8GLbO+0QUnAgMBAAGjggIhMIICHTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLiHIvA8zG9Sz7DouYNBBapl6OY4MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYtNn1NiAAAEAwBHMEUCIQC8UkiWtaTtIo7vhfA3L9RDbZy++Uo7GPjsf53NfqepegIgKSscVEpvRs1i5+KSfAiM6+8O+nkWA3Cz8k20SlxKExYAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYtNn1OCAAAEAwBHMEUCIDA1BMgI9VFh+ZYRl3tSSOcF2uH6z7eqwZjRPjFS7Q4rAiEAxWpbJLWEKA4kGXDfEcNXwLQ/VwXg5fFlBg+ym9AJmmEwDQYJKoZIhvcNAQELBQADggEBAFNXQSglIZbLXhy5rCul+eJG0QAjXW6HGis+yd2O5NAJS/W6eyd4wpap668gCWI5KZ0gF/KCQKH4Q02G51cPa+43jy+wQIHsUHsF/0zsYSfBqMZaalIvxpiazZGEIq+uc/BD54rf9ubRThpe3JQnp9mjV5td1DNFMq9dYsBFCS7iThMecYyKl5XADP806Pfi/R44hpUKy3dhIe6ECNE4DIIgcZg6EN64rjY/kzRpkLa1oI1GGvLbaSGESH8sR0YzUNLn09IeiWR1NlxePjeEz7JwpfmY2k1Ls2dKqz99otgul7MfyJs1g0B0hUGQvGitPtOQf1qZQ5ls33aOAHOGfRA=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISBObdfimJHE0K6xpc1lXWatM1MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMTkxNDA3MDhaFw0yNDAzMTgxNDA3MDdaMCoxKDAmBgNVBAMTH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCot5e+CHX12BQUGcULg/haqZJ8hz/3eEz2LE1l3TkpW6h42B8kA2g3rYXtA+F5P8GKgy6i1+NpqNHthJ7k+JNweXQG92vNkQpAi8U0iH+DSv+nmw5Gqha8bzbQNm05vDvOGv7keiroGa/AX3LzjqAIhCc7ncJwswPW+/x2rejJSsJZ7C1230Qy19S6DIareboZvas6J73AEpQuLJSRMJsVam1cN6rm32JOMg7jkMk6jpQgL/hUIL/o46JQMti5jQWtbcg/xkNC/dqFRYiVNRMa1dX4ezPWH5bDSWZ5qTOJnqNzdxVTyIIiQ8+jcOvIBMGAtjmXO4vcCx+/aiPmGj3/AgMBAAGjggIgMIICHDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFnSruuiB2xh+IgoPhCeiYU1C0eLMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2FwaS5kYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYyCncwiAAAEAwBGMEQCIAaqeuk//MzAHasjcc+dJiu4noBOyjLq00odwNzlXH1MAiBMecjTWYUtoA7wLDSA3H1TyztNQImU0bk4PX20+fG12QB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjIKdzCQAAAQDAEcwRQIgVKjnqZm5FYyBP47zVMWF7U26ipjBxkULxFNepThxBFwCIQDAe+NPPLohCvccMcTTqiIYfccjTE9m+QzutnFDbtcQbDANBgkqhkiG9w0BAQsFAAOCAQEAdamqNLOFfOgXopDTECQF0sZM8TtVrV2PiO09OREnvB+uCObQHhiogBxrAAWdwAZyFHfNbB+DYufSXRTjAtngAkvtyoXrl+S14K5I4ToFzpSsANOptZOz4L28Sp30wGY1W6ZsFRF2PzQ3eKT0BPDikhrGUKK7gEbDX8W2ET5UgySqcaCnk1jooIn6LcVFmzHAgcnUwr4fz82Kd96bP/NQiAKonEshee2s3xI0cq6sD/ukIWozT3zJev6YTR6mnwZwaon36btDPBMxK1trkbTm3j7Q2Z1iKCMnH2rNhm291wIIXGGqw5hShcYDF2oVFXBMXWz5IHqS2hxGYVoo97iOdA==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -606691,21 +608569,21 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2023-10-20 14:06" + "finding": "2023-12-19 14:07" }, { "id": "cert_notAfter", "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "2024-01-18 14:06" + "finding": "2024-03-18 14:07" }, { "id": "cert_extlifeSpan", @@ -606894,7 +608772,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702854329" + "finding": "1703451451" }, { "id": "HSTS_time", @@ -607109,7 +608987,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=472E46471254A301A33890355F63FB889EEF5F88B4A35A3CEB766A8C7451DD8C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" }, { "id": "LOGJAM", @@ -607485,7 +609363,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "211" + "finding": "208" } ], "thirdparties": { @@ -607499,18 +609377,18 @@ "content-length": "174", "content-security-policy": "default-src 'none'", "content-type": "application/json; charset=utf-8", - "date": "Sun, 17 Dec 2023 23:02:13 GMT", + "date": "Sun, 24 Dec 2023 20:54:18 GMT", "etag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Express", - "x-request-id": "7f5df75d-6820-4d0d-be15-75373fce40ff" + "x-request-id": "d9883eaf-03fc-4e2d-ae47-ae63c483fc6d" }, "endpoints": [ { "hostname": "api.datasubvention.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -607636,7 +609514,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:01:08", + "@generated": "Sun, 24 Dec 2023 20:53:13", "site": [ { "@name": "http://api.datasubvention.beta.gouv.fr", @@ -607744,7 +609622,7 @@ "extracted-results": [ "api-subvention-asso-prod.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2023-12-17T23:06:49.225390868Z", + "timestamp": "2023-12-24T20:58:51.324602596Z", "matcher-status": true }, { @@ -607779,7 +609657,7 @@ "type": "dns", "host": "api.datasubvention.beta.gouv.fr.", "matched-at": "api.datasubvention.beta.gouv.fr", - "timestamp": "2023-12-17T23:06:49.396106342Z", + "timestamp": "2023-12-24T20:58:51.575939935Z", "matcher-status": true }, { @@ -607810,12 +609688,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.599703849Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.77692561Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -607847,12 +609725,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.599777737Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.776972698Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -607884,12 +609762,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.599794749Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.776989309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -607925,8 +609803,8 @@ "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.599833572Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777021439Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -607958,12 +609836,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.59984846Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777040374Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -607995,12 +609873,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600165582Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.77705414Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608032,12 +609910,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600187362Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777067475Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608069,12 +609947,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600205547Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777082593Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608110,8 +609988,8 @@ "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600221436Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.77709719Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608147,8 +610025,8 @@ "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600235132Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777110635Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608180,12 +610058,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:20.600249178Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:22.777122858Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -608224,8 +610102,8 @@ "type": "http", "host": "http://api.datasubvention.beta.gouv.fr", "matched-at": "http://api.datasubvention.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:07:35.19905609Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T20:59:37.494313939Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api.datasubvention.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'http://api.datasubvention.beta.gouv.fr/'", "matcher-status": true }, @@ -608240,7 +610118,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -608254,8 +610133,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:15:16.734250947Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:06:50.876587198Z", "matcher-status": true }, { @@ -608269,7 +610148,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -608283,8 +610163,8 @@ "extracted-results": [ "api.datasubvention.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:15:16.734388494Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:06:50.876717331Z", "matcher-status": true }, { @@ -608299,7 +610179,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -608313,8 +610194,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:15:19.979161223Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:06:54.25726904Z", "matcher-status": true }, { @@ -608329,7 +610210,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -608343,8 +610225,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:15:20.152907431Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:06:54.430491477Z", "matcher-status": true } ], @@ -608428,7 +610310,7 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-01-18T14:06:00.000Z", + "testsslExpireDate": "2024-03-18T14:07:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, @@ -608457,21 +610339,21 @@ "http": { "url": "https://datasubvention.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:09:05 GMT", + "end_time": "Sun, 24 Dec 2023 21:10:39 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-Ray": "8372d4c6ccb296c3-SJC", + "CF-Ray": "83abd4ef2dee67f9-SJC", "Cache-Control": "public, max-age=604800", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 23:09:01 GMT", + "Date": "Sun, 24 Dec 2023 21:10:35 GMT", "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "Server": "cloudflare", - "Set-Cookie": "__cf_bm=sahQ5x1MNUUog8_dW3Nd3FG4BdHaIt0MnXH0Nt6WOwo-1702854541-1-AXiMd5SCVkhdgdFfoIKRnbyAppbywa3nZ+X4zlKgCeUSscabRwNHtecsTaULIaN5DxGLD7W63uC/IW7C/zk1R54=; path=/; expires=Sun, 17-Dec-23 23:39:01 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=aUigWkjyGWTXI_6yatqncqQZCEQhm_6nbhsHfnwsSto-1702854541062-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "Set-Cookie": "__cf_bm=7dyPFDzM5mxUJzLCPVsKsSID.ab2G.nSUTpkRe2SJMg-1703452235-1-AYsnuoTZJjmy4eFuhh/q2uSG5ytFKFhVwiQRKh+iyy6Oj23or8Dsbkw/I+rkLCjp0Wrn+PYj2Z4h/kXmA0g3yAk=; path=/; expires=Sun, 24-Dec-23 21:40:35 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=PcoCLzQQBF6aMZyKP7gblTvgHoEcTz3WEpuCfbVgKjY-1703452235112-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "alt-svc": "h3=\":443\"; ma=86400", @@ -608481,9 +610363,9 @@ "ec-source": "dynamic", "x-powered-by": "Elementor Cloud" }, - "scan_id": 45565546, + "scan_id": 45773512, "score": 20, - "start_time": "Sun, 17 Dec 2023 23:08:56 GMT", + "start_time": "Sun, 24 Dec 2023 21:10:31 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -608523,7 +610405,7 @@ "data": { "__cf_bm": { "domain": ".datasubvention.beta.gouv.fr", - "expires": 1702856341, + "expires": 1703454035, "httponly": true, "max-age": null, "path": "/", @@ -608721,77 +610603,77 @@ "testssl": [ { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608799,7 +610681,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608807,7 +610689,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608815,7 +610697,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608823,7 +610705,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -608831,7 +610713,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -608839,728 +610721,721 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "0DA9F9EAF8C64D2696130B7A869E0FF3" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "F678E58FEA6FFFACECFD25F2258D07AB67991E09" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "271ADBDBC05D1CC64ED63941EF2A61AFA8480EFF6212B2BFEEB29B5F067A4124" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "263 >= 60 days" + "finding": "256 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Agreement" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "044CC93C280ED0CEED9248C6BDCC29ED" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "F2A5448BE88C00F2132DBCFFC9360ABA11174E66" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "1F389151FADADD17069B0DEA9E7B9ED20B5E96984FEDB7936FFAD3B866A9CA98" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "263 >= 60 days" + "finding": "256 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "+277 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "1702854624" - }, - { - "id": "HTTP_headerAge", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "277 seconds" + "finding": "1703452319" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -609568,7 +611443,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -609577,7 +611452,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -609586,7 +611461,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -609595,7 +611470,7 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -609604,7 +611479,7 @@ }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -609612,7 +611487,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -609621,7 +611496,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -609630,7 +611505,7 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -609639,7 +611514,7 @@ }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -609648,14 +611523,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -609664,7 +611539,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -609673,7 +611548,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -609682,7 +611557,7 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -609691,7 +611566,7 @@ }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -609700,7 +611575,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -609709,7 +611584,7 @@ }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -609718,7 +611593,7 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -609727,7 +611602,7 @@ }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -609736,7 +611611,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -609745,399 +611620,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -610145,7 +612020,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -610153,7 +612028,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -610161,7 +612036,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -610169,7 +612044,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -610177,7 +612052,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -610185,721 +612060,721 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "0DA9F9EAF8C64D2696130B7A869E0FF3" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "F678E58FEA6FFFACECFD25F2258D07AB67991E09" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "271ADBDBC05D1CC64ED63941EF2A61AFA8480EFF6212B2BFEEB29B5F067A4124" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "263 >= 60 days" + "finding": "256 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Agreement" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "044CC93C280ED0CEED9248C6BDCC29ED" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "F2A5448BE88C00F2132DBCFFC9360ABA11174E66" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "1F389151FADADD17069B0DEA9E7B9ED20B5E96984FEDB7936FFAD3B866A9CA98" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFJTCCBMugAwIBAgIQBEzJPCgO0M7tkkjGvcwp7TAKBggqhkjOPQQDAjBKMQswCQYDVQQGEwJVUzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEgMB4GA1UEAxMXQ2xvdWRmbGFyZSBJbmMgRUNDIENBLTMwHhcNMjMwOTA3MDAwMDAwWhcNMjQwOTA1MjM1OTU5WjB7MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5jaXNjbzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEkMCIGA1UEAxMbZGF0YXN1YnZlbnRpb24uYmV0YS5nb3V2LmZyMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEwI+v4a869oZZsG4Eg9kVyEgb25IpsWd0YQAnwBP1gYfw4QBFK5LEYgK5phqS6RjqcFWdrCivQl71eOwN+BXPr6OCA2AwggNcMB8GA1UdIwQYMBaAFKXON+rrsHUOlGeItEX62SQQh5YfMB0GA1UdDgQWBBRgy5RuxNGtacnkHpDptayiH/WMkzAmBgNVHREEHzAdghtkYXRhc3VidmVudGlvbi5iZXRhLmdvdXYuZnIwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIDiDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwewYDVR0fBHQwcjA3oDWgM4YxaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDA3oDWgM4YxaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBABggrBgEFBQcwAoY0aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNydDAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYpvzlH0AAAEAwBGMEQCIAxBQ6Yzqp3vmYTuQSnLTlFoO+G6DXUxbsKJcGDyMFhkAiBnO4NXiIBhKtt+k4NgvBBvveTyUkcJymU2OemA14FrSQB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABim/OUcEAAAQDAEcwRQIgWe3KRryGpb0+hm2pVAfG6r4Hww0pTVZ21qWLoqcdp1sCIQC89uUexqt0wVN0SZ172hO3Aoq9UjnOzwpCpFru39nrywB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABim/OUWMAAAQDAEgwRgIhAN/NsHFYNjIFPxsVdwEJFJ+d1J1oALZ17J+akhe5yS6QAiEAsAjNBUHW8CtPdqiqIwu9NRtP2r0XfA9N1b8qxhEUGiswCgYIKoZIzj0EAwIDSAAwRQIgamV1U9r9RaOCwONa57CUWB301KPt8ASH9GJIrPg/DFsCIQCaLQoGoZpnk6wwIEXgF3/Tp+5nkXCm9bKFiutTjrWQKw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "263 >= 60 days" + "finding": "256 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "1702854683" + "finding": "1703452376" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -610907,7 +612782,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -610916,7 +612791,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -610925,7 +612800,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -610934,7 +612809,7 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -610943,7 +612818,7 @@ }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -610951,7 +612826,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -610960,7 +612835,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -610969,7 +612844,7 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -610978,7 +612853,7 @@ }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -610987,14 +612862,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -611003,7 +612878,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -611012,7 +612887,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -611021,7 +612896,7 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -611030,7 +612905,7 @@ }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -611039,7 +612914,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -611048,7 +612923,7 @@ }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -611057,7 +612932,7 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -611066,7 +612941,7 @@ }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -611075,7 +612950,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -611084,332 +612959,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "118" + "finding": "116" } ], "thirdparties": { @@ -611552,15 +613427,15 @@ }, { "type": "unknown", - "url": "https://in-automate.brevo.com/cm?uuid=31fb9462-6748-4cb7-8da4-ddb539780e21&key=uvxc7hbx21zuv3f2yjbhub71&cuid=68ca48df-c6e8-410b-8c40-b10e492be252" + "url": "https://in-automate.brevo.com/cm?uuid=e87be8d5-922d-4d55-8d2f-1f06d2773c34&key=uvxc7hbx21zuv3f2yjbhub71&cuid=e37ce61a-1f2e-404f-88ce-4a195d15fd01" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-23-9" + "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-21-11" }, { "type": "unknown", - "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=68ca48df-c6e8-410b-8c40-b10e492be252&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&sib_name=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&ma_referrer=&ma_path=%2F" + "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=e37ce61a-1f2e-404f-88ce-4a195d15fd01&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&sib_name=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&ma_referrer=&ma_path=%2F" }, { "type": "unknown", @@ -611606,7 +613481,7 @@ "cookies": [ { "name": "_cfuvid", - "value": "wkdNA.QDqtOlYn2o1fAwFCYCDpvLeEdKetqEw.Zg04w-1702854572219-0-604800000", + "value": "_c3ZMnC_7xBDkX4fMYHy.G8XNIxFbErbBTyLnQFgCBU-1703452267126-0-604800000", "domain": ".datasubvention.beta.gouv.fr", "path": "/", "expires": -1, @@ -611624,7 +613499,7 @@ "value": "1", "domain": "datasubvention.beta.gouv.fr", "path": "/", - "expires": 1702856373, + "expires": 1703454068, "size": 17, "httpOnly": false, "secure": false, @@ -611636,10 +613511,10 @@ }, { "name": "_pk_id.258.755a", - "value": "751a9e480417e9cd.1702854573.", + "value": "fc688a1fc0103434.1703452268.", "domain": "datasubvention.beta.gouv.fr", "path": "/", - "expires": 1736809773, + "expires": 1737407468, "size": 43, "httpOnly": false, "secure": false, @@ -611651,10 +613526,10 @@ }, { "name": "cf_clearance", - "value": "aTYbdMcCgc7qu_d7sNC.Ilb1bfOhAOy2vaDfPaXhMdA-1702854573-0-1-f502dec8.8e448757.bdbe2805-0.1.1702854573", + "value": "_pdBagYX4TxcDZtfprFoyffxMDVVdaqCgD3ntVf7l0U-1703452268-0-2-e3cfdb3a.dde1d962.f7b05365-0.1.1703452268", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1734390573.383394, + "expires": 1734988268.451263, "size": 112, "httpOnly": true, "secure": true, @@ -611666,10 +613541,10 @@ }, { "name": "sib_cuid", - "value": "68ca48df-c6e8-410b-8c40-b10e492be252", + "value": "e37ce61a-1f2e-404f-88ce-4a195d15fd01", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1718496572, + "expires": 1719101467, "size": 44, "httpOnly": false, "secure": false, @@ -611680,10 +613555,10 @@ }, { "name": "__cf_bm", - "value": "Lgd1d8NZWGUhxJEtktXzWjRqahaynnCKBkYnMFP0txI-1702854572-1-AWWbhil343ACG9Nw7/dIJ5Vj9yJ4l5kPzLRTc1/zoU5CcmH6tcC56OJTxnXW0WLPmPHZuC9HAHO3vpEG2HIhnnA=", + "value": "F7CUr6TwosL7SELbIPruTHBV_eM879wct_Kid6D3bkU-1703452267-1-ASZkLKwx9+GbDK30A54YMbJWn5rojnHZ52zVjpTK2NoRt+4Gu3nQ/5YMnqwxD94pNhTpsV+D2XkzzMZsrz2BxQk=", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1702856372.223977, + "expires": 1703454067.130659, "size": 152, "httpOnly": true, "secure": true, @@ -611695,29 +613570,29 @@ } ], "headers": { - "age": "225", + "age": "210", "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "public, max-age=604800", "cf-cache-status": "HIT", - "cf-ray": "8372d59428f66f9b-IAD", + "cf-ray": "83abd5bd5b5e3975-IAD", "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 23:09:32 GMT", + "date": "Sun, 24 Dec 2023 21:11:07 GMT", "ec-cdn-cache-control": "public, max-age=604800", "ec-cdn-status": "hit", "ec-cdn-supported": "1", "ec-source": "dynamic", - "last-modified": "Sun, 17 Dec 2023 23:05:47 GMT", + "last-modified": "Sun, 24 Dec 2023 21:07:37 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "cloudflare", - "set-cookie": "__cf_bm=Lgd1d8NZWGUhxJEtktXzWjRqahaynnCKBkYnMFP0txI-1702854572-1-AWWbhil343ACG9Nw7/dIJ5Vj9yJ4l5kPzLRTc1/zoU5CcmH6tcC56OJTxnXW0WLPmPHZuC9HAHO3vpEG2HIhnnA=; path=/; expires=Sun, 17-Dec-23 23:39:32 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=wkdNA.QDqtOlYn2o1fAwFCYCDpvLeEdKetqEw.Zg04w-1702854572219-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "set-cookie": "__cf_bm=F7CUr6TwosL7SELbIPruTHBV_eM879wct_Kid6D3bkU-1703452267-1-ASZkLKwx9+GbDK30A54YMbJWn5rojnHZ52zVjpTK2NoRt+4Gu3nQ/5YMnqwxD94pNhTpsV+D2XkzzMZsrz2BxQk=; path=/; expires=Sun, 24-Dec-23 21:41:07 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=_c3ZMnC_7xBDkX4fMYHy.G8XNIxFbErbBTyLnQFgCBU-1703452267126-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", "vary": "Accept-Encoding", "x-powered-by": "Elementor Cloud" }, "endpoints": [ { "hostname": "datasubvention.beta.gouv.fr", - "ip": "162.159.137.9", + "ip": "162.159.138.9", "geoip": { "registered_country": { "geoname_id": 6252001, @@ -611737,7 +613612,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.122.95", + "ip": "172.253.63.95", "geoip": { "continent": { "code": "NA", @@ -611791,7 +613666,7 @@ }, { "hostname": "ml4m9p8dxdpd.i.optimole.com", - "ip": "18.160.18.70", + "ip": "18.160.18.123", "geoip": { "continent": { "code": "NA", @@ -611909,139 +613784,51 @@ } }, "location": { - "accuracy_radius": 20, - "latitude": 37.7506, - "longitude": -122.4121, - "metro_code": 807, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "94110" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } - }, - { - "hostname": "sibautomation.com", - "ip": "172.64.150.186", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "client.crisp.chat", - "ip": "172.64.153.75", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" + "accuracy_radius": 20, + "latitude": 37.7506, + "longitude": -122.4121, + "metro_code": 807, + "time_zone": "America/Los_Angeles" + }, + "postal": { + "code": "94110" }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "sibautomation.com", + "ip": "104.18.37.70", + "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", @@ -612059,16 +613846,29 @@ } }, { - "hostname": "fonts.gstatic.com", - "ip": "142.250.31.94", + "hostname": "client.crisp.chat", + "ip": "104.18.34.181", "geoip": { - "city": { - "geoname_id": 4364745, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", "names": { - "en": "Oxford", - "ru": "Оксфорд" + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" } - }, + } + } + }, + { + "hostname": "fonts.gstatic.com", + "ip": "142.251.167.94", + "geoip": { "continent": { "code": "NA", "geoname_id": 6255149, @@ -612098,14 +613898,10 @@ } }, "location": { - "accuracy_radius": 50, - "latitude": 38.6828, - "longitude": -76.1563, - "metro_code": 512, - "time_zone": "America/New_York" - }, - "postal": { - "code": "21654" + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -612120,23 +613916,7 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4361885, - "iso_code": "MD", - "names": { - "de": "Maryland", - "en": "Maryland", - "es": "Maryland", - "fr": "Maryland", - "ja": "メリーランド州", - "pt-BR": "Maryland", - "ru": "Мэриленд", - "zh-CN": "马里兰州" - } - } - ] + } } }, { @@ -612753,7 +614533,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:08:31", + "@generated": "Sun, 24 Dec 2023 21:10:05", "site": [ { "@name": "https://datasubvention.beta.gouv.fr", @@ -612817,6 +614597,13 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Secure Pages Include Mixed Content", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

The page includes mixed content, that is content accessed via HTTP instead of HTTPS.

" + }, { "name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)", "riskcode": "1", @@ -612942,23 +614729,23 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -612968,37 +614755,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "datasubvention.beta.gouv.fr.", - "matched-at": "_dmarc.datasubvention.beta.gouv.fr", + "matched-at": "datasubvention.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2023-12-17T23:12:50.975665108Z", + "timestamp": "2023-12-24T21:14:23.279341247Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -613014,31 +614800,24 @@ "type": "dns", "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2023-12-17T23:12:51.044527923Z", + "timestamp": "2023-12-24T21:14:23.503010004Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -613054,28 +614833,30 @@ "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2023-12-17T23:12:51.126643465Z", + "timestamp": "2023-12-24T21:14:23.505273364Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -613085,30 +614866,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "datasubvention.beta.gouv.fr.", - "matched-at": "datasubvention.beta.gouv.fr", - "timestamp": "2023-12-17T23:12:52.198448296Z", + "matched-at": "_dmarc.datasubvention.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2023-12-24T21:14:23.590988108Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -613124,10 +614912,9 @@ "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2023-12-17T23:12:52.211858801Z", + "timestamp": "2023-12-24T21:14:24.58232047Z", "matcher-status": true }, { @@ -613165,8 +614952,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:12:59.154460868Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:31.41545419Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613204,8 +614991,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:12:59.24192034Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:31.481625728Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613237,12 +615024,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142289441Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.55134065Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613278,8 +615065,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142357247Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.551483918Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613315,8 +615102,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142377004Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.551697957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613348,12 +615135,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142391411Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.55174224Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613389,8 +615176,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142404665Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.551772606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613422,12 +615209,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142417099Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.551809395Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613459,12 +615246,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.14242868Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.551984923Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613500,8 +615287,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142440222Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.552022192Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613533,12 +615320,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:21.142452645Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:53.552051728Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613564,8 +615351,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:26.396161141Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:58.696396264Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613591,8 +615378,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:26.396223367Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:14:58.696441829Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -613628,8 +615415,8 @@ "extracted-results": [ "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" ], - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:30.901265747Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:15:03.396566762Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: datasubvention.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr/'", "matcher-status": true }, @@ -613668,8 +615455,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr/", - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:13:35.141456425Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:15:07.558756974Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: datasubvention.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr/'", "matcher-status": true }, @@ -613684,7 +615471,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -613698,8 +615486,8 @@ "extracted-results": [ "Cloudflare, Inc." ], - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:17:12.582623927Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:19:24.274142976Z", "matcher-status": true }, { @@ -613713,7 +615501,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -613727,8 +615516,8 @@ "extracted-results": [ "datasubvention.beta.gouv.fr" ], - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:17:12.582735815Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:19:24.274259854Z", "matcher-status": true }, { @@ -613743,7 +615532,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -613757,8 +615547,8 @@ "extracted-results": [ "tls12" ], - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:17:13.374305946Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:19:24.495490122Z", "matcher-status": true }, { @@ -613773,7 +615563,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -613787,8 +615578,8 @@ "extracted-results": [ "tls13" ], - "ip": "162.159.138.9", - "timestamp": "2023-12-17T23:17:13.432478236Z", + "ip": "162.159.137.9", + "timestamp": "2023-12-24T21:19:24.515754737Z", "matcher-status": true } ], @@ -613796,7 +615587,7 @@ { "requestedUrl": "https://datasubvention.beta.gouv.fr/", "finalUrl": "https://datasubvention.beta.gouv.fr/", - "fetchTime": "2023-12-17T23:08:45.385Z", + "fetchTime": "2023-12-24T21:10:19.841Z", "runWarnings": [], "categories": { "performance": { @@ -613859,53 +615650,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 14930, + "numericValue": 15522, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2204, - "firstMeaningfulPaint": 3414, - "largestContentfulPaint": 22853, - "interactive": 14930, - "speedIndex": 8032, - "totalBlockingTime": 365, - "maxPotentialFID": 334, - "cumulativeLayoutShift": 0.007050130208333333, - "cumulativeLayoutShiftMainFrame": 0.007050130208333333, - "totalCumulativeLayoutShift": 0.007050130208333333, + "firstContentfulPaint": 2244, + "firstMeaningfulPaint": 4029, + "largestContentfulPaint": 22896, + "interactive": 15522, + "speedIndex": 10592, + "totalBlockingTime": 442, + "maxPotentialFID": 618, + "cumulativeLayoutShift": 0.00410400390625, + "cumulativeLayoutShiftMainFrame": 0.00410400390625, + "totalCumulativeLayoutShift": 0.00410400390625, "observedTimeOrigin": 0, - "observedTimeOriginTs": 328508856, + "observedTimeOriginTs": 317613935, "observedNavigationStart": 0, - "observedNavigationStartTs": 328508856, - "observedFirstPaint": 303, - "observedFirstPaintTs": 328811910, - "observedFirstContentfulPaint": 303, - "observedFirstContentfulPaintTs": 328811910, - "observedFirstContentfulPaintAllFrames": 303, - "observedFirstContentfulPaintAllFramesTs": 328811910, - "observedFirstMeaningfulPaint": 420, - "observedFirstMeaningfulPaintTs": 328929312, - "observedLargestContentfulPaint": 2214, - "observedLargestContentfulPaintTs": 330722521, - "observedLargestContentfulPaintAllFrames": 2214, - "observedLargestContentfulPaintAllFramesTs": 330722521, - "observedTraceEnd": 3703, - "observedTraceEndTs": 332212313, - "observedLoad": 982, - "observedLoadTs": 329490802, - "observedDomContentLoaded": 504, - "observedDomContentLoadedTs": 329012696, - "observedCumulativeLayoutShift": 0.007050130208333333, - "observedCumulativeLayoutShiftMainFrame": 0.007050130208333333, - "observedTotalCumulativeLayoutShift": 0.007050130208333333, - "observedFirstVisualChange": 311, - "observedFirstVisualChangeTs": 328819856, - "observedLastVisualChange": 2711, - "observedLastVisualChangeTs": 331219856, - "observedSpeedIndex": 1120, - "observedSpeedIndexTs": 329628814 + "observedNavigationStartTs": 317613935, + "observedFirstPaint": 247, + "observedFirstPaintTs": 317860677, + "observedFirstContentfulPaint": 247, + "observedFirstContentfulPaintTs": 317860677, + "observedFirstContentfulPaintAllFrames": 247, + "observedFirstContentfulPaintAllFramesTs": 317860677, + "observedFirstMeaningfulPaint": 586, + "observedFirstMeaningfulPaintTs": 318200429, + "observedLargestContentfulPaint": 1166, + "observedLargestContentfulPaintTs": 318779906, + "observedLargestContentfulPaintAllFrames": 1166, + "observedLargestContentfulPaintAllFramesTs": 318779906, + "observedTraceEnd": 3950, + "observedTraceEndTs": 321563890, + "observedLoad": 1184, + "observedLoadTs": 318797511, + "observedDomContentLoaded": 473, + "observedDomContentLoadedTs": 318087288, + "observedCumulativeLayoutShift": 0.00410400390625, + "observedCumulativeLayoutShiftMainFrame": 0.00410400390625, + "observedTotalCumulativeLayoutShift": 0.00410400390625, + "observedFirstVisualChange": 256, + "observedFirstVisualChangeTs": 317869935, + "observedLastVisualChange": 2623, + "observedLastVisualChangeTs": 320236935, + "observedSpeedIndex": 1040, + "observedSpeedIndexTs": 318654420 }, { "lcpInvalidated": false @@ -613923,23 +615714,23 @@ "type": "debugdata", "items": [ { - "numRequests": 108, + "numRequests": 110, "numScripts": 43, "numStylesheets": 21, "numFonts": 4, - "numTasks": 2255, - "numTasksOver10ms": 19, - "numTasksOver25ms": 6, + "numTasks": 2413, + "numTasksOver10ms": 17, + "numTasksOver25ms": 7, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.146000000000001, - "throughput": 107346112.43866009, - "maxRtt": 82.134, - "maxServerLatency": 45.919, - "totalByteWeight": 4088619, - "totalTaskTime": 1010.6949999999939, - "mainDocumentTransferSize": 30214 + "rtt": 1.4210000000000003, + "throughput": 34159155.84464452, + "maxRtt": 80.19800000000001, + "maxServerLatency": 290.56600000000003, + "totalByteWeight": 3950682, + "totalTaskTime": 1017.4809999999951, + "mainDocumentTransferSize": 30338 } ] } @@ -614064,7 +615855,7 @@ "http": { "url": "https://cje.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:08:43 GMT", + "end_time": "Sun, 24 Dec 2023 21:10:00 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -614074,9 +615865,9 @@ "Content-Type": "text/html", "X-CleverCloudUpgrade": "true" }, - "scan_id": 45565539, + "scan_id": 45773501, "score": 0, - "start_time": "Sun, 17 Dec 2023 23:08:38 GMT", + "start_time": "Sun, 24 Dec 2023 21:09:54 GMT", "state": "FINISHED", "status_code": 503, "tests_failed": 6, @@ -614245,7 +616036,7 @@ "nmap": { "host": "cje.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "986", "open_ports": [ { "service": { @@ -614254,6 +616045,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", @@ -614349,70 +616147,70 @@ "testssl": [ { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -614420,7 +616218,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -614428,7 +616226,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -614436,7 +616234,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -614444,7 +616242,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -614452,7 +616250,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -614460,532 +616258,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -614993,7 +616791,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -615002,7 +616800,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -615011,7 +616809,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -615020,7 +616818,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -615029,7 +616827,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -615037,7 +616835,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -615046,7 +616844,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -615055,7 +616853,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -615064,7 +616862,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -615073,14 +616871,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -615089,7 +616887,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -615098,7 +616896,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -615107,7 +616905,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -615116,7 +616914,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -615125,7 +616923,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -615134,7 +616932,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -615143,7 +616941,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -615152,7 +616950,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -615161,7 +616959,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -615170,322 +616968,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -615844,7 +617642,7 @@ "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", @@ -616635,70 +618433,70 @@ }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616706,7 +618504,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616714,7 +618512,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616722,7 +618520,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616730,7 +618528,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -616738,7 +618536,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -616746,532 +618544,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -617279,7 +619077,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -617288,7 +619086,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -617297,7 +619095,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -617306,7 +619104,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -617315,7 +619113,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -617323,7 +619121,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -617332,7 +619130,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -617341,7 +619139,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -617350,7 +619148,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -617359,14 +619157,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -617375,7 +619173,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -617384,7 +619182,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -617393,7 +619191,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -617402,7 +619200,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -617411,7 +619209,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -617420,7 +619218,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -617429,7 +619227,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -617438,7 +619236,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -617447,7 +619245,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -617456,392 +619254,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617849,7 +619647,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617857,7 +619655,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617865,7 +619663,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617873,7 +619671,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -617881,7 +619679,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -617889,532 +619687,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -618422,7 +620220,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -618431,7 +620229,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -618440,7 +620238,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -618449,7 +620247,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -618458,7 +620256,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -618466,7 +620264,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -618475,7 +620273,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -618484,7 +620282,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -618493,7 +620291,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -618502,14 +620300,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -618518,7 +620316,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -618527,7 +620325,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -618536,7 +620334,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -618545,7 +620343,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -618554,7 +620352,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -618563,7 +620361,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -618572,7 +620370,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -618581,7 +620379,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -618590,7 +620388,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -618599,392 +620397,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -618992,7 +620790,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619000,7 +620798,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619008,7 +620806,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619016,7 +620814,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -619024,7 +620822,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -619032,532 +620830,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE7TCCA9WgAwIBAgISBHKweHaYHM62+n9o+K46PuUsMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwNTU5NDNaFw0yNDAyMjIwNTU5NDJaMBsxGTAXBgNVBAMTEGNqZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85LF+K3ZkuwdYSi1QkMvC5MbRimO0Y/g7G2ddO+WvNYyMaZqKR/G1dVuXYv4z/EmNJ0LoRv6eGtXv/bHJ507VxxsaYjyXjLIwwE/Ua4HxIonwB6SNkn2MMQWunXaG2Nf9eI1iBHXrBND0bHcTdmzYXX42YMNntlgERG0z/8gec6cIstnf77Pdm73uH2DrLs2KX7l6AfFQvf1HyvfgGM1lZLgcGcAQQBjEwlFpG71rwi7dkTl+i+/BchN/MXHZLgAEGrXiUmTlwiyz5lrXZqdskqII7MqwZq4ogmJUxYvJmqq6BmQJjiJhj6cd4nPqUNSZHwgR6rShVDLPVkMzs0IjAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAiDpijaSNxfIB4ada91JHqKUeTIMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCEGNqZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYwAIJCEAAAEAwBGMEQCICs+JRoM6Xd1NbYB6O8bZJJmOCPJChu6VwBcbdO6L9YRAiBraW5XehD8BD1MUoQ+h3JRhKpIlAeSk2svfWH0Bhu8aQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjAAgkI4AAAQDAEgwRgIhAOiv8UZPK/i5wWsU/mOdOeHa2npmm1ZW8/REw8fqAQeLAiEAl7t5ZDG4ju04BqBZ+vx4jtZAcPjFwRd6LWed2UZXTKMwDQYJKoZIhvcNAQELBQADggEBALZh0/IwujsDQJck0e+No1qch82Y2DR4zq5khP0lFhE051eH8XOJ8MyWwjE8u5yJFKQ0aBVADyL7b+68nKVBKUMAEAX+b0U8MxKRGtm41+sS+toKWq68IGiLYFnxW7vmgsSvKkC5aml9wVoohLvRnjt33fisgLJx8oobPUdHRFz/CD5bXZSCb5hCHEROQeuBBskpWATZ+JKhdPM29z2AhbtG2wZCzkwWyfL4wDm3+1C6ZmzbHd36+Ma/jR+KjFSOStu5db3//AbVfyFJ0TckwqgVrpzZU9hPa78RO3P3qHSVzjXw67NLOpu/ZCGIC30W6ju/IcGxd7A2G3KYAuxSSpA=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -619565,7 +621363,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -619574,7 +621372,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -619583,7 +621381,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -619592,7 +621390,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -619601,7 +621399,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -619609,7 +621407,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -619618,7 +621416,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -619627,7 +621425,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -619636,7 +621434,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -619645,14 +621443,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -619661,7 +621459,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -619670,7 +621468,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -619679,7 +621477,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -619688,7 +621486,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -619697,7 +621495,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -619706,7 +621504,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -619715,7 +621513,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -619724,7 +621522,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -619733,7 +621531,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -619742,392 +621540,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620135,7 +621933,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620143,7 +621941,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620151,7 +621949,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620159,7 +621957,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -620167,7 +621965,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -620175,532 +621973,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -620708,7 +622506,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -620717,7 +622515,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -620726,7 +622524,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -620735,7 +622533,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -620744,7 +622542,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -620752,7 +622550,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -620761,7 +622559,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -620770,7 +622568,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -620779,7 +622577,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -620788,14 +622586,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -620804,7 +622602,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -620813,7 +622611,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -620822,7 +622620,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -620831,7 +622629,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -620840,7 +622638,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -620849,7 +622647,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -620858,7 +622656,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -620867,7 +622665,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -620876,7 +622674,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -620885,392 +622683,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/46.252.181.103", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621278,7 +623076,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621286,7 +623084,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621294,7 +623092,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621302,7 +623100,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -621310,7 +623108,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -621318,532 +623116,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE7TCCA9WgAwIBAgISBHKweHaYHM62+n9o+K46PuUsMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwNTU5NDNaFw0yNDAyMjIwNTU5NDJaMBsxGTAXBgNVBAMTEGNqZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85LF+K3ZkuwdYSi1QkMvC5MbRimO0Y/g7G2ddO+WvNYyMaZqKR/G1dVuXYv4z/EmNJ0LoRv6eGtXv/bHJ507VxxsaYjyXjLIwwE/Ua4HxIonwB6SNkn2MMQWunXaG2Nf9eI1iBHXrBND0bHcTdmzYXX42YMNntlgERG0z/8gec6cIstnf77Pdm73uH2DrLs2KX7l6AfFQvf1HyvfgGM1lZLgcGcAQQBjEwlFpG71rwi7dkTl+i+/BchN/MXHZLgAEGrXiUmTlwiyz5lrXZqdskqII7MqwZq4ogmJUxYvJmqq6BmQJjiJhj6cd4nPqUNSZHwgR6rShVDLPVkMzs0IjAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAiDpijaSNxfIB4ada91JHqKUeTIMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCEGNqZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYwAIJCEAAAEAwBGMEQCICs+JRoM6Xd1NbYB6O8bZJJmOCPJChu6VwBcbdO6L9YRAiBraW5XehD8BD1MUoQ+h3JRhKpIlAeSk2svfWH0Bhu8aQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjAAgkI4AAAQDAEgwRgIhAOiv8UZPK/i5wWsU/mOdOeHa2npmm1ZW8/REw8fqAQeLAiEAl7t5ZDG4ju04BqBZ+vx4jtZAcPjFwRd6LWed2UZXTKMwDQYJKoZIhvcNAQELBQADggEBALZh0/IwujsDQJck0e+No1qch82Y2DR4zq5khP0lFhE051eH8XOJ8MyWwjE8u5yJFKQ0aBVADyL7b+68nKVBKUMAEAX+b0U8MxKRGtm41+sS+toKWq68IGiLYFnxW7vmgsSvKkC5aml9wVoohLvRnjt33fisgLJx8oobPUdHRFz/CD5bXZSCb5hCHEROQeuBBskpWATZ+JKhdPM29z2AhbtG2wZCzkwWyfL4wDm3+1C6ZmzbHd36+Ma/jR+KjFSOStu5db3//AbVfyFJ0TckwqgVrpzZU9hPa78RO3P3qHSVzjXw67NLOpu/ZCGIC30W6ju/IcGxd7A2G3KYAuxSSpA=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -621851,7 +623649,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -621860,7 +623658,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -621869,7 +623667,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -621878,7 +623676,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -621887,7 +623685,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -621895,7 +623693,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -621904,7 +623702,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -621913,7 +623711,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -621922,7 +623720,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -621931,14 +623729,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -621947,7 +623745,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -621956,7 +623754,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -621965,7 +623763,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -621974,7 +623772,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -621983,7 +623781,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -621992,7 +623790,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -622001,7 +623799,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -622010,7 +623808,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -622019,7 +623817,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -622028,392 +623826,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -622421,7 +624219,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -622429,7 +624227,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -622437,7 +624235,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -622445,7 +624243,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -622453,7 +624251,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -622461,532 +624259,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -622994,7 +624792,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -623003,7 +624801,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -623012,7 +624810,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -623021,7 +624819,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -623030,7 +624828,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -623038,7 +624836,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -623047,7 +624845,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -623056,7 +624854,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -623065,7 +624863,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -623074,14 +624872,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -623090,7 +624888,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -623099,7 +624897,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -623108,7 +624906,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -623117,7 +624915,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -623126,7 +624924,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -623135,7 +624933,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -623144,7 +624942,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -623153,7 +624951,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -623162,7 +624960,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -623171,392 +624969,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623564,7 +625362,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623572,7 +625370,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623580,7 +625378,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623588,7 +625386,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -623596,7 +625394,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -623604,532 +625402,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -624137,7 +625935,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -624146,7 +625944,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -624155,7 +625953,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -624164,7 +625962,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -624173,7 +625971,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -624181,7 +625979,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -624190,7 +625988,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -624199,7 +625997,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -624208,7 +626006,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -624217,14 +626015,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -624233,7 +626031,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -624242,7 +626040,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -624251,7 +626049,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -624260,7 +626058,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -624269,7 +626067,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -624278,7 +626076,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -624287,7 +626085,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -624296,7 +626094,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -624305,7 +626103,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -624314,332 +626112,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "885" + "finding": "544" } ], "thirdparties": { @@ -624654,7 +626452,7 @@ "endpoints": [ { "hostname": "cje.beta.gouv.fr", - "ip": "185.42.117.109", + "ip": "185.42.117.108", "geoip": { "continent": { "code": "EU", @@ -624721,7 +626519,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:08:06", + "@generated": "Sun, 24 Dec 2023 21:09:23", "site": [ { "@name": "https://cje.beta.gouv.fr", @@ -624843,7 +626641,7 @@ "type": "dns", "host": "cje.beta.gouv.fr.", "matched-at": "cje.beta.gouv.fr", - "timestamp": "2023-12-17T23:22:58.994810113Z", + "timestamp": "2023-12-24T21:23:22.020502778Z", "matcher-status": true }, { @@ -624878,7 +626676,7 @@ "extracted-results": [ "domain.par.clever-cloud.com." ], - "timestamp": "2023-12-17T23:22:59.248111957Z", + "timestamp": "2023-12-24T21:23:23.026217261Z", "matcher-status": true }, { @@ -624908,8 +626706,8 @@ "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:23:15.741575212Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:23:35.172228613Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -624942,8 +626740,8 @@ "extracted-results": [ "HTML Tidy for Linux (vers 25 March 2009), see www.w3.org" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:23:48.310279062Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:00.610659423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -624975,12 +626773,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464720673Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958228781Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625016,8 +626814,8 @@ "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464778931Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958290044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625049,12 +626847,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464796134Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958311524Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625086,12 +626884,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464808837Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958327614Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625123,12 +626921,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464823926Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958343012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625160,12 +626958,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "permissions-policy", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464838633Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958360174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625197,12 +626995,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464853901Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958377777Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625234,12 +627032,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464866415Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958393857Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625271,12 +627069,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464878878Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958409085Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625308,12 +627106,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464891081Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.958424453Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625345,12 +627143,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://cje.beta.gouv.fr", "matched-at": "https://cje.beta.gouv.fr", - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:24:01.464904235Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:24:10.95843893Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", "matcher-status": true }, @@ -625400,7 +627198,7 @@ "SSH-2.0-OpenSSH_9.4" ], "ip": "91.208.207.214", - "timestamp": "2023-12-17T23:26:05.562935586Z", + "timestamp": "2023-12-24T21:26:02.737950676Z", "matcher-status": true }, { @@ -625414,7 +627212,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -625428,8 +627227,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:26:45.821883098Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:26:10.296411766Z", "matcher-status": true }, { @@ -625443,7 +627242,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -625457,8 +627257,8 @@ "extracted-results": [ "cje.beta.gouv.fr" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:26:45.822101116Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:26:10.296541196Z", "matcher-status": true }, { @@ -625473,7 +627273,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -625487,8 +627288,8 @@ "extracted-results": [ "tls12" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:26:48.097658147Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:26:34.835243596Z", "matcher-status": true }, { @@ -625503,7 +627304,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -625517,8 +627319,8 @@ "extracted-results": [ "tls13" ], - "ip": "91.208.207.217", - "timestamp": "2023-12-17T23:26:48.493499462Z", + "ip": "185.42.117.109", + "timestamp": "2023-12-24T21:26:35.051810368Z", "matcher-status": true } ], @@ -625596,7 +627398,7 @@ "summary": { "httpGrade": "F", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-22T05:59:00.000Z", @@ -625621,7 +627423,7 @@ "http": { "url": "https://aplypro.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:27:09 GMT", + "end_time": "Sun, 24 Dec 2023 21:19:02 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -625630,24 +627432,24 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 23:27:08 GMT", - "ETag": "W/\"0acb44b8ed5adefa20675752cbe09329\"", - "Link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", + "Date": "Sun, 24 Dec 2023 21:19:01 GMT", + "ETag": "W/\"7406638d27d208f84d0faf1bbfbbab81\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_aplypro_session=R9v%2BLf9JyjRD23G1ioolmUV3XFwnFC3Ig07d9qKV7FLAuUDs%2Bm8WPVUQGPS32vaT13KsxsT8Sgx1H%2BqoikjRYvDzN5wFNPf%2BIJmckIPkCgDvI9PTu%2BGhd6O51ulj70ZADs%2B1zpiiHU9TjFF8xdAFnCw8cF8BM9JuGHyQCfBeQyOqIO89YWM4BAQsMmHx%2F%2FRjibC52Ii2MjKa9mLRxEvfhdtVbmx%2FgO7TsSJzWn9tdE7ZY2WdOUkVkdQ1829Mzh6U%2FYfoud%2FBqdFNpmv1bS%2FP9nJ4yRxgfFON--ttex4jN673SLlyXI--oPttuHUXFAWa2%2FoOcd4dcA%3D%3D; path=/; HttpOnly; SameSite=Lax", + "Set-Cookie": "_aplypro_session=yMVkHPX%2F957xqySj4bg61Jo9Bf4j314rxzvnCTPJRdtDDInOIE0HqVRzGoZoas%2Foi3yy1WBaLS%2F69E2iovS73eFHkwyLdf4a1QrhBLXdau1wvBJWmxyLwkIG2YLJlvT1SGltNe08veCYef7bc%2BaLUGsmxsCKb9Suo4FH8kBkBEY0GLn3Tb9o3Mk7cXr5LtFncb2zke8SDxB2T0GMzAMg%2B%2FMcDmWwTMiA0dCllxfQLEZY2CTuL74W5nykIQ4k85g60ktqgEwTcoALyjoREQY9V5772PtK6H%2B4--ofXX1EcVyI8yuFfH--UCACRX%2F2Ch1c9N%2FiLx%2B2JA%3D%3D; path=/; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "c1c235ff-3101-4a9b-862c-4abd90108fb0, c1c235ff-3101-4a9b-862c-4abd90108fb0", - "X-Runtime": "0.009067", + "X-Request-ID": "cd89dbbe-2634-4870-82d8-e93a8154b909, cd89dbbe-2634-4870-82d8-e93a8154b909", + "X-Runtime": "0.012180", "X-XSS-Protection": "0" }, - "scan_id": 45565832, + "scan_id": 45773675, "score": 55, - "start_time": "Sun, 17 Dec 2023 23:27:04 GMT", + "start_time": "Sun, 24 Dec 2023 21:18:57 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -625853,77 +627655,77 @@ "testssl": [ { "id": "service", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625931,7 +627733,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625939,7 +627741,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625947,7 +627749,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625955,7 +627757,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -625963,7 +627765,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -625971,525 +627773,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-01 11:43" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-01-30 11:43" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702855719" + "finding": "1703452840" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -626497,7 +628299,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -626506,7 +628308,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -626515,7 +628317,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -626524,7 +628326,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -626533,7 +628335,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -626541,7 +628343,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -626550,7 +628352,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -626559,7 +628361,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -626568,7 +628370,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -626577,14 +628379,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -626593,7 +628395,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -626602,7 +628404,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -626611,7 +628413,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -626620,7 +628422,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -626629,7 +628431,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -626638,7 +628440,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -626647,7 +628449,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -626656,7 +628458,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -626665,7 +628467,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -626674,392 +628476,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/80.247.12.255", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -627067,7 +628869,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -627075,7 +628877,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -627083,7 +628885,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -627091,7 +628893,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -627099,7 +628901,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -627107,525 +628909,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-01 11:43" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-01-30 11:43" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702855770" + "finding": "1703452895" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -627633,7 +629435,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -627642,7 +629444,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -627651,7 +629453,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -627660,7 +629462,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -627669,7 +629471,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -627677,7 +629479,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -627686,7 +629488,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -627695,7 +629497,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -627704,7 +629506,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -627713,14 +629515,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -627729,7 +629531,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -627738,7 +629540,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -627747,7 +629549,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -627756,7 +629558,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -627765,7 +629567,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -627774,7 +629576,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -627783,7 +629585,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -627792,7 +629594,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -627801,7 +629603,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -627810,392 +629612,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -628203,7 +630005,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -628211,7 +630013,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -628219,7 +630021,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -628227,7 +630029,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -628235,7 +630037,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -628243,525 +630045,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-01 11:43" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-01-30 11:43" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702855821" + "finding": "1703452950" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -628769,7 +630571,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -628778,7 +630580,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -628787,7 +630589,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -628796,7 +630598,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -628805,7 +630607,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -628813,7 +630615,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -628822,7 +630624,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -628831,7 +630633,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -628840,7 +630642,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -628849,14 +630651,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -628865,7 +630667,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -628874,7 +630676,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -628883,7 +630685,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -628892,7 +630694,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -628901,7 +630703,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -628910,7 +630712,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -628919,7 +630721,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -628928,7 +630730,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -628937,7 +630739,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -628946,392 +630748,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629339,7 +631141,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629347,7 +631149,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629355,7 +631157,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629363,7 +631165,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -629371,7 +631173,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -629379,525 +631181,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-01 11:43" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-01-30 11:43" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702855873" + "finding": "1703453007" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -629905,7 +631707,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -629914,7 +631716,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -629923,7 +631725,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -629932,7 +631734,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -629941,7 +631743,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -629949,7 +631751,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -629958,7 +631760,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -629967,7 +631769,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -629976,7 +631778,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -629985,14 +631787,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -630001,7 +631803,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -630010,7 +631812,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -630019,7 +631821,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -630028,7 +631830,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -630037,7 +631839,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -630046,7 +631848,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -630055,7 +631857,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -630064,7 +631866,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -630073,7 +631875,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -630082,325 +631884,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "aplypro.beta.gouv.fr/148.253.96.193", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "209" + "finding": "225" } ], "thirdparties": { @@ -630411,7 +632213,7 @@ "value": "1", "domain": "aplypro.beta.gouv.fr", "path": "/", - "expires": 1702857461, + "expires": 1703454577, "size": 16, "httpOnly": false, "secure": false, @@ -630423,10 +632225,10 @@ }, { "name": "_pk_id.27.0c8d", - "value": "f3e3459f0d5cdaa2.1702855661.", + "value": "f95753a7fa6c236d.1703452777.", "domain": "aplypro.beta.gouv.fr", "path": "/", - "expires": 1736810861, + "expires": 1737407977, "size": 42, "httpOnly": false, "secure": false, @@ -630438,11 +632240,11 @@ }, { "name": "_aplypro_session", - "value": "Y6nVifXQqgWMIm5pLzJHhDmakKMP%2Bn9yCqcRs56d2oJUMST4hconNqYL%2FyHng5Ya0Bmjsz5kHzlU5qeVOAR4PzLSkPFz%2B%2FhEjYymO5l%2Bpl%2FjyuwLnm4MazKoDoScpOCxiKT%2Bx%2FRrf4aJ%2BmlxfepzeSebow1eXudOM0j7TECvqmckhkZiigaGxjF4LUj6K3yO4ItmP7Jq6IYOXncYqJqrnWELns1WYZBL07qGbhlBEXGrgEQ7NCmc%2B%2BRVFnY8ns%2FGy%2FQBlNpGCQVOqIY44Foh8WcvCjS3s2ml--76zCxFW5w%2Fij2RyS--i9nkDVvbDX%2B59UNQnBH7%2FQ%3D%3D", + "value": "jS6Ck%2BJY8CpKR%2B8Gd9ZFfruclSh%2FicXnts8JfBdaYUDCMWkM1ThnvRvRZAYkwIfN4XSSs8wW718iELgW%2FFh5VXRtRyznlpruWV%2BtbHVVvSlcbF0zpbhoNCsEsSPkkMVCJivUYSDzUJvjKx4%2FdxxgJomlT5jHgmv8TBCw753F2IdL9oTDbTYOP0iMeGrVGwkICqPX7XmSazPcW0bsd3cwmxuHaUZsDWD%2BOKh6NFv5rkphKH8hzF%2BCLalvNkYocFL%2FhMNS3iTYKE4UwTnA%2FZp%2BswgswvnlTQK6--1H2RaPPBt%2BN8jt8O--hpmqzX1eE415t%2Bzgo0MfRw%3D%3D", "domain": "aplypro.beta.gouv.fr", "path": "/", "expires": -1, - "size": 384, + "size": 378, "httpOnly": true, "secure": false, "session": true, @@ -630456,23 +632258,23 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 23:27:40 GMT", - "etag": "W/\"6d2b8f458a7aefb8e35fca58f1176b6d\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 24 Dec 2023 21:19:36 GMT", + "etag": "W/\"ee5c6929d7ffb91152f9bb310acb4eae\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_aplypro_session=Y6nVifXQqgWMIm5pLzJHhDmakKMP%2Bn9yCqcRs56d2oJUMST4hconNqYL%2FyHng5Ya0Bmjsz5kHzlU5qeVOAR4PzLSkPFz%2B%2FhEjYymO5l%2Bpl%2FjyuwLnm4MazKoDoScpOCxiKT%2Bx%2FRrf4aJ%2BmlxfepzeSebow1eXudOM0j7TECvqmckhkZiigaGxjF4LUj6K3yO4ItmP7Jq6IYOXncYqJqrnWELns1WYZBL07qGbhlBEXGrgEQ7NCmc%2B%2BRVFnY8ns%2FGy%2FQBlNpGCQVOqIY44Foh8WcvCjS3s2ml--76zCxFW5w%2Fij2RyS--i9nkDVvbDX%2B59UNQnBH7%2FQ%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_aplypro_session=jS6Ck%2BJY8CpKR%2B8Gd9ZFfruclSh%2FicXnts8JfBdaYUDCMWkM1ThnvRvRZAYkwIfN4XSSs8wW718iELgW%2FFh5VXRtRyznlpruWV%2BtbHVVvSlcbF0zpbhoNCsEsSPkkMVCJivUYSDzUJvjKx4%2FdxxgJomlT5jHgmv8TBCw753F2IdL9oTDbTYOP0iMeGrVGwkICqPX7XmSazPcW0bsd3cwmxuHaUZsDWD%2BOKh6NFv5rkphKH8hzF%2BCLalvNkYocFL%2FhMNS3iTYKE4UwTnA%2FZp%2BswgswvnlTQK6--1H2RaPPBt%2BN8jt8O--hpmqzX1eE415t%2Bzgo0MfRw%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "9b9bc2f8-45ca-4098-9e5c-4789c44d67fb\n9b9bc2f8-45ca-4098-9e5c-4789c44d67fb", - "x-runtime": "0.009699", + "x-request-id": "e86abc30-c8d3-48bb-ace4-ee13470042f6\ne86abc30-c8d3-48bb-ace4-ee13470042f6", + "x-runtime": "0.010072", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "aplypro.beta.gouv.fr", - "ip": "185.21.194.105", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -630589,23 +632391,6 @@ } ] }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, { "slug": "ovhcloud", "name": "OVHcloud", @@ -630628,13 +632413,30 @@ } ], "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:26:39", + "@generated": "Sun, 24 Dec 2023 21:18:32", "site": [ { "@name": "https://aplypro.beta.gouv.fr", @@ -630767,22 +632569,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -630798,31 +632600,24 @@ "type": "dns", "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", - "extracted-results": [ - "\"1|www.aplypro.beta.gouv.fr\"", - "\"v=spf1 include:mx.ovh.com -all\"" - ], - "timestamp": "2023-12-17T23:32:33.57441559Z", + "timestamp": "2023-12-24T21:24:53.976036867Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -630837,24 +632632,31 @@ "type": "dns", "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", - "timestamp": "2023-12-17T23:32:33.577336809Z", + "extracted-results": [ + "ns107.ovh.net.", + "dns107.ovh.net." + ], + "timestamp": "2023-12-24T21:24:54.860245504Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -630870,10 +632672,10 @@ "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", "extracted-results": [ - "dns107.ovh.net.", - "ns107.ovh.net." + "\"v=spf1 include:mx.ovh.com -all\"", + "\"1|www.aplypro.beta.gouv.fr\"" ], - "timestamp": "2023-12-17T23:32:34.488643755Z", + "timestamp": "2023-12-24T21:24:55.002286902Z", "matcher-status": true }, { @@ -630910,11 +632712,11 @@ "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", "extracted-results": [ - "1 mx1.mail.ovh.net.", + "100 mx3.mail.ovh.net.", "5 mx2.mail.ovh.net.", - "100 mx3.mail.ovh.net." + "1 mx1.mail.ovh.net." ], - "timestamp": "2023-12-17T23:32:34.649165412Z", + "timestamp": "2023-12-24T21:24:55.041368691Z", "matcher-status": true }, { @@ -630945,12 +632747,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279168335Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.933223685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -630982,12 +632784,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279222025Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.93330108Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -631019,12 +632821,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279238345Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.933324744Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -631056,12 +632858,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279252361Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.933370379Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -631093,12 +632895,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279267239Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.933409653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -631130,12 +632932,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:33:19.279283529Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:25:49.933431694Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -631150,7 +632952,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -631164,8 +632967,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:39:20.861818398Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:32:00.822423678Z", "matcher-status": true }, { @@ -631179,7 +632982,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -631193,8 +632997,8 @@ "extracted-results": [ "aplypro.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:39:20.861939404Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:32:00.822562326Z", "matcher-status": true }, { @@ -631209,7 +633013,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -631223,8 +633028,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:39:22.273595041Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:32:02.44436418Z", "matcher-status": true }, { @@ -631239,7 +633044,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -631253,8 +633059,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2023-12-17T23:39:22.920139759Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:32:02.729614239Z", "matcher-status": true } ], @@ -631262,7 +633068,7 @@ { "requestedUrl": "https://aplypro.beta.gouv.fr/", "finalUrl": "https://aplypro.beta.gouv.fr/login", - "fetchTime": "2023-12-17T23:26:53.908Z", + "fetchTime": "2023-12-24T21:18:46.992Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://aplypro.beta.gouv.fr/) was redirected to https://aplypro.beta.gouv.fr/login. Try testing the second URL directly." ], @@ -631327,53 +633133,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2231, + "numericValue": 2264, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1802, - "firstMeaningfulPaint": 1802, - "largestContentfulPaint": 2010, - "interactive": 2231, - "speedIndex": 2037, - "totalBlockingTime": 59, - "maxPotentialFID": 109, - "cumulativeLayoutShift": 0.04007038031684028, - "cumulativeLayoutShiftMainFrame": 0.04007038031684028, - "totalCumulativeLayoutShift": 0.04007038031684028, + "firstContentfulPaint": 2113, + "firstMeaningfulPaint": 2264, + "largestContentfulPaint": 2490, + "interactive": 2264, + "speedIndex": 2669, + "totalBlockingTime": 0, + "maxPotentialFID": 53, + "cumulativeLayoutShift": 0.030533053927951387, + "cumulativeLayoutShiftMainFrame": 0.030533053927951387, + "totalCumulativeLayoutShift": 0.030533053927951387, "observedTimeOrigin": 0, - "observedTimeOriginTs": 230072931, + "observedTimeOriginTs": 278339863, "observedNavigationStart": 0, - "observedNavigationStartTs": 230072931, - "observedFirstPaint": 723, - "observedFirstPaintTs": 230796255, - "observedFirstContentfulPaint": 772, - "observedFirstContentfulPaintTs": 230845308, - "observedFirstContentfulPaintAllFrames": 772, - "observedFirstContentfulPaintAllFramesTs": 230845308, - "observedFirstMeaningfulPaint": 772, - "observedFirstMeaningfulPaintTs": 230845308, - "observedLargestContentfulPaint": 772, - "observedLargestContentfulPaintTs": 230845308, - "observedLargestContentfulPaintAllFrames": 772, - "observedLargestContentfulPaintAllFramesTs": 230845308, - "observedTraceEnd": 3612, - "observedTraceEndTs": 233684514, - "observedLoad": 1303, - "observedLoadTs": 231376098, - "observedDomContentLoaded": 791, - "observedDomContentLoadedTs": 230863776, - "observedCumulativeLayoutShift": 0.04007038031684028, - "observedCumulativeLayoutShiftMainFrame": 0.04007038031684028, - "observedTotalCumulativeLayoutShift": 0.04007038031684028, - "observedFirstVisualChange": 784, - "observedFirstVisualChangeTs": 230856931, - "observedLastVisualChange": 1051, - "observedLastVisualChangeTs": 231123931, - "observedSpeedIndex": 797, - "observedSpeedIndexTs": 230869432 + "observedNavigationStartTs": 278339863, + "observedFirstPaint": 904, + "observedFirstPaintTs": 279243957, + "observedFirstContentfulPaint": 943, + "observedFirstContentfulPaintTs": 279283302, + "observedFirstContentfulPaintAllFrames": 943, + "observedFirstContentfulPaintAllFramesTs": 279283302, + "observedFirstMeaningfulPaint": 943, + "observedFirstMeaningfulPaintTs": 279283302, + "observedLargestContentfulPaint": 943, + "observedLargestContentfulPaintTs": 279283302, + "observedLargestContentfulPaintAllFrames": 943, + "observedLargestContentfulPaintAllFramesTs": 279283302, + "observedTraceEnd": 3731, + "observedTraceEndTs": 282070742, + "observedLoad": 1423, + "observedLoadTs": 279762683, + "observedDomContentLoaded": 910, + "observedDomContentLoadedTs": 279249399, + "observedCumulativeLayoutShift": 0.030533053927951387, + "observedCumulativeLayoutShiftMainFrame": 0.030533053927951387, + "observedTotalCumulativeLayoutShift": 0.030533053927951387, + "observedFirstVisualChange": 948, + "observedFirstVisualChangeTs": 279287863, + "observedLastVisualChange": 1215, + "observedLastVisualChangeTs": 279554863, + "observedSpeedIndex": 956, + "observedSpeedIndexTs": 279295828 }, { "lcpInvalidated": false @@ -631395,19 +633201,19 @@ "numScripts": 17, "numStylesheets": 2, "numFonts": 3, - "numTasks": 749, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, + "numTasks": 715, + "numTasksOver10ms": 6, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.766, - "throughput": 8708227.962319165, - "maxRtt": 83.52600000000001, - "maxServerLatency": 2.2339999999999947, - "totalByteWeight": 452741, - "totalTaskTime": 211.0659999999998, - "mainDocumentTransferSize": 5982 + "rtt": 99.979, + "throughput": 7065519.502827772, + "maxRtt": 100.748, + "maxServerLatency": 3.6119999999999948, + "totalByteWeight": 452848, + "totalTaskTime": 215.99699999999916, + "mainDocumentTransferSize": 6030 } ] } @@ -631548,7 +633354,7 @@ "http": { "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:28:42 GMT", + "end_time": "Sun, 24 Dec 2023 21:30:28 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -631559,21 +633365,21 @@ "Content-Length": "970", "Content-Security-Policy": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 17 Dec 2023 23:28:41 GMT", - "ETag": "W/\"3ca-18c39154ef8\"", - "Last-Modified": "Tue, 05 Dec 2023 08:25:47 GMT", + "Date": "Sun, 24 Dec 2023 21:30:27 GMT", + "ETag": "W/\"3ca-18c90d826b0\"", + "Last-Modified": "Fri, 22 Dec 2023 09:25:34 GMT", "RateLimit-Limit": "100", "RateLimit-Remaining": "98", - "RateLimit-Reset": "284", - "Set-Cookie": "session=eyJfY3NyZlNlY3JldCI6IjMrY0RpSm1ncVN5RXlRPT0ifQ==; path=/; expires=Mon, 18 Dec 2023 00:28:41 GMT; samesite=strict; secure; httponly, session.sig=22kd18sEM9m-V-X9b2Jh-2k_pl0; path=/; expires=Mon, 18 Dec 2023 00:28:41 GMT; samesite=strict; secure; httponly", + "RateLimit-Reset": "158", + "Set-Cookie": "session=eyJfY3NyZlNlY3JldCI6Inh5K0VCVTRZQTdVR2ZnPT0ifQ==; path=/; expires=Sun, 24 Dec 2023 22:30:27 GMT; samesite=strict; secure; httponly, session.sig=HnJHO991RihLn4ugy5Zo-700xV0; path=/; expires=Sun, 24 Dec 2023 22:30:27 GMT; samesite=strict; secure; httponly", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", "X-Content-Type-Options": "nosniff", "X-Powered-By": "Express", - "X-Request-ID": "a9438119-7840-4e14-b4b4-4a156003f608" + "X-Request-ID": "6352c318-57de-4742-8ee8-b75f1ae6eec2" }, - "scan_id": 45565850, + "scan_id": 45773836, "score": 60, - "start_time": "Sun, 17 Dec 2023 23:28:39 GMT", + "start_time": "Sun, 24 Dec 2023 21:30:25 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -631601,8 +633407,8 @@ "'self'" ], "img-src": [ - "'self'", "https", + "'self'", "data:" ], "manifest-src": [ @@ -631620,8 +633426,8 @@ ], "style-src": [ "'report-sample'", - "'self'", - "'sha256-hzhujvbe6oi2wcxum7bmy2rp9vdlmhyddyr9malnmoy='" + "'sha256-hzhujvbe6oi2wcxum7bmy2rp9vdlmhyddyr9malnmoy='", + "'self'" ] }, "http": true, @@ -631664,7 +633470,7 @@ "data": { "session": { "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "expires": 1702859321, + "expires": 1703457027, "httponly": true, "max-age": null, "path": "/", @@ -631674,7 +633480,7 @@ }, "session.sig": { "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "expires": 1702859321, + "expires": 1703457027, "httponly": true, "max-age": null, "path": "/", @@ -631838,77 +633644,77 @@ "testssl": [ { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631916,7 +633722,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631924,7 +633730,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631932,7 +633738,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631940,7 +633746,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -631948,7 +633754,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -631956,490 +633762,462 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "WARN", + "finding": "Unexpected 429 Too Many Requests @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702855829" - }, - { - "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" + "finding": "1703453503" }, { - "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "id": "HSTS", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "2 at '/'" + "finding": "2 at '/' (30x detected, better try target URL of 30x)" }, { "id": "cookie_secure", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as HttpOnly" - }, - { - "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" + "finding": "All (2) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { - "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "id": "security_headers", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -632447,7 +634225,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -632456,7 +634234,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -632465,7 +634243,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -632474,7 +634252,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -632483,7 +634261,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -632491,7 +634269,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -632500,7 +634278,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -632509,7 +634287,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -632518,7 +634296,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -632527,14 +634305,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -632543,7 +634321,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -632552,7 +634330,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -632561,7 +634339,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -632570,7 +634348,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -632579,7 +634357,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -632588,7 +634366,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -632597,7 +634375,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -632606,7 +634384,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -632615,7 +634393,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -632624,318 +634402,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", @@ -633291,7 +635076,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "HIGH", - "finding": "expires < 30 days (26)" + "finding": "expires < 30 days (19)" }, { "id": "cert_notBefore", @@ -633437,43 +635222,29 @@ "id": "HTTP_status_code", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" + "severity": "WARN", + "finding": "Unexpected 429 Too Many Requests @ '/'" }, { "id": "HTTP_clock_skew", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702855924" + "finding": "1703453553" }, { - "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", + "id": "HSTS", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" + "severity": "LOW", + "finding": "not offered" }, { "id": "HPKP", @@ -633501,7 +635272,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "2 at '/'" + "finding": "2 at '/' (30x detected, better try target URL of 30x)" }, { "id": "cookie_secure", @@ -633515,28 +635286,14 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "All (2) at '/' marked as HttpOnly" + "finding": "All (2) at '/' marked as HttpOnly (30x detected, better try target URL of 30x)" }, { - "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" - }, - { - "id": "Cache-Control", + "id": "security_headers", "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "public, max-age=0" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", @@ -634036,7 +635793,14 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "A+" + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", @@ -634392,7 +636156,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "HIGH", - "finding": "expires < 30 days (26)" + "finding": "expires < 30 days (19)" }, { "id": "cert_notBefore", @@ -634553,7 +636317,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702856019" + "finding": "1703453608" }, { "id": "HSTS_time", @@ -635141,77 +636905,77 @@ }, { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -635219,7 +636983,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -635227,7 +636991,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -635235,7 +636999,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -635243,7 +637007,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -635251,7 +637015,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -635259,490 +637023,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "B9F2164323638DCE0B92218B43C41C1B2B2696389329DB19F5CF7AD49B5CB372" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2014-09-12 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-11 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi Standard SSL CA 2 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702856114" + "finding": "1703453659" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" }, { "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -635750,7 +637514,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -635759,7 +637523,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -635768,7 +637532,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -635777,7 +637541,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -635786,7 +637550,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -635794,7 +637558,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -635803,7 +637567,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -635812,7 +637576,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -635821,7 +637585,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -635830,14 +637594,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -635846,7 +637610,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -635855,7 +637619,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -635864,7 +637628,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -635873,7 +637637,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -635882,7 +637646,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -635891,7 +637655,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -635900,7 +637664,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -635909,7 +637673,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -635918,7 +637682,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -635927,325 +637691,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "383" + "finding": "211" } ], "thirdparties": { @@ -636253,10 +638017,10 @@ "cookies": [ { "name": "session.sig", - "value": "NOi5n3XPpLWbJHAJhgw2UgyRIMI", + "value": "RpQC-gLzOP800A8QLRXpQiVkdm8", "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1702859354.290704, + "expires": 1703457062.141813, "size": 38, "httpOnly": true, "secure": true, @@ -636268,10 +638032,10 @@ }, { "name": "session", - "value": "eyJfY3NyZlNlY3JldCI6Im5HcVZxdGJPTFYyQmx3PT0ifQ==", + "value": "eyJfY3NyZlNlY3JldCI6IjFaWm9jQ1d4VnpIL2dBPT0ifQ==", "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1702859354.290597, + "expires": 1703457062.14169, "size": 55, "httpOnly": true, "secure": true, @@ -636288,22 +638052,22 @@ "content-length": "970", "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 17 Dec 2023 23:29:14 GMT", - "etag": "W/\"3ca-18c39154ef8\"", - "last-modified": "Tue, 05 Dec 2023 08:25:47 GMT", + "date": "Sun, 24 Dec 2023 21:31:02 GMT", + "etag": "W/\"3ca-18c90d826b0\"", + "last-modified": "Fri, 22 Dec 2023 09:25:34 GMT", "ratelimit-limit": "100", - "ratelimit-remaining": "60", - "ratelimit-reset": "251", - "set-cookie": "session=eyJfY3NyZlNlY3JldCI6Im5HcVZxdGJPTFYyQmx3PT0ifQ==; path=/; expires=Mon, 18 Dec 2023 00:29:14 GMT; samesite=strict; secure; httponly\nsession.sig=NOi5n3XPpLWbJHAJhgw2UgyRIMI; path=/; expires=Mon, 18 Dec 2023 00:29:14 GMT; samesite=strict; secure; httponly", + "ratelimit-remaining": "9", + "ratelimit-reset": "123", + "set-cookie": "session=eyJfY3NyZlNlY3JldCI6IjFaWm9jQ1d4VnpIL2dBPT0ifQ==; path=/; expires=Sun, 24 Dec 2023 22:31:02 GMT; samesite=strict; secure; httponly\nsession.sig=RpQC-gLzOP800A8QLRXpQiVkdm8; path=/; expires=Sun, 24 Dec 2023 22:31:02 GMT; samesite=strict; secure; httponly", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-powered-by": "Express", - "x-request-id": "c68c31a9-0e4a-4407-8d82-68316b492a5b" + "x-request-id": "1dfc401b-f857-45e1-b465-4f645dee7ec1" }, "endpoints": [ { "hostname": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -636482,7 +638246,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:28:14", + "@generated": "Sun, 24 Dec 2023 21:30:02", "site": [ { "@name": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io", @@ -636625,7 +638389,7 @@ "extracted-results": [ "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." ], - "timestamp": "2023-12-17T23:37:00.71345761Z", + "timestamp": "2023-12-24T21:35:41.25346788Z", "matcher-status": true }, { @@ -636660,7 +638424,7 @@ "type": "dns", "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io.", "matched-at": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "timestamp": "2023-12-17T23:37:01.716040668Z", + "timestamp": "2023-12-24T21:35:41.25722274Z", "matcher-status": true }, { @@ -636697,8 +638461,8 @@ "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:37:19.53880745Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:35:52.077320273Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -636724,8 +638488,193 @@ "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:37:55.852249231Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:13.569028074Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089309171Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.08939884Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.08942544Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.08944664Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089467409Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -636761,8 +638710,8 @@ "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826121455Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089491093Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -636798,8 +638747,8 @@ "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826185234Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089530558Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -636831,12 +638780,86 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.82620998Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.08955278Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089570653Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089589349Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -636872,267 +638895,8 @@ "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826233734Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826253891Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826275422Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826300989Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.82632255Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826341976Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826360711Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:38:10.826375689Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:36:22.089607773Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -637147,7 +638911,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -637161,8 +638926,8 @@ "extracted-results": [ "Gandi" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:44:40.74096868Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:42:14.648932242Z", "matcher-status": true }, { @@ -637176,7 +638941,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -637191,8 +638957,8 @@ "*.osc-secnum-fr1.scalingo.io", "osc-secnum-fr1.scalingo.io" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:44:40.741094023Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:42:14.649502505Z", "matcher-status": true }, { @@ -637223,11 +638989,11 @@ "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", "matched-at": "anssi-mac-prod.osc-secnum-fr1.scalingo.io:443", "extracted-results": [ - " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]", - "CN: *.osc-secnum-fr1.scalingo.io" + "CN: *.osc-secnum-fr1.scalingo.io", + " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:44:40.741139579Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:42:14.649551377Z", "matcher-status": true }, { @@ -637242,7 +639008,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -637256,8 +639023,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:44:43.348561287Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:42:18.020393635Z", "matcher-status": true }, { @@ -637272,7 +639039,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -637286,8 +639054,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2023-12-17T23:44:43.685358918Z", + "ip": "148.253.96.193", + "timestamp": "2023-12-24T21:42:18.223800406Z", "matcher-status": true } ], @@ -637295,7 +639063,7 @@ { "requestedUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2023-12-17T23:28:28.427Z", + "fetchTime": "2023-12-24T21:30:16.112Z", "runWarnings": [], "categories": { "performance": { @@ -637358,53 +639126,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2342, + "numericValue": 2040, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1827, - "firstMeaningfulPaint": 1902, - "largestContentfulPaint": 2052, - "interactive": 2342, - "speedIndex": 2684, - "totalBlockingTime": 74, - "maxPotentialFID": 181, - "cumulativeLayoutShift": 0.058466012107001405, - "cumulativeLayoutShiftMainFrame": 0.058466012107001405, - "totalCumulativeLayoutShift": 0.058466012107001405, + "firstContentfulPaint": 2015, + "firstMeaningfulPaint": 2015, + "largestContentfulPaint": 2090, + "interactive": 2040, + "speedIndex": 2048, + "totalBlockingTime": 0, + "maxPotentialFID": 50, + "cumulativeLayoutShift": 0.05704189236958822, + "cumulativeLayoutShiftMainFrame": 0.05704189236958822, + "totalCumulativeLayoutShift": 0.05704189236958822, "observedTimeOrigin": 0, - "observedTimeOriginTs": 446229039, + "observedTimeOriginTs": 294054096, "observedNavigationStart": 0, - "observedNavigationStartTs": 446229039, - "observedFirstPaint": 1184, - "observedFirstPaintTs": 447413486, - "observedFirstContentfulPaint": 1184, - "observedFirstContentfulPaintTs": 447413486, - "observedFirstContentfulPaintAllFrames": 1184, - "observedFirstContentfulPaintAllFramesTs": 447413486, - "observedFirstMeaningfulPaint": 1184, - "observedFirstMeaningfulPaintTs": 447413486, - "observedLargestContentfulPaint": 1184, - "observedLargestContentfulPaintTs": 447413486, - "observedLargestContentfulPaintAllFrames": 1184, - "observedLargestContentfulPaintAllFramesTs": 447413486, - "observedTraceEnd": 3801, - "observedTraceEndTs": 450030088, - "observedLoad": 1140, - "observedLoadTs": 447369515, - "observedDomContentLoaded": 1139, - "observedDomContentLoadedTs": 447368351, - "observedCumulativeLayoutShift": 0.058466012107001405, - "observedCumulativeLayoutShiftMainFrame": 0.058466012107001405, - "observedTotalCumulativeLayoutShift": 0.058466012107001405, - "observedFirstVisualChange": 1186, - "observedFirstVisualChangeTs": 447415039, - "observedLastVisualChange": 2103, - "observedLastVisualChangeTs": 448332039, - "observedSpeedIndex": 1248, - "observedSpeedIndexTs": 447476600 + "observedNavigationStartTs": 294054096, + "observedFirstPaint": 662, + "observedFirstPaintTs": 294716028, + "observedFirstContentfulPaint": 662, + "observedFirstContentfulPaintTs": 294716028, + "observedFirstContentfulPaintAllFrames": 662, + "observedFirstContentfulPaintAllFramesTs": 294716028, + "observedFirstMeaningfulPaint": 662, + "observedFirstMeaningfulPaintTs": 294716028, + "observedLargestContentfulPaint": 662, + "observedLargestContentfulPaintTs": 294716028, + "observedLargestContentfulPaintAllFrames": 662, + "observedLargestContentfulPaintAllFramesTs": 294716028, + "observedTraceEnd": 3126, + "observedTraceEndTs": 297179614, + "observedLoad": 621, + "observedLoadTs": 294674860, + "observedDomContentLoaded": 617, + "observedDomContentLoadedTs": 294670738, + "observedCumulativeLayoutShift": 0.05704189236958822, + "observedCumulativeLayoutShiftMainFrame": 0.05704189236958822, + "observedTotalCumulativeLayoutShift": 0.05704189236958822, + "observedFirstVisualChange": 667, + "observedFirstVisualChangeTs": 294721096, + "observedLastVisualChange": 1434, + "observedLastVisualChangeTs": 295488096, + "observedSpeedIndex": 705, + "observedSpeedIndexTs": 294759542 }, { "lcpInvalidated": false @@ -637426,19 +639194,19 @@ "numScripts": 2, "numStylesheets": 3, "numFonts": 3, - "numTasks": 503, - "numTasksOver10ms": 5, - "numTasksOver25ms": 2, + "numTasks": 498, + "numTasksOver10ms": 3, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 150.238, - "throughput": 8646376.149209747, - "maxRtt": 150.238, - "maxServerLatency": 27.342000000000013, - "totalByteWeight": 614833, - "totalTaskTime": 204.82499999999828, - "mainDocumentTransferSize": 1796 + "rtt": 80.101, + "throughput": 18252691.767786894, + "maxRtt": 80.101, + "maxServerLatency": 65.47899999999998, + "totalByteWeight": 620879, + "totalTaskTime": 124.09000000000006, + "mainDocumentTransferSize": 1798 } ] } @@ -637524,7 +639292,7 @@ "nmapOpenPortsGrade": "A", "testsslExpireSoon": true, "testsslExpireDate": "2024-01-12T23:59:00.000Z", - "testsslGrade": "A+", + "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "A", @@ -637555,7 +639323,7 @@ "http": { "url": "https://vae.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:44:48 GMT", + "end_time": "Sun, 24 Dec 2023 21:43:05 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -637563,17 +639331,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 17 Dec 2023 23:44:47 GMT", - "Etag": "\"vjj0pe16fphq\"", + "Date": "Sun, 24 Dec 2023 21:43:03 GMT", + "Etag": "\"i2srl599v9phq\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "5de65b45-5057-4944-8502-274d6824e2ac" + "X-Request-ID": "4e9c7bd9-0153-474d-9e77-6e91d87bdbfe" }, - "scan_id": 45566069, + "scan_id": 45774032, "score": 40, - "start_time": "Sun, 17 Dec 2023 23:43:51 GMT", + "start_time": "Sun, 24 Dec 2023 21:43:00 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -637965,7 +639733,7 @@ "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -638112,7 +639880,7 @@ "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "89 >= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", @@ -638315,7 +640083,7 @@ "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1702856765" + "finding": "1703454281" }, { "id": "HSTS_time", @@ -638875,77 +640643,77 @@ }, { "id": "service", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -638953,7 +640721,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -638961,7 +640729,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -638969,7 +640737,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -638977,7 +640745,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -638985,7 +640753,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -638993,497 +640761,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:28" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-16 07:28" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1702856818" + "finding": "1703454339" }, { "id": "HSTS_time", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -639491,7 +641259,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -639500,7 +641268,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -639509,7 +641277,7 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -639518,7 +641286,7 @@ }, { "id": "ROBOT", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -639527,7 +641295,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -639535,7 +641303,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -639544,7 +641312,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -639553,7 +641321,7 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -639562,7 +641330,7 @@ }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -639571,14 +641339,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -639587,7 +641355,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -639596,7 +641364,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -639605,7 +641373,7 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -639614,7 +641382,7 @@ }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -639623,7 +641391,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -639632,7 +641400,7 @@ }, { "id": "BEAST", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -639641,7 +641409,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -639650,7 +641418,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -639659,7 +641427,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -639668,392 +641436,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "vae.gouv.fr/185.21.194.105", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -640061,7 +641829,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -640069,7 +641837,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -640077,7 +641845,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -640085,7 +641853,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -640093,7 +641861,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -640101,497 +641869,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:28" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-16 07:28" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1702856873" + "finding": "1703454397" }, { "id": "HSTS_time", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -640599,7 +642367,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -640608,7 +642376,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -640617,7 +642385,7 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -640626,7 +642394,7 @@ }, { "id": "ROBOT", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -640635,7 +642403,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -640643,7 +642411,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -640652,7 +642420,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -640661,7 +642429,7 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -640670,7 +642438,7 @@ }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -640679,14 +642447,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -640695,7 +642463,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -640704,7 +642472,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -640713,7 +642481,7 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -640722,7 +642490,7 @@ }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -640731,7 +642499,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -640740,7 +642508,7 @@ }, { "id": "BEAST", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -640749,7 +642517,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -640758,7 +642526,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -640767,7 +642535,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -640776,392 +642544,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "vae.gouv.fr/80.247.12.255", + "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -641169,7 +642937,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -641177,7 +642945,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -641185,7 +642953,7 @@ }, { "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -641193,7 +642961,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -641201,7 +642969,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -641209,497 +642977,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:28" }, { "id": "cert_notAfter", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-16 07:28" }, { "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1702856927" + "finding": "1703454455" }, { "id": "HSTS_time", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -641707,7 +643475,7 @@ }, { "id": "heartbleed", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -641716,7 +643484,7 @@ }, { "id": "CCS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -641725,7 +643493,7 @@ }, { "id": "ticketbleed", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -641734,7 +643502,7 @@ }, { "id": "ROBOT", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -641743,7 +643511,7 @@ }, { "id": "secure_renego", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -641751,7 +643519,7 @@ }, { "id": "secure_client_renego", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -641760,7 +643528,7 @@ }, { "id": "CRIME_TLS", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -641769,7 +643537,7 @@ }, { "id": "BREACH", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -641778,7 +643546,7 @@ }, { "id": "POODLE_SSL", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -641787,14 +643555,14 @@ }, { "id": "fallback_SCSV", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -641803,7 +643571,7 @@ }, { "id": "FREAK", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -641812,7 +643580,7 @@ }, { "id": "DROWN", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -641821,7 +643589,7 @@ }, { "id": "DROWN_hint", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -641830,7 +643598,7 @@ }, { "id": "LOGJAM", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -641839,7 +643607,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -641848,7 +643616,7 @@ }, { "id": "BEAST", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -641857,7 +643625,7 @@ }, { "id": "LUCKY13", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -641866,7 +643634,7 @@ }, { "id": "winshock", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -641875,7 +643643,7 @@ }, { "id": "RC4", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -641884,325 +643652,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "219" + "finding": "235" } ], "thirdparties": { @@ -642221,11 +643989,11 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/5d4404d7-da05-42b9-8e06-1e56d8c150b0/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-17-23-45" + "url": "https://client.crisp.chat/settings/website/5d4404d7-da05-42b9-8e06-1e56d8c150b0/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-11-24-21-43" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/5d4404d7-da05-42b9-8e06-1e56d8c150b0/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1702656777323" + "url": "https://client.crisp.chat/settings/website/5d4404d7-da05-42b9-8e06-1e56d8c150b0/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1703237407621" }, { "type": "unknown", @@ -642236,17 +644004,17 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 17 Dec 2023 23:45:07 GMT", - "etag": "\"vjj0pe16fphq\"", + "date": "Sun, 24 Dec 2023 21:43:37 GMT", + "etag": "\"i2srl599v9phq\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Next.js", - "x-request-id": "55ab7870-17bf-4b8c-81ec-694fe2dff60c" + "x-request-id": "fee24428-6d94-4acd-9427-f77af9cd7310" }, "endpoints": [ { "hostname": "vae.gouv.fr", - "ip": "80.247.12.255", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -642569,7 +644337,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:43:10", + "@generated": "Sun, 24 Dec 2023 21:42:18", "site": [ { "@name": "https://vae.gouv.fr", @@ -642747,7 +644515,7 @@ { "requestedUrl": "https://vae.gouv.fr/", "finalUrl": "https://vae.gouv.fr/", - "fetchTime": "2023-12-17T23:43:41.448Z", + "fetchTime": "2023-12-24T21:42:49.688Z", "runWarnings": [], "categories": { "performance": { @@ -642758,7 +644526,7 @@ "snapshot" ], "id": "performance", - "score": 1 + "score": 0.75 }, "accessibility": { "title": "Accessibility", @@ -642810,53 +644578,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5698, + "numericValue": 6175, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1682, - "firstMeaningfulPaint": 1682, - "largestContentfulPaint": 5293, - "interactive": 5698, - "speedIndex": 3953, - "totalBlockingTime": 123, - "maxPotentialFID": 134, - "cumulativeLayoutShift": 0.19976467047797308, - "cumulativeLayoutShiftMainFrame": 0.19976467047797308, - "totalCumulativeLayoutShift": 0.19976467047797308, + "firstContentfulPaint": 1825, + "firstMeaningfulPaint": 1825, + "largestContentfulPaint": 4815, + "interactive": 6175, + "speedIndex": 3867, + "totalBlockingTime": 100, + "maxPotentialFID": 109, + "cumulativeLayoutShift": 0.31113302930196124, + "cumulativeLayoutShiftMainFrame": 0.31113302930196124, + "totalCumulativeLayoutShift": 0.31113302930196124, "observedTimeOrigin": 0, - "observedTimeOriginTs": 377902552, + "observedTimeOriginTs": 347598320, "observedNavigationStart": 0, - "observedNavigationStartTs": 377902552, - "observedFirstPaint": 677, - "observedFirstPaintTs": 378580038, - "observedFirstContentfulPaint": 677, - "observedFirstContentfulPaintTs": 378580038, - "observedFirstContentfulPaintAllFrames": 677, - "observedFirstContentfulPaintAllFramesTs": 378580038, - "observedFirstMeaningfulPaint": 677, - "observedFirstMeaningfulPaintTs": 378580038, - "observedLargestContentfulPaint": 876, - "observedLargestContentfulPaintTs": 378778259, - "observedLargestContentfulPaintAllFrames": 876, - "observedLargestContentfulPaintAllFramesTs": 378778259, - "observedTraceEnd": 3210, - "observedTraceEndTs": 381112287, - "observedLoad": 894, - "observedLoadTs": 378796725, - "observedDomContentLoaded": 686, - "observedDomContentLoadedTs": 378588962, - "observedCumulativeLayoutShift": 0.19976467047797308, - "observedCumulativeLayoutShiftMainFrame": 0.19976467047797308, - "observedTotalCumulativeLayoutShift": 0.19976467047797308, - "observedFirstVisualChange": 682, - "observedFirstVisualChangeTs": 378584552, - "observedLastVisualChange": 1298, - "observedLastVisualChangeTs": 379200552, - "observedSpeedIndex": 1050, - "observedSpeedIndexTs": 378952175 + "observedNavigationStartTs": 347598320, + "observedFirstPaint": 808, + "observedFirstPaintTs": 348406696, + "observedFirstContentfulPaint": 808, + "observedFirstContentfulPaintTs": 348406696, + "observedFirstContentfulPaintAllFrames": 808, + "observedFirstContentfulPaintAllFramesTs": 348406696, + "observedFirstMeaningfulPaint": 808, + "observedFirstMeaningfulPaintTs": 348406696, + "observedLargestContentfulPaint": 1021, + "observedLargestContentfulPaintTs": 348619470, + "observedLargestContentfulPaintAllFrames": 1021, + "observedLargestContentfulPaintAllFramesTs": 348619470, + "observedTraceEnd": 3451, + "observedTraceEndTs": 351049110, + "observedLoad": 1099, + "observedLoadTs": 348696936, + "observedDomContentLoaded": 836, + "observedDomContentLoadedTs": 348434819, + "observedCumulativeLayoutShift": 0.31113302930196124, + "observedCumulativeLayoutShiftMainFrame": 0.31113302930196124, + "observedTotalCumulativeLayoutShift": 0.31113302930196124, + "observedFirstVisualChange": 821, + "observedFirstVisualChangeTs": 348419320, + "observedLastVisualChange": 1437, + "observedLastVisualChangeTs": 349035320, + "observedSpeedIndex": 1296, + "observedSpeedIndexTs": 348894544 }, { "lcpInvalidated": false @@ -642874,23 +644642,23 @@ "type": "debugdata", "items": [ { - "numRequests": 49, - "numScripts": 17, + "numRequests": 55, + "numScripts": 20, "numStylesheets": 2, "numFonts": 4, - "numTasks": 903, + "numTasks": 947, "numTasksOver10ms": 6, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.241, - "throughput": 16476730.214479785, - "maxRtt": 80.942, - "maxServerLatency": 27.296000000000006, - "totalByteWeight": 846768, - "totalTaskTime": 339.81899999999786, - "mainDocumentTransferSize": 7746 + "rtt": 1.9619999999999997, + "throughput": 16507301.302379766, + "maxRtt": 101.086, + "maxServerLatency": 30.29100000000001, + "totalByteWeight": 878207, + "totalTaskTime": 347.43699999999836, + "mainDocumentTransferSize": 7737 } ] } @@ -642995,8 +644763,8 @@ "cookiesCount": 0, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 1, - "lighthouse_performanceGrade": "A", + "lighthouse_performance": 0.75, + "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.99, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -643021,7 +644789,7 @@ "http": { "url": "https://selexpert.anje-justice.fr", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:51:29 GMT", + "end_time": "Sun, 24 Dec 2023 21:53:52 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -643033,17 +644801,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 23:51:28 GMT", + "Date": "Sun, 24 Dec 2023 21:53:50 GMT", "ETag": "W/\"6579590b-d384\"", "Last-Modified": "Wed, 13 Dec 2023 07:11:07 GMT", "Server": "nginx/1.25.3", - "Sozu-Id": "01HHX3275N1Z8GZ5VFD0CCYZ6T", + "Sozu-Id": "01HJEX3W0EPDMGWYW905N4D8F2", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding" }, - "scan_id": 45566168, + "scan_id": 45774173, "score": 20, - "start_time": "Sun, 17 Dec 2023 23:51:26 GMT", + "start_time": "Sun, 24 Dec 2023 21:53:48 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -643676,7 +645444,7 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -643921,7 +645689,7 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1702857209" + "finding": "1703454907" }, { "id": "HSTS", @@ -644477,7 +646245,7 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "111" + "finding": "61" } ], "thirdparties": { @@ -644493,7 +646261,7 @@ "value": "1", "domain": "selexpert.anje-justice.fr", "path": "/", - "expires": 1702858923, + "expires": 1703456664, "size": 16, "httpOnly": false, "secure": false, @@ -644505,10 +646273,10 @@ }, { "name": "_pk_id.47.3a5f", - "value": "317348192f2c863c.1702857124.", + "value": "fb1a039dde6d20b5.1703454865.", "domain": "selexpert.anje-justice.fr", "path": "/", - "expires": 1736812324, + "expires": 1737410065, "size": 42, "httpOnly": false, "secure": false, @@ -644527,11 +646295,11 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 23:52:01 GMT", + "date": "Sun, 24 Dec 2023 21:54:23 GMT", "etag": "W/\"6579590b-d384\"", "last-modified": "Wed, 13 Dec 2023 07:11:07 GMT", "server": "nginx/1.25.3", - "sozu-id": "01HHX33817JHBHTP19A8R1J8AJ", + "sozu-id": "01HJEX4W7WJ251RQVD12V7QDGB", "transfer-encoding": "chunked", "vary": "Accept-Encoding" }, @@ -644790,7 +646558,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:50:59", + "@generated": "Sun, 24 Dec 2023 21:53:23", "site": [ { "@name": "https://selexpert.anje-justice.fr", @@ -644921,707 +646689,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", - "info": { - "name": "DNS SaaS Service Detection", - "author": [ - "noah @thesubtlety", - "pdteam" - ], - "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "dns", - "host": "selexpert.anje-justice.fr.", - "matched-at": "selexpert.anje-justice.fr", - "extracted-results": [ - "clevercloud-1.zone.anje-justice.fr." - ], - "timestamp": "2023-12-17T23:57:41.838018777Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "selexpert.anje-justice.fr.", - "matched-at": "selexpert.anje-justice.fr", - "timestamp": "2023-12-17T23:57:42.01375917Z", - "matcher-status": true - }, - { - "template": "http/technologies/nginx/nginx-version.yaml", - "template-url": "https://templates.nuclei.sh/public/nginx-version", - "template-id": "nginx-version", - "template-path": "/home/runner/nuclei-templates/http/technologies/nginx/nginx-version.yaml", - "info": { - "name": "Nginx version detect", - "author": [ - "philippedelteil", - "daffainfo" - ], - "tags": [ - "tech", - "nginx" - ], - "description": "Some nginx servers have the version on the response header. Useful when you need to find specific CVEs on your targets.", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "extracted-results": [ - "nginx/1.25.3" - ], - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:00.081670658Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "nginx", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:34.641804069Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644335064Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644374519Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644391041Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644406059Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644418542Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644434383Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644446936Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.64456542Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644581471Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644595357Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:58:45.644696178Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "nginxgeneric", - "type": "http", - "host": "https://selexpert.anje-justice.fr", - "matched-at": "https://selexpert.anje-justice.fr/", - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:59:19.300332665Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: selexpert.anje-justice.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "selexpert.anje-justice.fr", - "matched-at": "selexpert.anje-justice.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:59:51.658389988Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "selexpert.anje-justice.fr", - "matched-at": "selexpert.anje-justice.fr:443", - "extracted-results": [ - "selexpert.anje-justice.fr" - ], - "ip": "185.42.117.108", - "timestamp": "2023-12-17T23:59:51.658513581Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "selexpert.anje-justice.fr", - "matched-at": "selexpert.anje-justice.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.42.117.108", - "timestamp": "2023-12-18T00:00:03.446334407Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "selexpert.anje-justice.fr", - "matched-at": "selexpert.anje-justice.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "185.42.117.108", - "timestamp": "2023-12-18T00:00:09.556433396Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://selexpert.anje-justice.fr/", "finalUrl": "https://selexpert.anje-justice.fr/", - "fetchTime": "2023-12-17T23:51:14.043Z", + "fetchTime": "2023-12-24T21:53:37.406Z", "runWarnings": [], "categories": { "performance": { @@ -645684,53 +646757,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4313, + "numericValue": 4498, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3551, - "firstMeaningfulPaint": 3776, - "largestContentfulPaint": 5005, - "interactive": 4313, - "speedIndex": 4963, - "totalBlockingTime": 72, - "maxPotentialFID": 144, - "cumulativeLayoutShift": 0.05150197686089409, - "cumulativeLayoutShiftMainFrame": 0.05150197686089409, - "totalCumulativeLayoutShift": 0.05150197686089409, + "firstContentfulPaint": 3535, + "firstMeaningfulPaint": 3760, + "largestContentfulPaint": 5047, + "interactive": 4498, + "speedIndex": 3983, + "totalBlockingTime": 74, + "maxPotentialFID": 149, + "cumulativeLayoutShift": 0.05157919650607638, + "cumulativeLayoutShiftMainFrame": 0.05157919650607638, + "totalCumulativeLayoutShift": 0.05157919650607638, "observedTimeOrigin": 0, - "observedTimeOriginTs": 283815298, + "observedTimeOriginTs": 937927930, "observedNavigationStart": 0, - "observedNavigationStartTs": 283815298, - "observedFirstPaint": 1950, - "observedFirstPaintTs": 285765151, - "observedFirstContentfulPaint": 1950, - "observedFirstContentfulPaintTs": 285765151, - "observedFirstContentfulPaintAllFrames": 1950, - "observedFirstContentfulPaintAllFramesTs": 285765151, - "observedFirstMeaningfulPaint": 1950, - "observedFirstMeaningfulPaintTs": 285765151, - "observedLargestContentfulPaint": 2099, - "observedLargestContentfulPaintTs": 285914290, - "observedLargestContentfulPaintAllFrames": 2099, - "observedLargestContentfulPaintAllFramesTs": 285914290, - "observedTraceEnd": 4752, - "observedTraceEndTs": 288567192, - "observedLoad": 2443, - "observedLoadTs": 286258668, - "observedDomContentLoaded": 1460, - "observedDomContentLoadedTs": 285275182, - "observedCumulativeLayoutShift": 0.05150197686089409, - "observedCumulativeLayoutShiftMainFrame": 0.05150197686089409, - "observedTotalCumulativeLayoutShift": 0.05150197686089409, - "observedFirstVisualChange": 1956, - "observedFirstVisualChangeTs": 285771298, - "observedLastVisualChange": 2473, - "observedLastVisualChangeTs": 286288298, - "observedSpeedIndex": 2032, - "observedSpeedIndexTs": 285847732 + "observedNavigationStartTs": 937927930, + "observedFirstPaint": 1250, + "observedFirstPaintTs": 939178292, + "observedFirstContentfulPaint": 1250, + "observedFirstContentfulPaintTs": 939178292, + "observedFirstContentfulPaintAllFrames": 1250, + "observedFirstContentfulPaintAllFramesTs": 939178292, + "observedFirstMeaningfulPaint": 1250, + "observedFirstMeaningfulPaintTs": 939178292, + "observedLargestContentfulPaint": 1343, + "observedLargestContentfulPaintTs": 939270620, + "observedLargestContentfulPaintAllFrames": 1343, + "observedLargestContentfulPaintAllFramesTs": 939270620, + "observedTraceEnd": 3804, + "observedTraceEndTs": 941731811, + "observedLoad": 1496, + "observedLoadTs": 939423924, + "observedDomContentLoaded": 915, + "observedDomContentLoadedTs": 938842537, + "observedCumulativeLayoutShift": 0.05157919650607638, + "observedCumulativeLayoutShiftMainFrame": 0.05157919650607638, + "observedTotalCumulativeLayoutShift": 0.05157919650607638, + "observedFirstVisualChange": 1251, + "observedFirstVisualChangeTs": 939178930, + "observedLastVisualChange": 1517, + "observedLastVisualChangeTs": 939444930, + "observedSpeedIndex": 1295, + "observedSpeedIndexTs": 939223430 }, { "lcpInvalidated": false @@ -645752,18 +646825,18 @@ "numScripts": 5, "numStylesheets": 3, "numFonts": 6, - "numTasks": 731, + "numTasks": 683, "numTasksOver10ms": 4, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 133.04500000000002, - "throughput": 4638529.625608676, - "maxRtt": 147.231, - "maxServerLatency": 4.798999999999978, + "rtt": 83.119, + "throughput": 7688828.218680456, + "maxRtt": 84.9, + "maxServerLatency": 1.862000000000009, "totalByteWeight": 637178, - "totalTaskTime": 302.9849999999991, + "totalTaskTime": 294.26499999999885, "mainDocumentTransferSize": 10774 } ] @@ -645772,7 +646845,7 @@ } } ], - "screenshot": true, + "screenshot": false, "stats": { "grade": "A", "url": "https://selexpert.anje-justice.fr", @@ -645885,7 +646958,7 @@ "http": { "url": "https://element.preprod.eimis.incubateur.net/", "algorithm_version": 2, - "end_time": "Sun, 17 Dec 2023 23:57:44 GMT", + "end_time": "Sun, 24 Dec 2023 21:54:29 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -645895,14 +646968,14 @@ "Connection": "keep-alive", "Content-Length": "7550", "Content-Type": "text/html", - "Date": "Sun, 17 Dec 2023 23:57:43 GMT", + "Date": "Sun, 24 Dec 2023 21:54:28 GMT", "ETag": "\"6516a849-1d7e\"", "Last-Modified": "Fri, 29 Sep 2023 10:34:49 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains" }, - "scan_id": 45566246, + "scan_id": 45774185, "score": 75, - "start_time": "Sun, 17 Dec 2023 23:57:40 GMT", + "start_time": "Sun, 24 Dec 2023 21:54:26 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -645915,51 +646988,51 @@ "output": { "data": { "child-src": [ - "blob:", "*", - "data:" + "data:", + "blob:" ], "connect-src": [ - "blob:", - "*" + "*", + "blob:" ], "default-src": [ "'none'" ], "font-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "form-action": [ "'self'" ], "frame-src": [ - "blob:", "*", - "data:" + "data:", + "blob:" ], "img-src": [ - "blob:", "*", - "data:" + "data:", + "blob:" ], "manifest-src": [ "'self'" ], "media-src": [ - "blob:", "*", - "data:" + "data:", + "blob:" ], "script-src": [ "'wasm-unsafe-eval'", + "https://www.recaptcha.net/recaptcha/", "'self'", - "https://www.gstatic.com/recaptcha/", - "https://www.recaptcha.net/recaptcha/" + "https://www.gstatic.com/recaptcha/" ], "style-src": [ - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ], "worker-src": [ "'self'", @@ -646507,7 +647580,7 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -646710,7 +647783,7 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "INFO", - "finding": "1702857574" + "finding": "1703454947" }, { "id": "HSTS_time", @@ -647273,7 +648346,7 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "INFO", - "finding": "97" + "finding": "52" } ], "thirdparties": { @@ -647289,7 +648362,7 @@ "cache-control": "no-cache", "content-length": "7550", "content-type": "text/html", - "date": "Sun, 17 Dec 2023 23:58:15 GMT", + "date": "Sun, 24 Dec 2023 21:55:04 GMT", "etag": "\"6516a849-1d7e\"", "last-modified": "Fri, 29 Sep 2023 10:34:49 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains" @@ -647516,7 +648589,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 17 Dec 2023 23:57:13", + "@generated": "Sun, 24 Dec 2023 21:54:00", "site": [ { "@name": "https://element.preprod.eimis.incubateur.net", @@ -647701,7 +648774,7 @@ "type": "dns", "host": "element.preprod.eimis.incubateur.net.", "matched-at": "element.preprod.eimis.incubateur.net", - "timestamp": "2023-12-18T00:01:00.22875439Z", + "timestamp": "2023-12-24T21:56:55.532992182Z", "matcher-status": true }, { @@ -647739,7 +648812,7 @@ "extracted-results": [ "\"heritage=external-dns,external-dns/owner=preprod,external-dns/resource=ingress/element-web/element-web\"" ], - "timestamp": "2023-12-18T00:01:01.057566532Z", + "timestamp": "2023-12-24T21:56:56.69619975Z", "matcher-status": true }, { @@ -647770,12 +648843,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736657281Z", + "timestamp": "2023-12-24T21:57:40.232648118Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647807,12 +648880,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736719977Z", + "timestamp": "2023-12-24T21:57:40.232702229Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647844,12 +648917,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736742208Z", + "timestamp": "2023-12-24T21:57:40.232717066Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647881,12 +648954,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736763248Z", + "timestamp": "2023-12-24T21:57:40.2327355Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647918,12 +648991,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736779658Z", + "timestamp": "2023-12-24T21:57:40.23275654Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647955,12 +649028,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736794135Z", + "timestamp": "2023-12-24T21:57:40.232776186Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -647992,12 +649065,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-frame-options", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736808872Z", + "timestamp": "2023-12-24T21:57:40.232793338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -648029,12 +649102,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.73683977Z", + "timestamp": "2023-12-24T21:57:40.232812263Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -648066,12 +649139,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736859617Z", + "timestamp": "2023-12-24T21:57:40.232828694Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -648108,10 +649181,45 @@ "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:12.736878752Z", + "timestamp": "2023-12-24T21:57:40.232844513Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, + { + "template": "http/technologies/element-web-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/element-web-detect", + "template-id": "element-web-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/element-web-detect.yaml", + "info": { + "name": "Element Web - Detect", + "author": [ + "davidegirardi" + ], + "tags": [ + "tech", + "matrix", + "element", + "detect" + ], + "description": "Identify if a web application is vanilla Element Web and return the version", + "severity": "info", + "metadata": { + "max-request": 2, + "shodan-query": "html:\"manifest.json\"", + "verified": true + } + }, + "type": "http", + "host": "https://element.preprod.eimis.incubateur.net/", + "matched-at": "https://element.preprod.eimis.incubateur.net/version", + "extracted-results": [ + "1.11.45" + ], + "ip": "162.19.108.95", + "timestamp": "2023-12-24T21:58:00.778441892Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/version'", + "matcher-status": true + }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -648148,7 +649256,7 @@ "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:02:51.198177026Z", + "timestamp": "2023-12-24T21:58:03.049963476Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: element.preprod.eimis.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -648163,7 +649271,8 @@ "lingtren" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", @@ -648178,7 +649287,7 @@ "Let's Encrypt" ], "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:03:27.041980916Z", + "timestamp": "2023-12-24T21:58:25.141999227Z", "matcher-status": true }, { @@ -648192,7 +649301,8 @@ "pdteam" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", @@ -648207,7 +649317,7 @@ "element.preprod.eimis.incubateur.net" ], "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:03:27.042092844Z", + "timestamp": "2023-12-24T21:58:25.142107558Z", "matcher-status": true }, { @@ -648222,7 +649332,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -648237,7 +649348,7 @@ "tls12" ], "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:03:29.715941516Z", + "timestamp": "2023-12-24T21:58:26.754723294Z", "matcher-status": true }, { @@ -648252,7 +649363,8 @@ "pussycat0x" ], "tags": [ - "ssl" + "ssl", + "tls" ], "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", @@ -648267,7 +649379,7 @@ "tls13" ], "ip": "162.19.108.95", - "timestamp": "2023-12-18T00:03:30.161741262Z", + "timestamp": "2023-12-24T21:58:26.960901253Z", "matcher-status": true } ], @@ -648275,7 +649387,7 @@ { "requestedUrl": "https://element.preprod.eimis.incubateur.net/", "finalUrl": "https://element.preprod.eimis.incubateur.net/mobile_guide/", - "fetchTime": "2023-12-17T23:57:27.754Z", + "fetchTime": "2023-12-24T21:54:15.294Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://element.preprod.eimis.incubateur.net/) was redirected to https://element.preprod.eimis.incubateur.net/mobile_guide/. Try testing the second URL directly." ], @@ -648340,53 +649452,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 47255, + "numericValue": 47232, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 38538, - "firstMeaningfulPaint": 38538, - "largestContentfulPaint": 47707, - "interactive": 47255, - "speedIndex": 38538, - "totalBlockingTime": 354, - "maxPotentialFID": 298, + "firstContentfulPaint": 38530, + "firstMeaningfulPaint": 38530, + "largestContentfulPaint": 47705, + "interactive": 47232, + "speedIndex": 38530, + "totalBlockingTime": 327, + "maxPotentialFID": 277, "cumulativeLayoutShift": 0.04476708306206598, "cumulativeLayoutShiftMainFrame": 0.04476708306206598, "totalCumulativeLayoutShift": 0.04476708306206598, "observedTimeOrigin": 0, - "observedTimeOriginTs": 341260928, + "observedTimeOriginTs": 270145324, "observedNavigationStart": 0, - "observedNavigationStartTs": 341260928, - "observedFirstPaint": 189, - "observedFirstPaintTs": 341449726, - "observedFirstContentfulPaint": 189, - "observedFirstContentfulPaintTs": 341449726, - "observedFirstContentfulPaintAllFrames": 189, - "observedFirstContentfulPaintAllFramesTs": 341449726, - "observedFirstMeaningfulPaint": 189, - "observedFirstMeaningfulPaintTs": 341449726, - "observedLargestContentfulPaint": 481, - "observedLargestContentfulPaintTs": 341741927, - "observedLargestContentfulPaintAllFrames": 481, - "observedLargestContentfulPaintAllFramesTs": 341741927, - "observedTraceEnd": 2829, - "observedTraceEndTs": 344090307, - "observedLoad": 317, - "observedLoadTs": 341578257, - "observedDomContentLoaded": 317, - "observedDomContentLoadedTs": 341578189, + "observedNavigationStartTs": 270145324, + "observedFirstPaint": 123, + "observedFirstPaintTs": 270268557, + "observedFirstContentfulPaint": 123, + "observedFirstContentfulPaintTs": 270268557, + "observedFirstContentfulPaintAllFrames": 123, + "observedFirstContentfulPaintAllFramesTs": 270268557, + "observedFirstMeaningfulPaint": 123, + "observedFirstMeaningfulPaintTs": 270268557, + "observedLargestContentfulPaint": 298, + "observedLargestContentfulPaintTs": 270443163, + "observedLargestContentfulPaintAllFrames": 298, + "observedLargestContentfulPaintAllFramesTs": 270443163, + "observedTraceEnd": 2645, + "observedTraceEndTs": 272790449, + "observedLoad": 196, + "observedLoadTs": 270341075, + "observedDomContentLoaded": 196, + "observedDomContentLoadedTs": 270341022, "observedCumulativeLayoutShift": 0.04476708306206598, "observedCumulativeLayoutShiftMainFrame": 0.04476708306206598, "observedTotalCumulativeLayoutShift": 0.04476708306206598, - "observedFirstVisualChange": 192, - "observedFirstVisualChangeTs": 341452928, - "observedLastVisualChange": 492, - "observedLastVisualChangeTs": 341752928, - "observedSpeedIndex": 213, - "observedSpeedIndexTs": 341474007 + "observedFirstVisualChange": 127, + "observedFirstVisualChangeTs": 270272324, + "observedLastVisualChange": 310, + "observedLastVisualChangeTs": 270455324, + "observedSpeedIndex": 140, + "observedSpeedIndexTs": 270285355 }, { "lcpInvalidated": false @@ -648408,19 +649520,19 @@ "numScripts": 9, "numStylesheets": 1, "numFonts": 8, - "numTasks": 910, + "numTasks": 1120, "numTasksOver10ms": 3, - "numTasksOver25ms": 2, - "numTasksOver50ms": 2, + "numTasksOver25ms": 3, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 148.34099999999998, - "throughput": 59958690.32684848, - "maxRtt": 148.34099999999998, - "maxServerLatency": 6.868000000000023, - "totalByteWeight": 9482227, - "totalTaskTime": 325.35199999999844, - "mainDocumentTransferSize": 7759 + "rtt": 87.97, + "throughput": 93330660.93821535, + "maxRtt": 87.97, + "maxServerLatency": 5.292000000000002, + "totalByteWeight": 9488347, + "totalTaskTime": 365.1249999999986, + "mainDocumentTransferSize": 7768 } ] } @@ -648535,7 +649647,7 @@ "http": { "url": "https://world.openfoodfacts.org/", "algorithm_version": 2, - "end_time": "Mon, 18 Dec 2023 00:12:44 GMT", + "end_time": "Sun, 24 Dec 2023 22:11:49 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -648543,20 +649655,20 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Mon, 18 Dec 2023 00:12:41 GMT", - "Expires": "Sun, 17 Dec 2023 00:12:41 GMT", + "Date": "Sun, 24 Dec 2023 22:11:46 GMT", + "Expires": "Sat, 23 Dec 2023 22:11:46 GMT", "Server": "nginx/1.18.0", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff, nosniff", "X-Download-Options": "noopen", - "X-Request-ID": "qhvMeBfA05TdIVsa", + "X-Request-ID": "OmtOYk2HZCAbYSSe", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 45566741, + "scan_id": 45774562, "score": 50, - "start_time": "Mon, 18 Dec 2023 00:12:35 GMT", + "start_time": "Sun, 24 Dec 2023 22:11:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -648737,9 +649849,9 @@ "vulnerabilities": [ { "cvss": "5.0", - "id": "PRION:CVE-2016-20012", + "type": "prion", "is_exploit": "false", - "type": "prion" + "id": "PRION:CVE-2016-20012" } ] } @@ -649150,7 +650262,7 @@ "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -649353,14 +650465,14 @@ "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "1702858444" + "finding": "1703456034" }, { "id": "HSTS_time", @@ -649960,7 +651072,7 @@ "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "92" + "finding": "151" } ], "thirdparties": { @@ -649969,14 +651081,14 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Mon, 18 Dec 2023 00:13:10 GMT", - "expires": "Sun, 17 Dec 2023 00:13:10 GMT", + "date": "Sun, 24 Dec 2023 22:12:16 GMT", + "expires": "Sat, 23 Dec 2023 22:12:16 GMT", "server": "nginx/1.18.0", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff\nnosniff", "x-download-options": "noopen", - "x-request-id": "DtgIegsnohxZGkAY", + "x-request-id": "zIGc2tOssIOsXD8s", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -650235,7 +651347,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Mon, 18 Dec 2023 00:11:25", + "@generated": "Sun, 24 Dec 2023 22:10:37", "site": [ { "@name": "https://world.openfoodfacts.org", @@ -650392,7 +651504,7 @@ { "requestedUrl": "https://world.openfoodfacts.org/", "finalUrl": "https://world.openfoodfacts.org/", - "fetchTime": "2023-12-18T00:12:17.235Z", + "fetchTime": "2023-12-24T22:11:19.476Z", "runWarnings": [], "categories": { "performance": { @@ -650403,7 +651515,7 @@ "snapshot" ], "id": "performance", - "score": 0.25449600219726565 + "score": 0.2531534194946289 }, "accessibility": { "title": "Accessibility", @@ -650455,53 +651567,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9395, + "numericValue": 10465, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3313, - "firstMeaningfulPaint": 3313, - "largestContentfulPaint": 3538, - "interactive": 9395, - "speedIndex": 7603, - "totalBlockingTime": 385, - "maxPotentialFID": 691, + "firstContentfulPaint": 3311, + "firstMeaningfulPaint": 3311, + "largestContentfulPaint": 3536, + "interactive": 10465, + "speedIndex": 9543, + "totalBlockingTime": 911, + "maxPotentialFID": 1437, "cumulativeLayoutShift": 0.04070175806681316, "cumulativeLayoutShiftMainFrame": 0.04070175806681316, "totalCumulativeLayoutShift": 0.04070175806681316, "observedTimeOrigin": 0, - "observedTimeOriginTs": 336635766, + "observedTimeOriginTs": 339563257, "observedNavigationStart": 0, - "observedNavigationStartTs": 336635766, - "observedFirstPaint": 2004, - "observedFirstPaintTs": 338639566, - "observedFirstContentfulPaint": 2004, - "observedFirstContentfulPaintTs": 338639566, - "observedFirstContentfulPaintAllFrames": 2004, - "observedFirstContentfulPaintAllFramesTs": 338639566, - "observedFirstMeaningfulPaint": 2021, - "observedFirstMeaningfulPaintTs": 338657025, - "observedLargestContentfulPaint": 2004, - "observedLargestContentfulPaintTs": 338639566, - "observedLargestContentfulPaintAllFrames": 2004, - "observedLargestContentfulPaintAllFramesTs": 338639566, - "observedTraceEnd": 5209, - "observedTraceEndTs": 341844796, - "observedLoad": 2901, - "observedLoadTs": 339536470, - "observedDomContentLoaded": 2334, - "observedDomContentLoadedTs": 338969521, + "observedNavigationStartTs": 339563257, + "observedFirstPaint": 3184, + "observedFirstPaintTs": 342747146, + "observedFirstContentfulPaint": 3184, + "observedFirstContentfulPaintTs": 342747146, + "observedFirstContentfulPaintAllFrames": 3184, + "observedFirstContentfulPaintAllFramesTs": 342747146, + "observedFirstMeaningfulPaint": 3187, + "observedFirstMeaningfulPaintTs": 342750254, + "observedLargestContentfulPaint": 3184, + "observedLargestContentfulPaintTs": 342747146, + "observedLargestContentfulPaintAllFrames": 3184, + "observedLargestContentfulPaintAllFramesTs": 342747146, + "observedTraceEnd": 6990, + "observedTraceEndTs": 346552897, + "observedLoad": 4682, + "observedLoadTs": 344245530, + "observedDomContentLoaded": 3676, + "observedDomContentLoadedTs": 343238942, "observedCumulativeLayoutShift": 0.04070175806681316, "observedCumulativeLayoutShiftMainFrame": 0.04070175806681316, "observedTotalCumulativeLayoutShift": 0.04070175806681316, - "observedFirstVisualChange": 2000, - "observedFirstVisualChangeTs": 338635766, - "observedLastVisualChange": 2800, - "observedLastVisualChangeTs": 339435766, - "observedSpeedIndex": 2062, - "observedSpeedIndexTs": 338697952 + "observedFirstVisualChange": 3123, + "observedFirstVisualChangeTs": 342686257, + "observedLastVisualChange": 4589, + "observedLastVisualChangeTs": 344152257, + "observedSpeedIndex": 3233, + "observedSpeedIndexTs": 342796454 }, { "lcpInvalidated": false @@ -650523,19 +651635,19 @@ "numScripts": 13, "numStylesheets": 3, "numFonts": 2, - "numTasks": 2390, - "numTasksOver10ms": 10, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, - "numTasksOver500ms": 0, - "rtt": 80.105, - "throughput": 18764791.77336588, - "maxRtt": 83.946, - "maxServerLatency": 195.92999999999998, - "totalByteWeight": 2335724, - "totalTaskTime": 831.3990000000084, - "mainDocumentTransferSize": 81388 + "numTasks": 2663, + "numTasksOver10ms": 9, + "numTasksOver25ms": 6, + "numTasksOver50ms": 3, + "numTasksOver100ms": 2, + "numTasksOver500ms": 1, + "rtt": 149.13400000000001, + "throughput": 10264555.932537371, + "maxRtt": 151.37199999999999, + "maxServerLatency": 391.6120000000001, + "totalByteWeight": 2342763, + "totalTaskTime": 1273.8100000000602, + "mainDocumentTransferSize": 81999 } ] } @@ -650595,7 +651707,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.25449600219726565, + "lighthouse_performance": 0.2531534194946289, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A",